MS-101 Microsoft 365 Mobility and Security Exam Questions and Answers – Page 2

The latest MS-101 Microsoft 365 Mobility and Security certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the MS-101 Microsoft 365 Mobility and Security exam and earn MS-101 Microsoft 365 Mobility and Security certification.

Exam Question 121

Your network contains an on-premises Active Directory domain.
Your company has a security policy that prevents additional software from being installed on domain controllers.
You need to monitor a domain controller by using Microsoft Azure Advanced Threat Protection (ATP).
What should you do? More than one answer choice may achieve the goal. Select the BEST answer.

A. Deploy an Azure ATP sensor, and then configure port mirroring.
B. Deploy an Azure ATP sensor, and then configure detections.
C. Deploy an Azure ATP standalone sensor, and then configure detections.
D. Deploy an Azure ATP standalone sensor, and then configure port mirroring.
Correct Answer:
D. Deploy an Azure ATP standalone sensor, and then configure port mirroring.

Exam Question 122

Your company has digitally signed applications.
You need to ensure that Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) considers the digitally signed applications safe and never analyzes them.
What should you create in the Microsoft Defender Security Center?

A. a custom detection rule
B. an allowed/blocked list rule
C. an alert suppression rule
D. an indicator
Correct Answer:
D. an indicator

Exam Question 123

You create a Microsoft 365 subscription.
You need to create a deployment plan for Microsoft Azure Advanced Threat Protection (ATP).
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

  • Create a Security and Compliance threat management policy.
  • Create a workspace.
  • Install sensors.
  • Create an Azure Active Directory (Azure AD) conditional access policy.
  • Configure the sensor settings.
  • Download the Azure ATP sensor setup package.

Correct Answer:

  • Create a workspace.
  • Download the Azure ATP sensor setup package.
  • Install sensors.
  • Configure the sensor settings.

Exam Question 124

You have a Microsoft 365 E5 subscription that uses Azure Advanced Threat Protection (ATP).
You need to create a detection exclusion in Azure ATP.
Which tool should you use?

A. the Security & Compliance admin center
B. Microsoft Defender Security Center
C. the Microsoft 365 admin center
D. the Azure Advanced Threat Protection portal
E. the Cloud App Security portal
Correct Answer:
D. the Azure Advanced Threat Protection portal

Exam Question 125

You have a Microsoft 365 subscription.
You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Endpoint Management admin center, you create a device configuration profile.
Does this meet the goal?

A. Yes
B. No
Correct Answer:
B. No
Answer Description:
You need to create a trusted location and a conditional access policy.

Exam Question 126

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Security administrator role.
Does this meet the goal?

A. Yes
B. No
Correct Answer:
A. Yes

Exam Question 127

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the SharePoint admin role.
Does this meet the goal?

A. Yes
B. No
Correct Answer:
B. No
Answer Description:
You need to assign the Security Administrator role.

Exam Question 128

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Office 365 Advanced Threat Protection (ATP) settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Azure Active Directory admin center, you assign SecAdmin1 the Teams Service Administrator role.
Does this meet the goal?

A. Yes
B. No
Correct Answer:
B. No
Answer Description:
You need to assign the Security Administrator role.

Exam Question 129

You have a Microsoft 365 subscription.
You need to be notified if users receive email containing a file that has a virus.
What should you do?

A. From the Exchange admin center, create an in-place eDiscovery & hold.
B. From the Security & Compliance admin center, create a data governance event.
C. From the Exchange admin center, create an anti-malware policy.
D. From the Exchange admin center, create a mail flow rule.
Correct Answer:
C. From the Exchange admin center, create an anti-malware policy.

Exam Question 130

You implement Microsoft Azure Advanced Threat Protection (Azure ATP).
You have an Azure ATP sensor configured as shown in the following exhibit.
You have an Azure ATP sensor configured as shown in the following exhibit.
How long after the Azure ATP cloud service is updated will the sensor update?

A. 72 hours
B. 12 hours
C. 48 hours
D. 7 days
E. 20 hours
Correct Answer:
A. 72 hours