[Free] 2019(Nov) EnsurePass Microsoft MS-101 Dumps with VCE and PDF 21-30

Get Full Version of the Exam
http://www.EnsurePass.com/MS-101.html

Question No.21

You need to notify the manager of the human resources department when a user in the department shares a file or folder from the department#39;s Microsoft SharePoint site. What should you do?

  1. From the Security amp; Compliance admin center, create an alert policy.

  2. From the SharePoint site, create an alert.

  3. From the SharePoint admin center, modify the sharing settings.

  4. From the Security amp; Compliance admin center, create a data loss prevention (DLP) policy.

Correct Answer: A

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/create-activity-alerts

Question No.22

Your company uses on-premises Windows Server File Classification Infrastructure (FCI). Some documents on the on-premises file servers are classified as Confidential.

You migrate the files from the on-premises file servers to Microsoft SharePoint Online.

You need to ensure that you can implement data loss prevention (DLP) policies for the uploaded file based on the Confidential classification.

What should you do first?

  1. From the SharePoint admin center, configure hybrid search.

  2. From the SharePoint admin center, create a managed property.

  3. From the Security amp; Compliance Center PowerShell, run the New-DataClassification cmdlet.

  4. From the Security amp; Compliance Center PowerShell, run the New-DlpComplianceRule cmdlet.

Correct Answer: D

Explanation:

https://docs.microsoft.com/en-us/powershell/module/exchange/policy-and-compliance- dlp/newdataclassification?view=exchange-ps

Question No.23

You have a Microsoft 365 tenant.

All users are assigned the Enterprise Mobility Security license.

You need to ensure that when users join their device to Microsoft Azure Active Directory (Azure AD), the

device is enrolled in Microsoft Intune automatically. What should you configure?

  1. Enrollment restrictions from the Intune admin center

  2. device enrollment managers from the Intune admin center

  3. MAM User scope from the Azure Active Directory admin center

  4. MDM User scope from the Azure Active Directory admin center

Correct Answer: D

Explanation:

https://docs.microsoft.com/en-us/intune/windows-enroll

Question No.24

HOTSPOT

From the Microsoft Azure Active Directory (Azure AD) Identity Protection dashboard, you view the risk events shown in the following exhibit.

image

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.

NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.25

HOTSPOT

From the Security amp; Compliance admin center, you create a retention policy named Policy1. You need to prevent all users from disabling the policy or reducing the retention period.

Which command should you run? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

image

Correct Answer:

image

Question No.26

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals- Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are deploying Microsoft Intune.

You successfully enroll Windows 10 devices in Intune.

When you try to enroll an iOS device in Intune, you get an error. You need to ensure that you can enroll the iOS device in Intuen. Solution: You configure the Apple MDM Push certificate.

Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.27

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals- Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your network contains an Active Directory domain named contoso.com that is synced to Microsoft Azure Active Directory (Azure AD).

You manage Windows 10 devices by using Microsoft System Center Configuration Manager (Current Branch).

You configure pilot co-management.

You add a new device named Device 1 to the domain. You install the Configuration Manager client on Device1.

You need to ensure that you can manage Device1 by using Microsoft Intune and Configuration Manager.

Solution: You create a device configuration profile from the Intune admin center. Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Question No.28

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals- Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 subscription.

You discover that some external users accessed content on a Microsoft SharePoint site. You modify the SharePoint sharing policy to prevent sharing outside your organization.

You need to be notified if the SharePoint sharing policy is modified in the future.

Solution: From the Security amp; Compliance admin center, you create a threat management policy. Does this meet the goal?

  1. Yes

  2. No

Correct Answer: A

Question No.29

Your company has a Microsoft 365 E5 subscription.

Users in the research department work with sensitive data.

You need to prevent the research department users from accessing potentially unsafe websites by using hyperlinks embedded in email messages and documents. Users in other departments must not be restricted.

What should you do from the Security amp; Compliance admin center?

  1. Create a data toss prevention (DLP) policy that has a Content is shared condition.

  2. Modify the default safe links policy.

  3. Create a data loss prevention (DLP) policy that has a Content contains condition.

  4. Create a new safe links policy.

Correct Answer: D

Explanation:

https://docs.microsoft.com/en-us/office365/securitycompliance/set-up-atp-safe-links- policies#policies-that-apply-to-specific-email-recipients

Question No.30

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 subscription.

From the Security amp; Compliance admin center, you create a role group named US eDiscovery Managers by copying the eDiscovery Manager role group.

You need to ensure that the users in the new role group can only perform content searches of mailbox content for users in the United States.

Solution: From the Security amp; Compliance admin center, you modify the roles of the US eDiscovery Managers role group.

Does this meet the goal?

  1. Yes

  2. No

Correct Answer: B

Get Full Version of the Exam
MS-101 Dumps
MS-101 VCE and PDF

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.