Microsoft MS-500 Exam Practice Test Instant Access

Question 1

You have a Microsoft 365 E5 subscription that contains a user named User1. You need to ensure that User1 can review Conditional Access policies.

Solution: You assign User1 the Security Administrator role.

Does this meet the goal?

AYes

BNo

Answer : A

Question 2

You have a Microsoft 365 E5 subscription that contains a user named User1. You need to ensure that User1 can review Conditional Access policies.

Solution: You assign User1 the Authentication Administrator role.

Does this meet the goal?

AYes

BNo

Answer : B

Assigning User1 the Authentication Administrator role does not meet the goal of allowing User1 to review Conditional Access policies.According to the article ''Azure AD built-in roles''1, the Authentication Administrator role can only view, set and reset authentication method information for any non-admin user.To review Conditional Access policies, User1 needs to have either theConditional Access Administratorrole or theSecurity Administratorrole1.The Conditional Access Administrator role can manage all aspects of Conditional Access policies, while the Security Administrator role can manage security-related features, including Conditional Access

Question 3

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Office 365.

You need to protect users from malicious emails that attempt to capture their credentials. The solution must ensure that suspicious emails contain tips alerting the users to potential threats.

What should you create?

Aa Safe Links policy

Ban anti-phishing policy

Can alert policy for delivered phishing email

Dan alert policy for suspicious email

Answer : B

According to the article ''Investigate malicious email that was delivered in Microsoft 365''1, an anti-phishing policy can help you protect your organization from malicious emails that attempt to capture user credentials by enablinguser impersonationanddomain impersonationprotection.The policy can also enablesafety tipsthat alert users to potential threats in suspicious emails1.A Safe Links policy can help protect users from malicious links, but not from credential phishing1.An alert policy can help you monitor and respond to suspicious activities, but not prevent them1.

Question 4

You have a Microsoft 365 subscription.

You need to be notified by email whenever an administrator starts an eDiscovery search.

What should you do from the Microsoft Purview compliance portal?

AFrom eDiscovery, create an eDiscovery case.

BFrom Records management create event type.

CFrom Content search, create a new search.

DFrom Policies, create an alert policy.

Answer : D

Question 5

You have a Microsoft 365 E5 subscription that uses Privacy Risk Management in Microsoft Priva.

You need to review the personal data type instances that were detected in the subscription.

What should you use in the Microsoft Purview compliance portal?

AContent search

Ban eDiscovery case

CContent explorer

DUser data sear

Answer : C

Question 6

You have a Microsoft 365 E5 subscription.

You create a data loss prevention (OLP) policy and select Use Notifications to inform your users and help educate them on the proper use of sensitive info.

Which apps will show the policy tip?

AOutlook on the web and Outlook Win32 only

BOutlook Win32 and Outlook for lOS and Android only Outlook Win32 only

COutlook for iOS and Android only

DOutlook on the web, Outlook Win32, and Outlook for iOS and Android

EOutlook on the web only

Answer : A

Question 7

You have a Microsoft 365 subscription that contains a Microsoft 365 group named Group1. Group1 contains 100 users and has dynamic user membership.

All users have Windows 10 devices and use Microsoft SharePoint Online and Exchange Online.

You create a sensitivity label named Label and publish Label 1 as the default label for Group!.

You need to ensure that the users in Group1 must apply Label! to their email and documents.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

AInstall the Azure Information Protection unified labeling client on the Windows 10 devices.

BFrom the Microsoft 365 Compliance center, modify the settings of the Label1 policy.

CInstall the Active Directory Rights Management Services (AD RMS) client on the Windows 10 devices.

DFrom the Microsoft 365 Compliance center, create an auto-labeling policy.

EFrom the Azure Active Directory admin center, set Membership type for Group1 to Assigned.

Answer : D, E

Microsoft MS-500 Microsoft 365 Security Administration Exam Practice Test