Learn how to create dynamic device groups in Microsoft 365 based on device join type and operating system. Follow these membership rules to properly configure groups containing Windows 11 and iOS devices.
Table of Contents
Question
You have a Microsoft 365 E5 subscription that contains the devices shown in the following table.
| Name | Platform | Join type |
|---|---|---|
| Device1 | Windows 11 | Microsoft Entra joined |
| Device2 | Windows 11 | Microsoft Entra registered |
| Device3 | iOS | Microsoft Entra registered |
You need to create two dynamic device groups named Group1 and Group2. The solution must meet the following requirements:
- Group1 must contain Device1 and Device2 only.
- Group2 must contain Device1 and Device3 only.
Which device membership rule should you configure for each group? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Group1:
(device.deviceTrustType -eq “AzureAD”)
(device.displayName -eq “Device1”) and (device.displayName -eq “Device2”)
(device.displayName -startsWith “Device”) and (device.deviceOSType -eq “Windows”)
Group2:
(device.deviceOSType -eq “iPhone”) and (device.deviceOSType -eq “Windows”)
(device.deviceOSType -eq “iPhone”) or (device.deviceOSType -eq “Windows”)
(device.deviceTrustType -eq “AzureAD”) or (device.deviceOSType -eq “iPhone”)
Answer
Group1: (device.displayName -startsWith “Device”) and (device.deviceOSType -eq “Windows”)
Group2: (device.deviceTrustType -eq “AzureAD”) or (device.deviceOSType -eq “iPhone”)
Explanation
To create the dynamic device groups Group1 and Group2 that meet the specified requirements, you should configure the following device membership rules:
Group1: (device.displayName -startsWith “Device”) and (device.deviceOSType -eq “Windows”)
This rule will include devices in Group1 if their display name starts with “Device” AND their operating system type is Windows. Since Device1 and Device2 both have names starting with “Device” and run Windows 11, they will be the only devices included in this group.
Group2: (device.deviceTrustType -eq “AzureAD”) or (device.deviceOSType -eq “iPhone”)
This rule will include devices in Group2 if they are either Azure AD joined OR if their operating system type is iPhone (iOS). Device1 will be included because it is Azure AD joined, and Device3 will be included because it runs iOS. No other devices match either of those criteria.
The other provided options for membership rules would not meet the stated requirements:
- Checking for exact device names would be too specific and not scalable
- Checking for iPhone OS AND Windows OS would never match any devices
- Checking only for Azure AD join type would exclude the iOS device
By using the -startsWith operator for group 1 and the -or logical operator for group 2, you can define dynamic groups that will automatically include the intended set of devices based on their name format, OS type, and join type. Let me know if you have any other questions!
Microsoft MD-102 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Microsoft MD-102 exam and earn Microsoft MD-102 certification.