Valid Microsoft MS-500 questions shared by Pass4itsure for helping to pass the Microsoft MS-500 exam! Get the newest Pass4itsure Microsoft MS-500 exam dumps with VCE and PDF here: https://www.pass4itsure.com/ms-500.html (145 Q&As Dumps).
[Free PDF] Microsoft MS-500 pdf Q&As https://drive.google.com/file/d/1l_AWpcCRpqVYNjPTx4xc5nLZh-lhdcIm/view?usp=sharing
Suitable for MS-500 complete Microsoft learning pathway
The content is rich and diverse, and learning will not become boring. You can learn in multiple ways through the Microsoft MS-500 exam.
- Download
- Answer practice questions, the actual Microsoft MS-500 test
Microsoft MS-500 Microsoft 365 Security Administration
Free Microsoft MS-500 dumps download
[PDF] Free Microsoft MS-500 dumps pdf download https://drive.google.com/file/d/1l_AWpcCRpqVYNjPTx4xc5nLZh-lhdcIm/view?usp=sharing
Pass4itsure offers the latest Microsoft MS-500 practice test free of charge 1-13
QUESTION 1
You need to ensure that [email protected] receives an alert when a user establishes a sync relationship
to a document library from a computer that is a member of an Active Directory (AD) domain.
To complete this task, sign in to the Microsoft Office 365 admin center.
Correct Answer: See below.
1.
Navigate to Manage Alerts in the Security and Compliance Center.
2.
On the Activity alerts page, click + New. The flyout page to create an activity alert is displayed.
3.
Complete the following fields to create an activity alert:
a.
Name – Type a name for the alert. Alert names must be unique within your organization.
b.
Description (Optional) – Describe the alert, such as the activities and users being tracked, and the users that email
notifications are sent to. Descriptions provide a quick and easy way to describe the purpose of the alert to other
admins.
c.
Alert type – Make sure the Custom option is selected.
d.
Send this alert when – Click Send this alert when and then configure these two fields: Activities – Click the drop-down list
to display the activities that you can create an alert for. This is the same activities list that\\’s displayed when you search
the Office 365 audit log. You can select one or more specific activities or you can click
the activity group name to select all activities in the group. For a description of these activities, see the “Audited
activities” section in Search the audit log. When a user performs any of the activities that you\\’ve added to the alert, an
email
notification is sent.
Users – Click this box and then select one or more users. If the users in this box perform the activities that you added to
the Activities box, an alert will be sent. Leave the Users box blank to send an alert when any user in your organization
performs the activities specified by the alert.
e. Send this alert to – Click Send this alert, and then click in the Recipients box and type a name to add a user\\’s who
will receive an email notification when a user (specified in the Users box) performs an activity (specified in the Activities
box). Note that you are added to the list of recipients by default. You can remove your name from this list.
4. Click Save to create the alert.
The new alert is displayed in the list on the Activity alerts page.
The status of the alert is set to On. Note that the recipients who will receive an email notification when an alert is sent
are also listed.
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/create-activity-alerts?view=o365-worldwide
QUESTION 2
You have a Microsoft 365 subscription.
Yesterday, you created retention labels and published the labels to Microsoft Exchange Online mailboxes.
You need to ensure that the labels will be available for manual assignment as soon as possible.
What should you do?
A. From the Security and Compliance admin center, create a label policy
B. From Exchange Online PowerShell, run Start-RetentionAutoTagLearning
C. From Exchange Online PowerShell, run Start-ManagedFolderAssistant
D. From the Security and Compliance admin center, create a data loss prevention (DLP) policy
Correct Answer: C
QUESTION 3
HOTSPOT
You have a Microsoft 365 subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com.
You need to recommend an Azure AD Privileged Identity Management (PIM) solution that meets the following
requirements:
1.
Administrators must be notified when the Security administrator role is activated.
2.
Users assigned the Security Administrator role must be removed from the role automatically if they do not sign in for 30
days.
Which Azure AD PIM setting should you recommend configuring for each requirement? To answer, select the
appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
Reference: https://docs.microsoft.com/bs-latn-ba/azure/active-directory/privileged-identity-management/pim-how-toconfigure-security-alerts?tabs=new
https://docs.microsoft.com/bs-latn-ba/azure/active-directory/privileged-identity-management/pim-how-to-change-defaultsettings?tabs=new
QUESTION 4
You create a label that encrypts email data. Users report that they cannot use the label in Outlook on the web to protect
the email messages they send.
You need to ensure that the users can use the new label to protect their email.
What should you do?
A. Modify the priority order of label policies
B. Wait six hours and ask the users to try again
C. Create a label policy
D. Create a new sensitive information type
Correct Answer: B
QUESTION 5
You have a Microsoft 365 subscription.
1.
You identify the following data loss prevention (DLP) requirements:
2.
Send notifications to users if they attempt to send attachments that contain EU social security numbers
3.
Prevent any email messages that contain credit card numbers from being sent outside your organization
4.
Block the external sharing of Microsoft OneDrive content that contains EU passport numbers
5.
Send administrators email alerts if any rule matches occur.
What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select
the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:
Correct Answer:
QUESTION 6
You have a Microsoft 365 subscription.
From the Microsoft 365 admin center, you create a new user.
You plan to assign the Reports reader role to the user.
You need to see the permissions of the Reports reader role.
Which admin center should you use?
A. Azure Active Directory
B. Cloud App Security
C. Security and Compliance
D. Microsoft 365
Correct Answer: A
QUESTION 7
SIMULATION
You need to ensure that all users must change their passwords every 100 days.
To complete this task, sign in to the Microsoft 365 portal.
Correct Answer: See below.
You need to configure the Password Expiration Policy.
1.
Sign in to the Microsoft 365 Admin Center.
2.
In the left navigation pane, expand the Settings section then select the Settings option.
3.
Click on Security and Privacy.
4.
Select the Password Expiration Policy.
5.
Ensure that the checkbox labeled Set user passwords to expire after a number of days is ticked.
6.
Enter 100 in the Days before passwords expire field.
7.
Click Save changes to save the changes.
QUESTION 8
Your network contains an on-premises Active Directory domain. The domain contains servers that run Windows Server
and have advanced auditing enabled.
The security logs of the servers are collected by using a third-party SIEM solution.
You purchase a Microsoft 365 subscription and plan to deploy Azure Advanced Threat Protection (ATP) by using
standalone sensors.
You need to ensure that you can detect when sensitive groups are modified and when malicious services are created.
What should you do?
A. Configure auditing in the Office 365 Security and Compliance center.
B. Turn off Delayed updates for the Azure ATP sensors.
C. Modify the Domain synchronizer candidate\\’s settings on the Azure ATP sensors.
D. Integrate SIEM and Azure ATP.
Correct Answer: D
References: https://docs.microsoft.com/en-us/azure-advanced-threat-protection/install-atp-step5
QUESTION 9
You need to ensure that group owners renew their Office 365 groups every 180 days.
To complete this task, sign in to the Microsoft Office 365 admin center.
Correct Answer: See below.
Set group expiration
1.
Open the Azure AD admin center with an account that is a global administrator in your Azure AD organization.
2.
Select Groups, then select Expiration to open the expiration settings.
3.
On the Expiration page, you can:
Set the group lifetime in days. You could select one of the preset values, or a custom value (should be 31 days or
more).
Specify an email address where the renewal and expiration notifications should be sent when a group has no owner.
Select which Office 365 groups expire. You can set an expiration for:
All Office 365 groups
A list of Selected Office 365 groups
None to restrict expiration for all groups
Save your settings when you\\’s done by selecting Save.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/groups-lifecycle
QUESTION 10
HOTSPOT
You have a Microsoft 365 subscription that contains a Microsoft SharePoint Online site named Site1. Site1 contains the
folders shown in the following table.
At 09:00, you create a Microsoft Cloud App Security policy named Policy1 as shown in the following exhibit. After you
create Policy1, you upload files to Site1 as shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:
Reference: https://docs.microsoft.com/en-us/cloud-app-security/data-protection-policies
QUESTION 11
SIMULATION You need to create a policy that identifies content in Microsoft OneDrive that contains credit card
numbers.
To complete this task, sign in to the Microsoft 365 portal.
Correct Answer: See below.
You need to configure auto-labeling in ‘simulation’ mode. In the policy, you can select the ‘Credit Card’ sensitive info
type.
1.
In the Microsoft 365 compliance center, navigate to sensitivity labels: Solutions > Information protection
2.
Select the Auto-labeling (preview) tab.
3.
Select + Create policy.
4.
For the page Choose the info you want this label applied to Select one of the templates, such as Financial or Privacy. You
can refine your search by using the Show options for dropdown. Or, select Custom policy if the templates don\\’t meet
your requirements. Select Next.
5.
For the page Name your auto-labeling policy: Provide a unique name, and optionally a description to help identify the
automatically applied labels, locations, and conditions that identify the content to label.
6.
For the page Choose locations where you want to apply the label: Select OneDrive. Then select Next.
7.
For the Define policy settings page: Keep the default of Find content that contains to define rules that identify content to
label across all your selected locations. The rules use conditions that include sensitive information types and sharing
options. For sensitive information types, you can select both built-in and custom sensitive information types.
8.
Then select Next.
9.
For the Setup rules to define what content is labeled page: Select + Create rule and then select Next.
10.On the Create rule page, name and define your rule, using sensitive information types and then select Save.
11.Click Next.
12.For the Choose a label to auto-apply page: Select + Choose a label, select a label from the Choose a sensitivity label
pane, and then select Next.
13.For the Decide if you want to run policy simulation now or later page: Select Run policy in simulation mode if you\\’re
ready to run the auto-labeling policy now, in simulation mode. Otherwise, select Leave policy turned off.
Select Next. 14. For the Summary page: Review the configuration of your auto-labeling policy and make any changes
that needed and complete the wizard.
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivitylabelautomatically?view=o365-worldwide
QUESTION 12
You have a Microsoft 365 subscription.
You create and run a content search from the Security and Compliance admin center.
You need to download the results of the content search.
What should you obtain first?
A. an export key
B. a password
C. a certificate
D. a pin
Correct Answer: A
References: https://docs.microsoft.com/en-us/office365/securitycompliance/export-search-results
QUESTION 13
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains
a unique solution that might meet the stated goals. Some question sets might have more than one correct solution,
while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not
appear in the review screen.
You have a Microsoft 365 subscription that contains the users shown in the following table.
A. Yes
B. No
Correct Answer: B
References: https://docs.microsoft.com/en-us/office365/securitycompliance/working-with-compliance-manager
Pass4itsure Microsoft exam dumps discount code share
Summarize:
[Q1-Q13] Free Microsoft MS-500 pdf download https://drive.google.com/file/d/1l_AWpcCRpqVYNjPTx4xc5nLZh-lhdcIm/view?usp=sharing
Share all the resources: Latest Microsoft MS-500 practice questions, latest Microsoft MS-500 pdf dumps. The latest updated Microsoft MS-500 dumps https://www.pass4itsure.com/ms-500.html Study hard and practices a lot. This will help you prepare for the Microsoft MS-500 exam. Good luck!
