The latest MS-101 Microsoft 365 Mobility and Security certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the MS-101 Microsoft 365 Mobility and Security exam and earn MS-101 Microsoft 365 Mobility and Security certification.
Exam Question 181
You have a Microsoft 365 subscription that uses a default domain named contoso.com.
You have two users named User1 and User2.
From the Security & Compliance admin center, you add User1 to the eDiscovery Manager role group.
From the Security & Compliance admin center, User1 creates a case named Case1.
You need to ensure that User1 can add User2 as a case member. The solution must use the principle of least privilege.
To which role group should you add User2?
A. eDiscovery Manager
B. eDiscovery Administrator
C. Security Administrator
Correct Answer:
A. eDiscovery Manager
Exam Question 182
Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You sign up for Microsoft Store for Business.
The tenant contains the users shown in the following table.
| Name | Microsoft Store for Business role | Azure AD role |
|---|---|---|
| User1 | Purchaser | None |
| User2 | Basic Purchaser | None |
| User3 | None | Application administrator |
| User4 | None | Cloud application administrator |
| User5 | None | None |
Microsoft Store for Business has the following Shopping behavior settings:
- Allow users to shop is set to On.
- Make everyone a Basic Purchaser is set to Off.
You need to identify which users can install apps from the Microsoft for Business private store.
Which users should you identify?
A. User1 and User2 only
B. User1 only
C. User1, User2, User3, and User4 only
D. User3 and User4 only
E. User1, User2, User3, User4, and User5
Correct Answer:
A. User1 and User2 only
Answer Description:
Allow users to shop controls the shopping experience in Microsoft Store for Education. When this setting is
on, Purchasers and Basic Purchasers can purchase products and services from Microsoft Store for Education.
Exam Question 183
You have a Microsoft 365 subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains the users shown in the following table.
| Name | Username | Type |
|---|---|---|
| User1 | [email protected] | Member |
| User2 | [email protected] | Member |
| User3 | [email protected] | Member |
| User4 | [email protected] | Guest |
| User5 | [email protected] | Guest |
You create and assign a data loss prevention (DLP) policy named Policy1. Policy1 is configured to prevent documents that contain Personally Identifiable Information (PII) from being emailed to users outside your organization.
To which users can User1 send documents that contain PII?
A. User2 only
B. User2 and User3 only
C. User2, User3, and User4 only
D. User2, User3, User4, and User5
Correct Answer:
B. User2 and User3 only
Answer Description:
Guest accounts are considered “outside your organization”. Users who have non-guest accounts in a host organization’s Active Directory or Azure Active Directory tenant are considered as people inside the organization.
Exam Question 184
You have a Microsoft 365 subscription that contains the users shown in the following table.
| Name | Role |
|---|---|
| User1 | Exchange administrator |
| User2 | Security administrator |
| User3 | None |
You run the following cmdlet.
Set-MailboxAuditBypassAssociation –Identity User2 –AuditByPassEnabled $true
The users perform the following actions:
- User1 accesses an item in the mailbox of User2.
- User2 modifies a mailbox item in the mailbox of User3.
- User3 signs in to her mailbox.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
- The action performed by User1 is audited.
- The action performed by User2 is audited.
- The action performed by User3 is audited.
Correct Answer:
- The action performed by User1 is audited: Yes
- The action performed by User2 is audited: No
- The action performed by User3 is audited: Yes
Exam Question 185
You configure a data loss prevention (DLP) policy named DLP1 as shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
DLP1 will be applied only to documents that have [answer choice].
- Exchange email
- SharePoint sites
- OneDrive accounts
DLP1 will be applied only to documents that have [answer choice].
- both a credit card number and the 1year label applied
- either a credit card number or the 1year label applied
- between 85 and 100 credit card numbers
Correct Answer:
- DLP1 will be applied only to documents that have [OneDrive accounts].
- DLP1 will be applied only to documents that have [either a credit card number or the 1year label applied].
Exam Question 186
You have a Microsoft 365 subscription.
Your network uses an IP address space of 51.40.15.0/24.
An Exchange Online administrator recently created a role named Role1 from a computer on the network.
You need to identify the name of the administrator by using an audit log search.
For which activities should you search and by which field should you filter in the audit log search? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Activities to search for:
- Exchange mailbox activities
- Site administration activities
- Show results for all activities
- Role administration activities
Field to filter by:
- Item
- User
- Detail
- IP address
Correct Answer:
- Activities to search for: Show results for all activities
- Field to filter by: Detail
Exam Question 187
You have a Microsoft 365 subscription that uses Security & Compliance retention policies.
You implement a preservation lock on a retention policy that is assigned to all executive users.
Which two actions can you perform on the retention policy? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point?
A. Add locations to the policy
B. Reduce the duration of policy
C. Remove locations from the policy
D. Extend the duration of the policy
E. Disable the policy
Correct Answer:
A. Add locations to the policy
D. Extend the duration of the policy
Exam Question 188
You have a Microsoft 365 subscription.
Your company has a customer ID associated to each customer. The customer IDs contain 10 numbers followed by 10 characters. The following is a sample customer ID: 12-456-7890-abc-de-fghij.
You plan to create a data loss prevention (DLP) policy that will detect messages containing customer IDs.
What should you create to ensure that the DLP policy can detect the customer IDs?
A. a sensitive information type
B. a sensitivity label
C. a supervision policy
D. a retention label
Correct Answer:
A. a sensitive information type
Exam Question 189
You have a Microsoft 365 subscription that contains a user named User1.
You need to ensure that User1 can search the Microsoft 365 audit logs from the Security & Compliance admin center.
Which role should you assign to User1?
A. View-Only Audit Logs in the Security & Compliance admin center
B. View-Only Audit Logs in the Exchange admin center
C. Security reader in the Azure Active Directory admin center
D. Security Reader in the Security & Compliance admin center
Correct Answer:
B. View-Only Audit Logs in the Exchange admin center
Exam Question 190
From the Security & Compliance admin center, you create a content export as shown in the exhibit. (Click the Exhibit tab.)
What will be excluded from the export?
A. a 10-MB XLSX file
B. a 5-MB MP3 file
C. a 5-KB RTF file
D. an 80-MB PPTX file
Correct Answer:
B. a 5-MB MP3 file
Answer Description:
Unrecognized file formats are excluded from the search.
Certain types of files, such as Bitmap or MP3 files, don’t contain content that can be indexed. As a result, the search indexing servers in Exchange and SharePoint don’t perform full-text indexing on these types of files.
These types of files are considered to be unsupported file types.