Valid MS-101 Dumps shared by PassLeader for Helping Passing MS-101 Exam! PassLeader now offer the newest MS-101 VCE dumps and MS-101 PDF dumps, the PassLeader MS-101 exam questions have been updated and ANSWERS have been corrected, get the newest PassLeader MS-101 dumps with VCE and PDF here: https://www.passleader.com/ms-101.html (291 Q&As Dumps –> 331 Q&As Dumps –> 351 Q&As Dumps –> 383 Q&As Dumps –> 518 Q&As Dumps)
BTW, DOWNLOAD part of PassLeader MS-101 dumps from Cloud Storage: https://drive.google.com/open?id=1sFmn9dFNysQ7vB81xG2ETWkNUxgpyxtK
NEW QUESTION 236
You have a Microsoft 365 subscription. You discover that some external users accessed center for a Microsoft SharePoint site. You modify the sharePoint sharing policy to prevent sharing, outside your organization. You need to be notified if the SharePoint sharing policy is modified in the future.
Solution: From the Security & Compliance admin center you create a threat management policy.
Does this meet the goal?
A. Yes
B. No
Answer: B
NEW QUESTION 237
You have a Microsoft 365 E5 subscription. You create an account for a new security administrator named SecAdmin1. You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Teams Service Administrator role.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
You need to assign the Security Administrator role.
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp?view=o365-worldwide
NEW QUESTION 238
You have a Microsoft 365 F5 subscription. You plan to deploy 100 new Windows 10 devices. You need to order the appropriate version of Windows 10 for the new devices. The version must Meet the following requirements:
– Be serviced for a minimum of 24 moths.
– Support Microsoft Application Virtualization (App-V).
Which version should you identify?
A. Window 10 Pro, version 1000.
B. Window 10 Pro, version 2004.
C. Window 10 Pro, version 1000.
D. Window 10 Enterprise, version 2004.
Answer: D
NEW QUESTION 239
Your company has an Active Directory Domain Services (AD DS) domain with multiple geographic locations. Your company’s main office is in Seattle and includes all human resource functions. Your company purchases a Microsoft 365 subscription and migrates all user files and mailboxes to Microsoft 365. All company email uses Exchange Online. You must ensure that email messages containing sensitive United States personally identifiable information (PII) can be sent between users in the Seattle office only. Administrators should be able to review reports of sent and received messages containing PII. You need to implement a policy to accomplish this. What should you create?
A. A mail flow rule in Exchange online.
B. A security and compliance alert policy with an action.
C. A security and compliance alert policy with user override.
D. A security and compliance retention policy.
Answer: B
NEW QUESTION 240
To integrate Azure Information Protection (AIP) with Cloud App Security (CAS), what must you do first to allow monitoring of O365 activity and files from within CAS?
A. Configure CAS policies.
B. Set up CAS alerts.
C. Add O365 as a connected app in CAS.
D. Upload CAS traffic logs.
Answer: C
NEW QUESTION 241
One of your organization’s security administrators is reviewing a report from Azure AD that shows recent sign-ins and their locations. The report will be used to determine proper configuration for blocking access from untrusted networks and requiring MFA for high-risk sign-ins. What should you recommend as part of the solution?
A. Azure AD Identity Protection Sign-in risk policy.
B. Azure AD Identity Protection User risk policy.
C. Azure AD Identity Protection weekly digest email.
D. Azure AD | Monitoring | Audit logs.
Answer: A
NEW QUESTION 242
An Office365 user in your organization has made a terrible mistake in their OneDrive for Business and they need to restore the entirety of their OneDrive to an earlier point in time. How can you help them do this?
A. You can’t-they’ll have to restore whatever they can from the recycle bin and previous versions.
B. Use PowerShell to restore each item in their OneDrive programmatically to earlier versions.
C. Use a third-party backup product.
D. Use Files Restore from the settings (gear) icon in their OneDrive.
Answer: D
NEW QUESTION 243
Your company has digitally signed applications. You need to ensure that Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) considers the digitally signed applications safe and never analyzes them. What should you create in the Microsoft Defender Security Center?
A. a custom detection rule
B. an allowed/blocked list rule
C. an alert suppression rule
D. an indicator
Answer: D
Explanation:
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/manage-indicators
NEW QUESTION 244
You have a Microsoft 365 subscription. You need to identify which administrative users performed eDiscovery searches during the past week. What should you do from the Security & Compliance admin center?
A. Perform a content search.
B. Create a supervision policy.
C. Create an eDiscovery case.
D. Perform an audit log search.
Answer: D
NEW QUESTION 245
You have a Microsoft 365 subscription. You need to create a data loss prevention (DLP) policy that is configured to use the set headers action. To which location can the policy be applied?
A. OneDrive accounts.
B. Exchange email.
C. Teams chat and channel messages.
D. SharePoint sites.
Answer: B
NEW QUESTION 246
You have a Microsoft 365 E5 subscription. You create an account for a new security administrator named SecAdmin1. You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the SharePoint admin role.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
You need to assign the Security Administrator role.
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp?view=o365-worldwide
NEW QUESTION 247
You have a Microsoft 365 E5 subscription. You create an account for a new security administrator named SecAdmin1. You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Security administrator role.
Does this meet the goal?
A. Yes
B. No
Answer: A
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/office-365-atp?view=o365-worldwide
NEW QUESTION 248
You have a Microsoft 365 subscription. You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Endpoint Management admin center, you create a device configuration profile.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
You need to create a trusted location and a conditional access policy.
NEW QUESTION 249
You have a Microsoft 365 E5 subscription that uses Azure Advanced Threat Protection (ATP). You need to create a detection exclusion in Azure ATP. Which tool should you use?
A. the Security & Compliance admin center
B. Microsoft Defender Security Center
C. the Microsoft 365 admin center
D. the Azure Advanced Threat Protection portal
E. the Cloud App Security portal
Answer: D
Explanation:
https://docs.microsoft.com/en-us/defender-for-identity/what-is
https://docs.microsoft.com/en-us/defender-for-identity/excluding-entities-from-detections
NEW QUESTION 250
HotSpot
You have a Microsoft 365 E5 subscription linked to an Azure Active Directory (Azure AD) tenant. The tenant contains a group named Group1 and the users shown in the following table:
The tenant has a conditional access policy that has the following configurations:
– Name: Policy1
– Assignments:
* Users and groups: Group1
* Cloud aps or actions: All cloud apps
– Access controls: Grant, require multi-factor authentication
– Enable policy: Report-only
You set Enabled Security defaults to Yes for the tenant. For each of the following settings select Yes, if the statement is true. Otherwise, select No.
Answer:
Explanation:
Report-only mode is a new Conditional Access policy state that allows administrators to evaluate the impact of Conditional Access policies before enabling them in their environment. With the release of report-only mode:
– Conditional Access policies can be enabled in report-only mode.
– During sign-in, policies in report-only mode are evaluated but not enforced.
– Results are logged in the Conditional Access and Report-only tabs of the Sign-in log details.
– Customers with an Azure Monitor subscription can monitor the impact of their Conditional Access policies using the Conditional Access insights workbook.
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-report-only
NEW QUESTION 251
Drag and Drop
You have a Microsoft 365 E5 subscription. Several users have iOS devices. You plan to enroll the iOS devices in Microsoft Endpoint Manager. You need to ensure that you can create an iOS/iPadOS enrollment profile in Microsoft Endpoint Manager. Which three actions should you perform in sequence? (To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.)
Answer:
Explanation:
https://docs.microsoft.com/en-us/mem/intune/enrollment/apple-mdm-push-certificate-get
NEW QUESTION 252
……
Get the newest PassLeader MS-101 VCE dumps here: https://www.passleader.com/ms-101.html (291 Q&As Dumps –> 331 Q&As Dumps –> 351 Q&As Dumps –> 383 Q&As Dumps –> 518 Q&As Dumps)
And, DOWNLOAD the newest PassLeader MS-101 PDF dumps from Cloud Storage for free: https://drive.google.com/open?id=1sFmn9dFNysQ7vB81xG2ETWkNUxgpyxtK