[2023年10月25日] 無料Microsoft 365 MS-101公式認定ガイドPDFダウンロード [Q171-Q192]

Share

[2023年10月25日] 無料Microsoft 365 MS-101公式認定ガイドPDFダウンロード

Microsoft MS-101公式認定ガイドPDF


Microsoft MS-101認定試験は、Microsoft 365サービスの管理と保護のスキルを検証しようとしているIT専門家向けの優れた認定プログラムです。この認定はグローバルに認識されており、ITの専門家に、最新の職場技術を管理および保護するために必要なスキルを提供します。さまざまなトレーニングリソースを利用できるため、候補者は試験に備えて、世界中の組織によって認められた名誉ある認定であるMicrosoft 365認定:エンタープライズ管理者の専門家認定を獲得できます。

 

質問 # 171
You create a Microsoft 365 subscription.
Your company's privacy policy states that user activities must NOT be audited.
You need to disable audit logging in Microsoft 365.
How should you complete the command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

References:
https://docs.microsoft.com/en-us/office365/securitycompliance/turn-audit-log-search-on-or-off


質問 # 172
You have a Microsoft 365 E5 subscription.
You configure a new alert policy as shown in the following exhibit.

You need to identify the following:
How many days it will take to establish a baseline for unusual activity.
Whether alerts will be triggered during the establishment of the baseline.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation
Graphical user interface, text, application Description automatically generated

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/alert-policies?view=o365-worldwide


質問 # 173
You have a Microsoft 365 subscription that uses a default domain named contoso.com.
You have two users named User 1 and User2.
From the Security & Compliance admin center, you add User1 to the ediscovery Manager role group.
From the Security & Compliance admin center, User1 creates a case named Case1 You need to ensure that User1 can add User2 as a case member. The solution must use the principle of least privilege.
To which role group should you add User2?

  • A. eDiscovery Manager
  • B. Security Administrator
  • C. eDiscovery Administrator

正解:B


質問 # 174
You have a Microsoft Azure Activity Directory (Azure AD) tenant contains the users shown in the following table.

Group3 is a member of Group1.
Your company uses Windows Defender Advanced Threat Protection (ATP). Windows Defender ATP contains the roles shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation:
References:
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/user-roles-windows-defender-advanced-threat-protection


質問 # 175
You have three devices enrolled in Microsoft Intune as shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation


質問 # 176
You have a Microsoft 365 tenant that contains the groups shown in the following table.

You plan to create a compliance policy named Compliance1.
You need to identify the groups that meet the following requirements:
Can be added to Compliance1 as recipients of noncompliance notifications Can be assigned to Compliance1 To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation
Graphical user interface, text, application, chat or text message Description automatically generated

Reference:
https://www.itpromentor.com/devices-or-users-when-to-target-which-policy-type-in-microsoft-endpoint-manage


質問 # 177
You create a Microsoft 365 subscription.
Your company's privacy policy states that user activities must NOT be audited.
You need to disable audit logging in Microsoft 365.
How should you complete the command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 178
You create two device compliance policies for Android devices as shown in the following table.

The users belong to the groups shown in the following table.

The users enroll their device in Microsoft Intune.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

正解:

解説:
Explanation

References:
https://docs.microsoft.com/en-us/intune-user-help/enroll-your-device-in-intune-android


質問 # 179
You have a Microsoft 365 E5 subscription.
Users have the devices shown in the following table.

On which devices can you manage apps by using app configuration policies in Microsoft Endpoint Manager?

  • A. Device2, Device3, and Device5
  • B. Device1, Device2, Device4, and Device5
  • C. Device1, Device4, and Device6
  • D. Device1, Device2, Device3, and Device6

正解:D

解説:
Explanation
You can create and use app configuration policies to provide configuration settings for both iOS/iPadOS or Android apps on devices that are and are not enrolled in Microsoft Endpoint Manager.
Reference:
https://docs.microsoft.com/en-us/mem/intune/apps/app-configuration-policies-overview


質問 # 180
You need to meet the technical requirements and planned changes for Intune.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

Reference:
https://docs.microsoft.com/en-us/intune/windows-enroll


質問 # 181
Your company has offices in five cities.
The company has a Microsoft 365 tenant.
Each office is managed by a local administrator.
You plan to deploy Microsoft Intune.
You need to recommend a solution to manage resources in intune that meets the following requirements:
* Local administrators must be able to manage only the resources in their respective office. Local administrators must be prevented from managing resources in other offices.
* Administrative effort must be minimized.

  • A. conditional access policies
  • B. device categories
  • C. scope tags
  • D. configuration profiles

正解:C


質問 # 182
You need to meet the technical requirement for the SharePoint administrator. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

References:
https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance#


質問 # 183
On which server should you install the Azure ATP sensor?

  • A. Server4
  • B. Server2
  • C. Server3
  • D. Server1
  • E. Server5

正解:D

解説:
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-capacity-planning Testlet 3 Case Study Overview ADatum Corporation is an international financial services company that has 5,000 employees.
ADatum has six offices: a main office in New York and five branch offices in Germany, the United Kingdom, France, Spain, and Italy.
All the offices are connected to each other by using a WAN link. Each office connects directly to the Internet.
Existing Environment
Current Infrastructure
ADatum recently purchased a Microsoft 365 subscription.
All user files are migrated to Microsoft 365.
All mailboxes are hosted in Microsoft 365. The users in each office have email suffixes that include the country of the user, for example, [email protected] or [email protected].
Each office has a security information and event management (SIEM) appliance. The appliance comes from three different vendors.
ADatum uses and processes Personally Identifiable Information (PII).
Problem Statements
ADatum entered into litigation. The legal department must place a hold on all the documents of a user named User1 that are in Microsoft 365.
Requirements
Business Goals
ADatum wants to be fully compliant with all the relevant data privacy laws in the regions where is operates.
ADatum wants to minimize the cost of hardware and software whenever possible.
Technical Requirements
ADatum identifies the following technical requirements:
Centrally perform log analysis for all offices.

Aggregate all data from the SIEM appliances to a central cloud repository for later analysis.

Ensure that a SharePoint administrator can identify who accessed a specific file stored in a document

library.
Provide the users in the finance department with access to Service assurance information in Microsoft

Office 365.
Ensure that documents and email messages containing the PII data of European Union (EU) citizens

are preserved for 10 years.
If a user attempts to download 1,000 or more files from Microsoft SharePoint Online within 30 minutes,

notify a security administrator and suspend the user's user account.
A security administrator requires a report that shown which Microsoft 365 users signed in. Based on

the report, the security administrator will create a policy to require multi-factor authentication when a sign-in is high risk.
Ensure that the users in the New York office can only send email messages that contain sensitive U.S.

PII data to other New York office uses. Email messages must be monitored to ensure compliance.
Auditors in the New York office must have access to reports that show the sent and received email messages containing sensitive U.S. PII data.


質問 # 184
You have the Microsoft Azure Advanced Threat Protection (ATP) workspace shown in the Workspace exhibit. (Click the Workspace tab.)

The sensors settings for the workspace are configured as shown in the Sensors exhibit. (Click the Sensors tab.)

You need to ensure that Azure ATP stores data in Asia.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

正解:

解説:


質問 # 185
You have a Microsoft Azure Active Directory (Azure AD) tenant named Contoso.com.
You create a Microsoft Defender for identity instance Contoso.
The tenant contains the users shown in the following table.

You need to modify the configuration of the Defender for identify sensors.
Solutions: You instruct User4 to modify the Defender for identity sensor configuration.
Does this meet the goal?

  • A. Yes
  • B. No

正解:A


質問 # 186
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an on-premises Active Directory domain. The domain contains domain controllers that run Windows Server 2019. The functional level of the forest and the domain is Windows Server 2012 R2.
The domain contains 100 computers that run Windows 10 and a member server named Server1 that runs Windows Server 2012 R2.
You plan to use Server1 to manage the domain and to configure Windows 10 Group Policy settings.
You install the Group Policy Management Console (GPMC) on Server1.
You need to configure the Windows Update for Business Group Policy settings on Server1.
Solution: You raise the forest functional level to Windows Server 2016. You copy the Group Policy Administrative Templates from a Windows 10 computer to the Netlogon share on all the domain controllers.
Does this meet the goal?

  • A. Yes
  • B. No

正解:B

解説:
Section: [none]


質問 # 187
You have a Microsoft 365 subscription.
Your network uses an IP address space of 51.40.15.0/24.
An Exchange Online administrator recently created a role named Role1 from a computer on the network.
You need to identify the name of the administrator by using an audit log search.
For which activities should you search and by which field should you filter in the audit log search? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 188
You have a Microsoft 365 subscription.
You need to view the IP address from which a user synced a Microsoft SharePoint Online library.
What should you do?

  • A. From the Security & Compliance admin center, perform an audit log search.
  • B. From the SharePoint Online admin center, view the usage reports.
  • C. From the Microsoft 365 admin center, view the properties of the user's user account.
  • D. From the Microsoft 365 admin center, view the usage reports.

正解:A

解説:
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/office365/securitycompliance/search-the-audit-log-in-security-and-compliance


質問 # 189
You create two device compliance policies for Android devices as shown in the following table.

The users belong to the groups shown in the following table.

The users enroll their device in Microsoft Intune.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation

References:
https://docs.microsoft.com/en-us/intune-user-help/enroll-your-device-in-intune-android


質問 # 190
You have a Microsoft 365 subscription.
You create a Microsoft Cloud App Security policy named Risk1 based on the Logon from a risky IP address template as shown in the following exhibit.

You have two users named User1 and User2. Each user signs in to Microsoft SharePoint Online from a risky IP address 10 times within 24 hours.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

正解:

解説:

Explanation


質問 # 191
You have three devices enrolled .n Microsoft Intune as shown .n the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

正解:

解説:


質問 # 192
......


この試験は、Microsoft 365テクノロジーでの作業経験があり、Microsoft Azure Active Directory、Microsoft Intune、Microsoft Endpoint Managerに精通しているITプロフェッショナルを対象としています。この試験は、デバイス管理の計画と実装、アイデンティティとアクセスの実装と管理、脅威保護の管理、コンプライアンスとガバナンスの管理など、幅広いトピックをカバーしています。

 

無料MS-101試験問題集試験点数を伸ばそう:https://jp.fast2test.com/MS-101-premium-file.html

試験MS-101最新ブレーン専門問題集はここFast2test:https://drive.google.com/open?id=1hAVDPzXwqQUNd2khrjxCNWKMWUMNoakj


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어