CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Legit MS-500 Exam Download

Page: 5 / 8
Total 327 questions
Get MS-500 Full Access Download MS-500 PDF

Microsoft 365 Security Administration Questions and Answers

Question 17

You have a Microsoft 365 subscription for a company named Contoso, Ltd. All data is in Microsoft 365.

Contoso works with a partner company named Litware, Inc. Litware has a Microsoft 365 subscription.

You need to allow users at Contoso to share files from Microsoft OneDrive to specific users at Litware.

Which two actions should you perform from the OneDrive admin center? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Options:

A.

Increase the permission level for OneDrive External sharing

B.

Modify the Links settings

C.

Change the permissions for OneDrive External sharing to the least permissive level

D.

Decrease the permission level for OneDrive External sharing

E.

Modify the Device access settings

F.

Modify the Sync settings

Question 18

You have a Microsoft 365 subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com.

You need to recommend an Azure AD Privileged Identity Management (PIM) solution that meets the following requirements:

  • Administrators must be notified when the Security administrator role is activated.
  • Users assigned the Security administrator role must be removed from the role automatically if they do not sign in for 30 days.

Which Azure AD PIM setting should you recommend configuring for each requirement? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Question 19

You have a Microsoft 365 subscription.

A security manager receives an email message every time a data loss prevention (DLP) policy match occurs.

You need to limit alert notifications to actionable DLP events.

What should you do?

Options:

A.

From the Security & Compliance admin center, modify the Policy Tips of a DLP policy.

B.

From the Cloud App Security admin center, apply a filter to the alerts.

C.

From the Security & Compliance admin center, modify the User overrides settings of a DLP policy.

D.

From the Security & Compliance admin center, modify the matched activities threshold of an alert policy.

Question 20

You have several Conditional Access policies that block noncompliant devices from connecting to services.

You need to identify which devices are blocked by which policies.

What should you use?

Options:

A.

the Device compliance report in the Microsoft Endpoint Manager admin center

B.

the Device compliance trends report in the Microsoft Endpoint Manager admin center

C.

Activity log in the Cloud App Security admin center

D.

the Conditional Access Insights and Reporting workbook in the Azure Active Directory admin center

Page: 5 / 8
Total 327 questions
Get MS-500 Full Access Download MS-500 PDF