MS-101 Microsoft 365 Mobility and Security Exam Questions and Answers – Page 2

The latest MS-101 Microsoft 365 Mobility and Security certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the MS-101 Microsoft 365 Mobility and Security exam and earn MS-101 Microsoft 365 Mobility and Security certification.

Exam Question 181

You have a Microsoft 365 subscription that uses a default domain named contoso.com.
You have two users named User1 and User2.
From the Security & Compliance admin center, you add User1 to the eDiscovery Manager role group.
From the Security & Compliance admin center, User1 creates a case named Case1.
You need to ensure that User1 can add User2 as a case member. The solution must use the principle of least privilege.
To which role group should you add User2?

A. eDiscovery Manager
B. eDiscovery Administrator
C. Security Administrator
Correct Answer:
A. eDiscovery Manager

Exam Question 182

Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You sign up for Microsoft Store for Business.
The tenant contains the users shown in the following table.

NameMicrosoft Store for Business roleAzure AD role
User1PurchaserNone
User2Basic PurchaserNone
User3NoneApplication administrator
User4NoneCloud application administrator
User5NoneNone

Microsoft Store for Business has the following Shopping behavior settings:

  • Allow users to shop is set to On.
  • Make everyone a Basic Purchaser is set to Off.

You need to identify which users can install apps from the Microsoft for Business private store.
Which users should you identify?

A. User1 and User2 only
B. User1 only
C. User1, User2, User3, and User4 only
D. User3 and User4 only
E. User1, User2, User3, User4, and User5
Correct Answer:
A. User1 and User2 only
Answer Description:
Allow users to shop controls the shopping experience in Microsoft Store for Education. When this setting is
on, Purchasers and Basic Purchasers can purchase products and services from Microsoft Store for Education.

Exam Question 183

You have a Microsoft 365 subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains the users shown in the following table.

NameUsernameType
User1[email protected]Member
User2[email protected]Member
User3[email protected]Member
User4[email protected]Guest
User5[email protected]Guest

You create and assign a data loss prevention (DLP) policy named Policy1. Policy1 is configured to prevent documents that contain Personally Identifiable Information (PII) from being emailed to users outside your organization.
To which users can User1 send documents that contain PII?

A. User2 only
B. User2 and User3 only
C. User2, User3, and User4 only
D. User2, User3, User4, and User5
Correct Answer:
B. User2 and User3 only
Answer Description:
Guest accounts are considered “outside your organization”. Users who have non-guest accounts in a host organization’s Active Directory or Azure Active Directory tenant are considered as people inside the organization.

Exam Question 184

You have a Microsoft 365 subscription that contains the users shown in the following table.

NameRole
User1Exchange administrator
User2Security administrator
User3None

You run the following cmdlet.
Set-MailboxAuditBypassAssociation –Identity User2 –AuditByPassEnabled $true
The users perform the following actions:

  • User1 accesses an item in the mailbox of User2.
  • User2 modifies a mailbox item in the mailbox of User3.
  • User3 signs in to her mailbox.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

  • The action performed by User1 is audited.
  • The action performed by User2 is audited.
  • The action performed by User3 is audited.

Correct Answer:

  • The action performed by User1 is audited: Yes
  • The action performed by User2 is audited: No
  • The action performed by User3 is audited: Yes

Exam Question 185

You configure a data loss prevention (DLP) policy named DLP1 as shown in the following exhibit.
You configure a data loss prevention (DLP) policy named DLP1 as shown in the following exhibit.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

DLP1 will be applied only to documents that have [answer choice].

  • Exchange email
  • SharePoint sites
  • OneDrive accounts

DLP1 will be applied only to documents that have [answer choice].

  • both a credit card number and the 1year label applied
  • either a credit card number or the 1year label applied
  • between 85 and 100 credit card numbers

Correct Answer:

  • DLP1 will be applied only to documents that have [OneDrive accounts].
  • DLP1 will be applied only to documents that have [either a credit card number or the 1year label applied].

Exam Question 186

You have a Microsoft 365 subscription.
Your network uses an IP address space of 51.40.15.0/24.
An Exchange Online administrator recently created a role named Role1 from a computer on the network.
You need to identify the name of the administrator by using an audit log search.
For which activities should you search and by which field should you filter in the audit log search? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Activities to search for:

  • Exchange mailbox activities
  • Site administration activities
  • Show results for all activities
  • Role administration activities

Field to filter by:

  • Item
  • User
  • Detail
  • IP address

Correct Answer:

  • Activities to search for: Show results for all activities
  • Field to filter by: Detail

Exam Question 187

You have a Microsoft 365 subscription that uses Security & Compliance retention policies.
You implement a preservation lock on a retention policy that is assigned to all executive users.
Which two actions can you perform on the retention policy? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point?

A. Add locations to the policy
B. Reduce the duration of policy
C. Remove locations from the policy
D. Extend the duration of the policy
E. Disable the policy
Correct Answer:
A. Add locations to the policy
D. Extend the duration of the policy

Exam Question 188

You have a Microsoft 365 subscription.
Your company has a customer ID associated to each customer. The customer IDs contain 10 numbers followed by 10 characters. The following is a sample customer ID: 12-456-7890-abc-de-fghij.
You plan to create a data loss prevention (DLP) policy that will detect messages containing customer IDs.
What should you create to ensure that the DLP policy can detect the customer IDs?

A. a sensitive information type
B. a sensitivity label
C. a supervision policy
D. a retention label
Correct Answer:
A. a sensitive information type

Exam Question 189

You have a Microsoft 365 subscription that contains a user named User1.
You need to ensure that User1 can search the Microsoft 365 audit logs from the Security & Compliance admin center.
Which role should you assign to User1?

A. View-Only Audit Logs in the Security & Compliance admin center
B. View-Only Audit Logs in the Exchange admin center
C. Security reader in the Azure Active Directory admin center
D. Security Reader in the Security & Compliance admin center
Correct Answer:
B. View-Only Audit Logs in the Exchange admin center

Exam Question 190

From the Security & Compliance admin center, you create a content export as shown in the exhibit. (Click the Exhibit tab.)
From the Security & Compliance admin center, you create a content export as shown in the exhibit. (Click the Exhibit tab.)
What will be excluded from the export?

A. a 10-MB XLSX file
B. a 5-MB MP3 file
C. a 5-KB RTF file
D. an 80-MB PPTX file
Correct Answer:
B. a 5-MB MP3 file
Answer Description:
Unrecognized file formats are excluded from the search.
Certain types of files, such as Bitmap or MP3 files, don’t contain content that can be indexed. As a result, the search indexing servers in Exchange and SharePoint don’t perform full-text indexing on these types of files.
These types of files are considered to be unsupported file types.