MS-101 Microsoft 365 Mobility and Security Exam Questions and Answers

The latest MS-101 Microsoft 365 Mobility and Security certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the MS-101 Microsoft 365 Mobility and Security exam and earn MS-101 Microsoft 365 Mobility and Security certification.

Exam Question 171

You have a Microsoft 365 subscription.
You plan to connect to Microsoft Exchange Online PowerShell and run the following cmdlets:

Search-MailboxAuditLog
Test-ClientAccessRule
Set-GroupMailbox
Get-Mailbox

Which cmdlet will generate an entry in the Microsoft Office 365 audit log?

A. Search-MailboxAuditLog
B. Test-ClientAccessRule
C. Set-GroupMailbox
D. Get-Mailbox

Correct Answer:
C. Set-GroupMailbox

Exam Question 172

Your company has a Microsoft 365 subscription that uses an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains the users shown in the following table.

Name	Type
Label1	Sensitivity label
Label2	Retention label
Label3	Azure Information Protection label

You create a retention label named Label1 that has the following configurations:

Retains content for five years
Automatically deletes all content that is older than five years

You turn on Auto labeling for Label1 by using a policy named Policy1. Policy1 has the following configurations:

Applies to content that contains the word Merger
Specifies the OneDrive accounts and SharePoint sites locations

You run the following command: Set-RetentionCompliancePolicy Policy1 –RestrictiveRetention $true -Force
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

User1 can add exchange email as a location to Policy1.
User2 can remove SharePoint sites from Policy1.
User2 can add the word Acquisition to Policy1.

Correct Answer:

User1 can add exchange email as a location to Policy1: Yes
User2 can remove SharePoint sites from Policy1: No
User2 can add the word Acquisition to Policy1: Yes

Exam Question 173

You have an Azure Active Directory (Azure AD) tenant that contains two users named User1 and User2.
On September 5, 2019, you create and enforce a terms of use (ToU) in the tenant. The ToU has the following settings:

Name: Terms1
Display name: Terms1 name
Require users to expand the terms of use: Off
Require users to consent on every device: Off
Expire consents: On
Expire starting on: October 10, 2019
Frequency: Monthly

User1 accepts Terms1 on September 5, 2019. User2 accepts Terms1 on October 5, 2019.
When will Terms1 expire for the first time for each user? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

User1:

October 5, 2019
October 10, 2019
November 5, 2019
November 10, 2019

User2:

October 5, 2019
October 10, 2019
November 5, 2019
November 10, 2019

Correct Answer:

User1: October 10, 2019
User2: October 10, 2019

Exam Question 174

Your company uses on-premises Windows Server File Classification Infrastructure (FCI). Some documents on the on-premises file servers are classified as Confidential.
You migrate the files from the on-premises file servers to Microsoft SharePoint Online.
You need to ensure that you can implement data loss prevention (DLP) policies for the uploaded files based on the Confidential classification.
What should you do first?

A. From the SharePoint admin center, configure hybrid search.
B. From the SharePoint admin center, create a managed property.
C. From the Security & Compliance Center PowerShell, run the New-DataClassification cmdlet.
D. From the Security & Compliance Center PowerShell, run the New-DlpComplianceRule cmdlet.
Correct Answer:
D. From the Security & Compliance Center PowerShell, run the New-DlpComplianceRule cmdlet.

Exam Question 175

You have a Microsoft 365 subscription.
From the Security & Compliance admin center, you create a content search of all the mailboxes that contain the work ProjectX.
You need to export the results of the content search.
What do you need to download the report?

A. a certification authority (CA) certificate
B. an export key
C. a password
D. a user certificate
Correct Answer:
B. an export key

Exam Question 176

You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You have three applications named App1, App2, and App3. The apps use files that have the same file extensions.
Your company uses Windows Information Protection (WIP). WIP has the following configurations:

Windows Information Protection mode: Silent
Protected apps: App1
Exempt apps: App2

From App1, you create a file named File1.
What is the effect of the configurations? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You can open File1 from:

App1 only
App1 and App2 only
App1 and App3 only
App1, App2, and App3

If you open File1 in App1, App2, and App3, an action will be logged for:

App1 only
App3 only
App1 and App2 only
App2 and App3 only
App1, App2, and App3

Correct Answer:

You can open File1 from: App1 and App2 only
If you open File1 in App1, App2, and App3, an action will be logged for: App3 only

Exam Question 177

You have a Microsoft 365 subscription.
You have a group named Support. Users in the Support group frequently send email messages to external users.
The manager of the Support group wants to randomly review messages that contain attachments.
You need to provide the manager with the ability to review messages that contain attachments sent from the Support group users to external users. The manager must have access to only 10 percent of the messages.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

To meet the goal for the manager, create:

A label policy
A retention policy
A supervision policy
An alert policy
MyAnalytics

To review the messages, the manager must use:

A message trace
An eDiscovery case
MyAnalytics
Outlook Web App

Correct Answer:

To meet the goal for the manager, create a supervision policy
To review the messages, the manager must use Outlook Web App

Exam Question 178

Your company has a Microsoft 365 subscription.
You implement Microsoft Azure Information Protection.
You need to automatically protect email messages that contain the word Confidential in the subject line.
What should you create?

A. a mail flow rule from the Exchange admin center
B. a message trace from the Security & Compliance admin center
C. a supervision policy from the Security & Compliance admin center
D. a sharing policy from the Exchange admin center
Correct Answer:
A. a mail flow rule from the Exchange admin center

Exam Question 179

You have a Microsoft 365 subscription.
You need to investigate user activity in Microsoft 365, including from where users signed in, which applications were used, and increases in activity during the past month. The solution must minimize administrative effort.
Which admin center should you use?

A. Azure ATP
B. Security & Compliance
C. Cloud App Security
D. Flow
Correct Answer:
B. Security & Compliance

Exam Question 180

A user named User1 has files in Microsoft OneDrive as shown in the following table.

Name	Date created	Date last modified
File1	January 1, 2019	January 16, 2019
File2	January 15, 2019	January 20, 2019

On February 1, 2019, you apply a retention policy named Policy1 as shown in the following exhibit.

On February 5, 2019, User1 edits File2.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

On March 1, 2019, File 1 is deleted automatically.
On February 20, 2019, File 2 is available in OneDrive.
On March 5, 2019, File 2 is deleted automatically.

Correct Answer:

On March 1, 2019, File 1 is deleted automatically: Yes
On February 20, 2019, File 2 is available in OneDrive: Yes
On March 5, 2019, File 2 is deleted automatically: Yes