Microsoft MD-102 Exam Practice Test Instant Access

Question 1

You have a Microsoft 365 E5 subscription.

You use Microsoft Intune to manage all Windows 11 devices.

You create an attack surface reduction (ASR) policy named Profile1 based on the Attack Surface Reduction Rules profile and assign Profile! to all the devices.

A user reports that an Adobe Reader plug-in is now blocked.

You need to ensure that the plug-in is unblocked.

What should you do?

ACreate an Endpoint Privilege Management policy and assign the policy to all the devices.

BAdd a scope tag to Profile1.

CConfigure ASR Only Per Rule Exclusions in Profile1.

DCreate a device compliance policy and assign the policy to all the devices.

Answer : C

Question 2

You have a Microsoft 365 subscription that includes Microsoft Intune.

You create a new Android app protection policy named Policy1 that prevents screen captures in all Microsoft apps. You discover that an unmanaged email client installed on Android devices can still capture screens You need to ensure that users can only use Microsoft apps to access email. What should you do?

ACreate a Conditional Access policy.

BCreate a compliance policy.

CModify the Data protection settings of Policy1.

DModify the assignments of Policy1.

Answer : D

Question 3

You have a Microsoft 365 subscription.

You use Microsoft Intune to manage Windows 11 devices.

You need to implement Windows Local Administrator Password Solution (Windows LAPS).

What should you configure?

Aa device compliance policy

Ban app protection policy

Can account protection policy

Da configuration profile

Answer : C

Question 4

You have a Microsoft 365 E5 subscription that uses Microsoft Intune. Vou configure Intune to send log data to Log Analytics. You need to review events involving devices that fail to enroll in Intune. What should you monitor?

Aoperational logs

Baudit logs

Cthe Intune Device log

Ddevice compliance organizational logs

Answer : C

Question 5

You have a Windows 10 device named Computer1 enrolled in Microsoft Intune.

You need to configure Computer1 as a public workstation that will run a single customer-facing, full-screen application.

Which configuration profile type template should you use in Microsoft Intune admin center?

AShared multi-user device

BDevice restrictions

CKiosk

DEndpoint protection

Answer : C

Question 6

You have a Microsoft 365 subscription.

You create a retention label named Retention1 as shown in the following exhibit.

You apply Retention1 to all the Microsoft OneDrive content.

On January 1, 2020, a user stores a file named File1 in OneDrive.

On January 10, 2020, the user modifies File1.

On February 1, 2020, the user deletes File1.

When will File1 be removed permanently and unrecoverable from OneDrive?

AFebruary 1, 2020

BJuly 1, 2020

CJuly 10, 2020

DAugust 1, 2020

Answer : B

Question 7

You have a Microsoft 365 subscription. The subscription contains 500 computers that run Windows 11 and are enrolled in Microsoft Intune. You need to manage the deployment of monthly security updates. The solution must meet the following requirements:

* Updates must be deployed to a group of test computers for quality assurance.

* Updates must be deployed automatically 15 days after the quality assurance testing.

What should you create in the Microsoft Intune admin center?

Aa device Configuration profile

Ban update ring

Ca feature update policy

Da security baseline

Answer : B

Microsoft MD-102 Endpoint Administrator Exam Practice Test