00:00

QUESTION 16

- (Exam Topic 4)
Your company has a Microsoft 365 subscription that contains the users shown in the following table.
MS-500 dumps exhibit
The company implements Windows Defender Advanced Threat Protection (Windows Defender ATP). Windows Defender ATP includes the roles shown in the following table:
MS-500 dumps exhibit
Windows Defender ATP contains the machine groups shown in the following table:
MS-500 dumps exhibit
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
MS-500 dumps exhibit
Solution:
MS-500 dumps exhibit

Does this meet the goal?

Correct Answer: A

QUESTION 17

- (Exam Topic 4)
You have a Microsoft 365 subscription that contains the users shown in the following table.
MS-500 dumps exhibit
You create and enforce an Azure Active Directory (Azure AD) Identity Protection sign-in risk policy that has the following settings:
MS-500 dumps exhibit Assignments: Include Group1, Exclude Group2
MS-500 dumps exhibit Conditions: User risk level of Medium and above
MS-500 dumps exhibit Access: Allow access, Require password change
The users attempt to sign in. The risk level for each user is shown in the following table.
MS-500 dumps exhibit
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
MS-500 dumps exhibit
Solution:
Box 1: Yes.
User1 is in Group1 which the policy applies to.
Box 2: No
User2 is in Group2 which is excluded from the policy.
Box 3: No
User3 is in Group1 which is included in the policy and Group2 which is excluded from the policy. In this case, the exclusion wins so the policy does not apply to User3.

Does this meet the goal?

Correct Answer: A

QUESTION 18

- (Exam Topic 4)
You configure several Advanced Threat Protection (ATP) policies in a Microsoft 365 subscription. You need to allow a user named User1 to view ATP reports in the Threat management dashboard. Which role provides User1with the required role permissions?

Correct Answer: A
Reference:
https://docs.microsoft.com/en-us/office365/securitycompliance/view-reports-for-atp#what-permissions-areneede

QUESTION 19

- (Exam Topic 4)
You have a hybrid Microsoft 365 environment.
All computers run Windows 10 Enterprise and have Microsoft Office 365 ProPlus installed. All the computers are joined to Active Directory.
You have a server named Server1 that runs Windows Server 2016. Server1 hosts the telemetry database. You need to prevent private details in the telemetry data from being transmitted to Microsoft. What should you do?

Correct Answer: C
"To allow yourself and other administrators to identify the owners of Office files that have compatibility issues without revealing file names or specific locations, you can enable file obfuscation, which disguises Office file names, titles, and file paths. This setting is configured on the agent, which performs the obfuscation task before uploading data to the shared folder. The data that is stored on the local computer is not obfuscated."
https://docs.microsoft.com/en-us/deployoffice/compat/manage-the-privacy-of-data-monitored-by-telemetry-in-o

QUESTION 20

- (Exam Topic 4)
Your network contains an on-premises Active Directory domain. The domain contains servers that run Windows Server and have advanced auditing enabled.
The security logs of the servers are collected by using a third-party SIEM solution.
You purchase a Microsoft 365 subscription and plan to deploy Azure Advanced Threat Protection (ATP) by using standalone sensors.
You need to ensure that you can detect when sensitive groups are modified and when malicious services are created.
What should you do?

Correct Answer: A

Reference:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/configure-event-forwarding