Summer Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70track

Free Microsoft MS-102 Practice Exam with Questions & Answers | Set: 4

Questions 31

You have a Microsoft 365 E5 subscription that contains a user named User1. You create an anti-phishing policy named Policy! that has the following settings:

• Include these users, groups and domains: User1

• Phishing email threshold: 3 - More Aggressive

User1 receives the email messages shown in the following table.

MS-102 Question 31

Which messages are phishing email?

Options:
A.

Mail4 only

B.

Mail3 and Mail4 only

C.

Mail2, Mail3, and Mail4 only

D.

Mail1, Mail2, Mail3, and Mail4

Microsoft MS-102 Premium Access
Questions 32

You have a Microsoft 365 tenant that contains a Windows 10 device. The device is onboarded to Microsoft Defender for Endpoint.

From Microsoft Defender Security Center, you perform a security investigation.

You need to run a PowerShell script on the device to collect forensic information.

Which action should you select on the device page?

Options:
A.

Initiate Live Response Session

B.

Initiate Automated Investigation

C.

Collect investigation package

D.

Go hunt

Questions 33

You have a Microsoft 365 E5 subscription that uses Microsoft intune. The subscription contains the resources shown in the following table.

MS-102 Question 33

User1 is the owner of Device1.

You add Microsoft 365 Apps Windows 10 and later app types to Intune as shown in the following table.

On Thursday, you review the results of the app deployments.

MS-102 Question 33

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

MS-102 Question 33

Options:
Questions 34

Your company has offices in Seattle and Denver.

You have a Microsoft 365 subscription.

You plan to create a Conditional Access policy named Policy1 that will enforce multifactor authentication (MFA).

You need to ensure that users at the Seattle office are excluded from MFA. Users at the Denver office must always be prompted for MFA.

What should you configure for Policy1?

Options:
A.

Authentication strengths

B.

a named location that has IP ranges location set to the Seattle office

C.

a named location that has Countries location set to United States

D.

VPN connectivity from the Seattle office

Questions 35

You have a Microsoft 365 E5 subscription that contains the devices shown in the following table.

MS-102 Question 35

At 08:00. you create an incident notification rule that has the following configurations:

• Name: Notification!

• Notification settings

o Notify on alert seventy: Low

o Device group scope: All (3)

o Details: First notification per incident

• Recipients: Userl@contoso.com, User2@contoso.com

At 08:02. you create an incident notification rule that has the following configurations:

• Name: Notification

• Notification settings

o Notify on alert severity: Low. Medium

o Device group scope: DevtceGroup1, DeviceGroup2

• Recipients: Userl@contoso.com

in Microsoft Defender XDR, alerts are logged as shown in the following table.

MS-102 Question 35

For each of the following statements, select Yes if the statement is true. Otherwise, select No1.

NOTE: Each correct selection is worth one point.

MS-102 Question 35

Options:
Questions 36

On which server should you install the Azure ATP sensor?

Options:
A.

Server 1

B.

Server 2

C.

Server 3

D.

Server 4

E.

Server 5

Questions 37

You need to meet the compliance requirements for the Windows 10 devices.

What should you create from the Intune admin center?

Options:
A.

a device compliance policy

B.

a device configuration profile

C.

an application policy

D.

an app configuration policy

Questions 38

As of March, how long will the computers in each office remain supported by Microsoft? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

MS-102 Question 38

Options:
Questions 39

You have a Microsoft 365 tenant that has Enable Security defaults set to No in Microsoft Entra ID (Microsoft Entra ID).

The tenant has two Compliance Manager assessments as shown in the following table.

MS-102 Question 39

The SP800 assessment has the improvement actions shown in the following table.

MS-102 Question 39

You perform the following actions:

For the Data Protection Baseline assessment, change the Test status of Establish a threat intelligence program to Implemented.

Enable multi-factor authentication (MFA) for all users.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

MS-102 Question 39

Options:
Questions 40

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Endpoint.

When users attempt to access the portal of a partner company, they receive the message shown in the following exhibit.

MS-102 Question 40

You need to enable user access to the partner company ' s portal.

Which Microsoft Defender for Endpoint setting should you modify?

Options:
A.

Alert notifications

B.

Alert suppression

C.

Custom detections

D.

Advanced hunting

E.

Indicators