Question 96
Your network contains an Active Directory domain.
You deploy a Microsoft Azure Active Directory (Azure AD) tenant.
Another administrator configures the domain the synchronization to Azure AD.
You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to Azure AD. All the other user accounts synchronized to successfully.
You review Azure AD Connect Health and discover that all the user account synchronization completed.
You discover AD Connect Health and discover that at the user account synchronization to Azure AD.
Solution: You run idfix.exe and export the 10 user accounts.
You deploy a Microsoft Azure Active Directory (Azure AD) tenant.
Another administrator configures the domain the synchronization to Azure AD.
You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to Azure AD. All the other user accounts synchronized to successfully.
You review Azure AD Connect Health and discover that all the user account synchronization completed.
You discover AD Connect Health and discover that at the user account synchronization to Azure AD.
Solution: You run idfix.exe and export the 10 user accounts.
Question 97
You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. The tenant includes a user named User1.
You enable Azure AD Identity Protection.
You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege.
To which role should you add User1?
You enable Azure AD Identity Protection.
You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege.
To which role should you add User1?
Question 98
Your network contain*, an on-premises Active Directory forest.
You are evaluating the implementation of Microsoft 365 and the deployment of authentication strategy.
You need to recommend an authentication strategy that meets the following requirements:
* Allows users to sign in by using smart card-based certificates
* Allows users to connect to on premises and Microsoft 365 services by using SSO Which authentication strategy should you recommend?
You are evaluating the implementation of Microsoft 365 and the deployment of authentication strategy.
You need to recommend an authentication strategy that meets the following requirements:
* Allows users to sign in by using smart card-based certificates
* Allows users to connect to on premises and Microsoft 365 services by using SSO Which authentication strategy should you recommend?
Question 99
You have a Microsoft 365 subscription.
You are configuring permissions for Security & Compliance.
You need to ensure that the users can perform the tasks shown in the following table.
The solution must use the principle of least privilege.
To which role should you assign each user? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You are configuring permissions for Security & Compliance.
You need to ensure that the users can perform the tasks shown in the following table.
The solution must use the principle of least privilege.
To which role should you assign each user? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Question 100
You have a DNS zone named contoso.com that contains the following records.
You purchase a Microsoft 365 subscription.
You plan to migrate mailboxes to Microsoft Exchange Online.
You need to configure Sender Policy Framework (SPF) to support Exchange Online.
What should you do?
You purchase a Microsoft 365 subscription.
You plan to migrate mailboxes to Microsoft Exchange Online.
You need to configure Sender Policy Framework (SPF) to support Exchange Online.
What should you do?