microsoft ms-100 online test

Question 1 Topic 1, Case Study 1Case Study Question View Case

DRAG DROP
You need to prepare the environment for Project1.
You create the Microsoft 365 tenant.
Which three actions should you perform in sequence next? To answer, move the appropriate actions from the list of actions
to the answer area and arrange them in the correct order.
Select and Place:

Answer:

Explanation:
Fabrikam plans to implement a Microsoft 365 Enterprise subscription and move all email and shared documents to the
subscription.
All users must be able to exchange email messages successfully during Project1 by using their current email address.
After the planned migration to Microsoft 365, all users must continue to authenticate to their mailbox and to SharePoint sites
by using their UPN.
This configuration requires a hybrid Exchange configuration during the pilot phase. This means that you will have mailboxes
hosted in Exchange Online and mailboxes hosted in Exchange on-premise.
The first steps to configure Exchange hybrid are to Create the Azure AD tenant, add the Fabrikam.com domain as a custom
domain, then configure directory synchronization to replicate the on-prem Active Directory user accounts to Azure Active
Directory.
Reference: https://docs.microsoft.com/en-us/exchange/exchange-hybrid

Question 2 Topic 1, Case Study 1Case Study Question View Case

You are evaluating the required processes for Project1.
You need to recommend which DNS record must be created before adding a domain name for the project.
Which DNS record should you recommend?

• A. alias (CNAME)
• B. host information (HINFO)
• C. host (AAA)
• D. mail exchanger (MX)

Answer:

D

Explanation:
When you add a custom domain to Office 365, you need to verify that you own the domain. You can do this by adding either
an MX record or a TXT record to the DNS for that domain.
Note:
There are several versions of this question in the exam. The question has two possible correct answers:
1. Text (TXT)
2. Mail exchanger (MX)
Other incorrect answer options you may see on the exam include the following:
1. Host (AAAA)
2. Pointer (PTR) 3. Name Server (NS)
Reference: https://docs.microsoft.com/en-us/office365/admin/get-help-with-domains/create-dns-records-at-any-dns-hosting-
provider?view=o365-worldwide

Question 3 Topic 1, Case Study 1Case Study Question View Case

You are evaluating the required processes for Project1.
You need to recommend which DNS record must be created while adding a domain name for the project.
Which DNS record should you recommend?

• A. name server (NS)
• B. text (TXT)
• C. host (AAAA)
• D. pointer (PTR)

Answer:

B

Explanation:
When you add a custom domain to Office 365, you need to verify that you own the domain. You can do this by adding either
an MX record or a TXT record to the DNS for that domain.
Note:
There are several versions of this question in the exam. The question has two possible correct answers:
1. Text (TXT)
2. Mail exchanger (MX)
Other incorrect answer options you may see on the exam include the following:
1. Host Information (HINFO)
2. Host (A)
3. Name Server (NS)
Reference: https://docs.microsoft.com/en-us/office365/admin/get-help-with-domains/create-dns-records-at-any-dns-hosting-
provider?view=o365-worldwide

Question 4 Topic 2, Case Study 2Case Study Question View Case

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a
unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in
the review screen.
You need to assign User2 the required roles to meet the security requirements.
Solution: From the Office 365 admin center, you assign User2 the Security Reader role. From the Exchange admin center,
you assign User2 the Compliance Management role.
Does this meet the goal?

• A. Yes
• B. No

Answer:

A

Explanation:
User2 must be able to view reports and schedule the email delivery of security and compliance reports.

The Security Reader role can view reports.
The Compliance Management role can schedule the email delivery of security and compliance reports.
Reference: https://docs.microsoft.com/en-us/exchange/permissions-exo/permissions-exo

Question 5 Topic 2, Case Study 2Case Study Question View Case

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a
unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in
the review screen.
You need to assign User2 the required roles to meet the security requirements.
Solution: From the Office 365 admin center, you assign User2 the Security Administrator role. From the Exchange admin
center, you add User2 to the View-Only Organization Management role.
Does this meet the goal?

• A. Yes
• B. No

Answer:

B

Explanation:
User2 must be able to view reports and schedule the email delivery of security and compliance reports.

The Security Administrator role can view reports but not schedule the email delivery of security and compliance reports. The
View-Only Organization Management role cannot schedule the email delivery of security and compliance reports.
Reference: https://docs.microsoft.com/en-us/exchange/permissions-exo/permissions-exo

Question 6 Topic 2, Case Study 2Case Study Question View Case

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a
unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in
the review screen.
You need to assign User2 the required roles to meet the security requirements.
Solution: From the Office 365 admin center, you assign User2 the Security Reader role. From the Exchange admin center,
you assign User2 the Help Desk role.
Does this meet the goal?

• A. Yes
• B. No

Answer:

B

Explanation:
User2 must be able to view reports and schedule the email delivery of security and compliance reports.

The Security Reader role can view reports but not schedule the email delivery of security and compliance reports. The Help
Desk role cannot schedule the email delivery of security and compliance reports.
Reference: https://docs.microsoft.com/en-us/exchange/permissions-exo/permissions-exo

Question 7 Topic 2, Case Study 2Case Study Question View Case

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a
unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while
others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in
the review screen.
You need to assign User2 the required roles to meet the security requirements.
Solution: From the Office 365 admin center, you assign User2 the Records Management role. From the Exchange admin
center, you assign User2 the Help Desk role.
Does this meet the goal?

• A. Yes
• B. No

Answer:

B

Explanation:
User2 must be able to view reports and schedule the email delivery of security and compliance reports.

The Records Management role cannot view reports or schedule the email delivery of security and compliance reports. The
Help Desk role cannot schedule the email delivery of security and compliance reports.
Reference: https://docs.microsoft.com/en-us/exchange/permissions-exo/permissions-exo

Question 8 Topic 2, Case Study 2Case Study Question View Case

HOTSPOT
You need to meet the technical requirements for the user licenses.
Which two properties should you configure for each user? To answer, select the appropriate properties in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Answer:

Explanation:
All new users must be assigned Office 365 licenses automatically.

To enable Microsoft 365 license assignment, the users must have a username. This is also the UPN. The users must also
have a Usage Location.

Question 9 Topic 2, Case Study 2Case Study Question View Case

To which Azure AD role should you add User4 to meet the security requirement?

• A. Password administrator
• B. Global administrator
• C. Security administrator
• D. Privileged role administrator

Answer:

B

Explanation:
User4 must be able to reset User3 password.

User3 is assigned the Customer Lockbox Access Approver role. Only global admins can reset the passwords of people
assigned to this role as its considered a privileged role.
Reference: https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Customer-Lockbox-Approver-Role-
Now-Available/ba-p/223393

Question 10 Topic 2, Case Study 2Case Study Question View Case

HOTSPOT
You need to meet the security requirements for User3. The solution must meet the technical requirements.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Answer:

Explanation:
User3 must be able to manage Office 365 connectors.

The principle of least privilege must be used whenever possible.

Office 365 connectors are configured in the Exchange Admin Center.
You need to assign User3 the Organization Management role to enable User3 to manage Office 365 connectors. A Global
Admin could manage Office 365 connectors but the Organization Management role has less privilege.
Reference: https://docs.microsoft.com/en-us/office365/SecurityCompliance/eop/feature-permissions-in-eop