Free Access Microsoft.MS-100.v2021-10-18.q101 Practice Test (Page 5)

Question 16

You have a Microsoft 365 subscription that contains a Microsoft Azure Directory (Azure AD) tenant Contoso.com. The tenant includes a user named user1.
You enable Azure AD Identity protection.
You need to ensure that User1 can review the list in Azure AD identity protection of users flagged for risk. The solution must use the principle of least privilege.
To which role should you add User1?

A.Report

B.Owner

C.Security administrator

D.Global reader

Question 17

Which role should you assign to User1?

A.Security Administrator

B.Records Management

C.Security Reader

D.Hygiene Management

Question 18

You have a Microsoft 365 E5 subscription.
You need to ensure that users are prompted for multi-factor authentication (MFA) when they attempt to access Microsoft SharePoint Online resources. Users must NOT be prompted for MFA when they attempt to access other Microsoft 365 services.
What should you do?

A.From the Microsoft Endpoint Manager admin center, create an app protection policy.

B.From the multi-factor authentication page, configure the users settings.

C.From the Azure Active Directory admin center, create a conditional access policy.

D.From the Cloud App Security admin center, create an app access policy.

Question 19

You have a Microsoft 365 subscription.
You create an alert policy as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information in the graphic.
NOTE: Each correct selection is worth one point.