Latest MS-102 Practice Tests

Premium

MS-102 Dumps - Full Mock Test

Microsoft 365 Administrator Exam

312 Questions
120 MINUTES
2025-01-23 Updated

Full Access

QUESTION 41

- (Exam Topic 5)
HOTSPOT
You have a Microsoft 365 E5 subscription.
From Azure AD Identity Protection on August 1, you configure a Multifactor authentication registration policy that has the following settings:
MS-102 dumps exhibit Assignments: All users
Controls: Require Azure AD multifactor authentication registration
Enforce Policy: On
On August 3, you create two users named User1 and User2.
Users authenticate by using Azure Multi-Factor Authentication (MFA) for the first time on the dates shown in the following table.
MS-102 dumps exhibit
By which dates will User1 and User2 be forced to complete their Azure MFA registration? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Solution:
Box 1: August 19
Note: Security defaults will trigger a 14 day grace period for registration after a user's first login and security defaults being enabled. After 14 days users will be required to register for MFA and will not be able to skip.
Conditional Access by itself without Azure Identity Protection does not allow for the 14 day grace period. Identity Protection includes the registration policy that allows registration on its own with no apps assigned to the policy. If a Conditional Access policy requires Multi-Factor Authentication, then the user must be able to pass that MFA request.
Box 2: August 21 Reference:
https://learn.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection

Does this meet the goal?

A. Yes
B. No

Correct Answer: A

QUESTION 42

- (Exam Topic 5)
You have a Microsoft 365 E5 tenant that contains five devices enrolled in Microsoft Intune as shown in the following table.
MS-102 dumps exhibit
All the devices have an app named App1 installed.
You need to prevent users from copying data from App1 and pasting the data into other apps.
Which policy should you create in Microsoft Endpoint Manager, and what is the minimum number of required policies? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
MS-102 dumps exhibit
Solution:
Graphical user interface, application, table Description automatically generated
Reference:
https://docs.microsoft.com/en-us/mem/intune/apps/app-protection-policy

Does this meet the goal?

A. Yes
B. No

Correct Answer: A

QUESTION 43

- (Exam Topic 5)
Your company has a Microsoft 365 E5 tenant that contains a user named User1. You review the company’s compliance score.
You need to assign the following improvement action to User1:Enable self-service password reset. What should you do first?

A. From Compliance Manager, turn off automated testing.
B. From the Azure Active Directory admin center, enable self-service password reset (SSPR).
C. From the Microsoft 365 admin center, modify the self-service password reset (SSPR) settings.
D. From the Azure Active Directory admin center, add User1 to the Compliance administrator role.

Correct Answer: D
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-manager-improvement-actions?view=o
https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-p

QUESTION 44

- (Exam Topic 5)
You have a Microsoft 365 subscription.
You view the Service health Overview as shown in the following exhibit.
MS-102 dumps exhibit
You need to ensure that a user named User1 can view the advisories to investigate service health issues. Which role should you assign to User1?

A. Message Center Reader
B. Reports Reader
C. Service Support Administrator
D. Compliance Administrator

Correct Answer: C

Service Support admin
Assign the Service Support admin role as an additional role to admins or users who need to do the following in addition to their usual admin role:
- Open and manage service requests
- View and share message center posts
- Monitor service health Incorrect:
* Message center reader
Assign the Message center reader role to users who need to do the following:
- Monitor message center notifications
- Get weekly email digests of message center posts and updates
- Share message center posts
- Have read-only access to Azure AD services, such as users and groups
* Reports reader
Assign the Reports reader role to users who need to do the following:
- View usage data and the activity reports in the Microsoft 365 admin center
- Get access to the Power BI adoption content pack
- Get access to sign-in reports and activity in Azure AD
- View data returned by Microsoft Graph reporting API Reference:
https://learn.microsoft.com/en-us/microsoft-365/admin/add-users/about-admin-roles?view=o365-worldwide

QUESTION 45

- (Exam Topic 1)
You need to configure a conditional access policy to meet the compliance requirements. You add Exchange Online as a cloud app.
Which two additional settings should you configure in Policy1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
MS-102 dumps exhibit
Solution:
Suggested Answer
References:https://docs.microsoft.com/en-us/intune/create-conditional-access-intune

Does this meet the goal?

A. Yes
B. No

Correct Answer: A