• Home
  • Blogs
  • MS-100 PDF Dumps 2023 Exam Questions with Practice Test [Q175-Q194]

MS-100 PDF Dumps 2023 Exam Questions with Practice Test [Q175-Q194]

Share

MS-100 PDF Dumps 2023 Exam Questions with Practice Test

Dumps for Free MS-100 Practice Exam Questions


For more info visit:

Microsoft MS-100 Exam Reference

 

NEW QUESTION 175
Your network contains an Active Directory domain named adatum.com that is synced to Microsoft Azure Active Directory (Azure AD).
The domain contains 100 user accounts.
The city attribute for all the users is set to the city where the user resides.
You need to modify the value of the city attribute to the three-letter airport code of each city.
What should you do?

  • A. From Windows PowerShell on a domain controller, run the Get-ADUserand Set-ADUser cmdlets.
  • B. From Azure Cloud Shell, run the Get-AzureADUserand Set-AzureADUsercmdlets.
  • C. From Azure Cloud Shell, run the Get-ADUserand Set-ADUsercmdlets.
  • D. From Azure Cloud Shell, run the Get-MsolUserand Set-MSOlusercmdlets.

Answer: A

Explanation:
The user accounts are synced from the on-premise Active Directory to the Microsoft Azure Active Directory (Azure AD). Therefore, the city attribute must be changed in the on-premise Active Directory.
You can use Windows PowerShell on a domain controller and run the Get-ADUsercmdlet to get the required users and pipe the results into Set-ADUser cmdlet to modify the city attribute.
Incorrect Answers:
A, D: These answers suggest modifying the city attribute of the users in the Azure Active Directory which is incorrect.
B: This answer has the correct cmdlets but they need to be run on a domain controller, not in the Azure cloud shell.
Note:
There are several versions of this question in the exam. The question has two possible correct answers:
1. From Windows PowerShell on a domain controller, run the Get-ADUserand Set-ADUsercmdlets.
2. From Active Directory Administrative Center, select the Active Directory users, and then modify the Properties settings.
Other incorrect answer options you may see on the exam include the following:
1. From the Azure portal, select all the Azure AD users, and then use the User settings blade.
2. From Windows PowerShell on a domain controller, run the Get-AzureADUserand Set-AzureADUser cmdlets.
3. From the Microsoft 365 admin center, select the users, and then use the Bulk actions option.
4. From Azure Cloud Shell, run the Get-ADUserand Set-ADUsercmdlets.
Reference:
https://docs.microsoft.com/en-us/powershell/module/addsadministration/set-aduser?view=win10-ps

 

NEW QUESTION 176
You need to meet the security requirement for the vendors.
What should you do?

  • A. From Azure Cloud Shell, run the New-AzureADMSInvitationcmdlet and specify the - InvitedUserEmailAddress parameter.
  • B. From Azure Cloud Shell, run the Set-MsolUserPrincipalNameand specify the -tenantIDparameter.
  • C. From Azure Cloud Shell, run the Set-AzureADUserExtensioncmdlet.
  • D. Azure Cloud Shell, run the New-AzureADUsercmdlet and specify the -UserPrincipalNameparameter.

Answer: A

Explanation:
* Vendors must be able to authenticate by using their Microsoft account when accessing Contoso resources.
You can invite guest users to the directory, to a group, or to an application. After you invite a user through any of these methods, the invited user's account is added to Azure Active Directory (Azure AD), with a user type of Guest. The guest user must then redeem their invitation to access resources. An invitation of a user does not expire.
The invitation will include a link to create a Microsoft account. The user can then authenticate using their Microsoft account. In this question, the vendors already have Microsoft accounts so they can authenticate using them.
In this solution, we are creating guest account invitations by using the New-AzureADMSInvitationcmdlet and specifying the -InvitedUserEmailAddressparameter.
Note:
There are several versions of this question in the exam. The question has two possible correct answers:
1. From the Azure portal, create guest accounts.
2. From Azure Cloud Shell, run the New-AzureADMSInvitationcmdlet and specify the - InvitedUserEmailAddress parameter.
Other incorrect answer options you may see on the exam include the following:
1. From the Azure portal, modify the authentication methods.
2. From the Azure portal, add an identity provider.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/b2b/add-users-administrator
https://docs.microsoft.com/en-us/powershell/module/azuread/new-azureadmsinvitation?view=azureadps-2.0 Manage Access and Authentication Testlet 3 This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam.
You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.
Overview
Fabrikam, Inc. is an electronics company that produces consumer products. Fabrikam has 10,000 employees worldwide.
Fabrikam has a main office in London and branch offices in major cities in Europe, Asia, and the United States.
Existing Environment
Active Directory Environment
The network contains an Active Directory forest named fabrikam.com. The forest contains all the identities used for user and computer authentication.
Each department is represented by a top-level organizational unit (OU) that contains several child OUs for user accounts and computer accounts.
All users authenticate to on-premises applications by signing in to their device by using a UPN format of [email protected].
Fabrikam does NOT plan to implement identity federation.
Network Infrastructure
Each office has a high-speed connection to the Internet.
Each office contains two domain controllers. All domain controllers are configured as a DNS server.
The public zone for fabrikam.com is managed by an external DNS server.
All users connect to an on-premises Microsoft Exchange Server 2016 organization. The users access their email by using Outlook Anywhere, Outlook on the web, or the Microsoft Outlook app for iOS. All the Exchange servers have the latest cumulative updates installed.
All shared company documents are stored on a Microsoft SharePoint Server farm.
Requirements
Planned Changes
Fabrikam plans to implement a Microsoft 365 Enterprise subscription and move all email and shared documents to the subscription.
Fabrikam plans to implement two pilot projects:
* Project1: During Project1, the mailboxes of 100 users in the sales department will be moved to Microsoft
365.
* Project2: After the successful completion of Project1, Microsoft Teams & Skype for Business will be enabled in Microsoft 365 for the sales department users.
Fabrikam plans to create a group named UserLicenses that will manage the allocation of all Microsoft 365 bulk licenses.
Technical Requirements
Fabrikam identifies the following technical requirements:
* All users must be able to exchange email messages successfully during Project1 by using their current email address.
* Users must be able to authenticate to cloud services if Active Directory becomes unavailable.
* A user named User1 must be able to view all DLP reports from the Microsoft 365 admin center.
* Microsoft Microsoft 365 Apps for enterprise applications must be installed from a network share only.
* Disruptions to email access must be minimized.
Application Requirements
Fabrikam identifies the following application requirements:
* An on-premises web application named App1 must allow users to complete their expense reports online.
App1 must be available to users from the My Apps portal.
* The installation of feature updates for Microsoft 365 Apps for enterprise must be minimized.
Security Requirements
Fabrikam identifies the following security requirements:
* After the planned migration to Microsoft 365, all users must continue to authenticate to their mailbox and to SharePoint sites by using their UPN.
* The memberships of UserLicenses must be validated monthly. Unused user accounts must be removed from the group automatically.
* After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically.
* The principle of least privilege must be used.

 

NEW QUESTION 177
Your network contains an on-premises Active Directory domain named Contoso.com.
Your company purchase a Microsoft 365 subscription and establishes a hybrid deployment of Azure Active Directory (Azure AD) by using password hash synchronization.
You need to identify where an administrator can reset the password of each new user.
What should you identify? To answer, select the appropriate option in the area.
NOTE: Each correct selection is worth point.

Answer:

Explanation:

 

NEW QUESTION 178
You need to meet the security requirement for the vendors.
What should you do?

  • A. From Azure Cloud Shell, run the Set-AzureADUserExtension cmdlet.
  • B. From the Azure portal, create guest accounts.
  • C. From the Azure portal, add an identity provider.
  • D. From Azure Cloud Shell, run the New-AzureADUsercmdlet and specify the -UserPrincipalName parameter.

Answer: B

Explanation:
* Vendors must be able to authenticate by using their Microsoft account when accessing Contoso resources.
You can invite guest users to the directory, to a group, or to an application. After you invite a user through any of these methods, the invited user's account is added to Azure Active Directory (Azure AD), with a user type of Guest. The guest user must then redeem their invitation to access resources. An invitation of a user does not expire.
The invitation will include a link to create a Microsoft account. The user can then authenticate using their Microsoft account. In this question, the vendors already have Microsoft accounts so they can authenticate using them.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/b2b/add-users-administrator

 

NEW QUESTION 179
You have a Microsoft SharePoint Online site and an on-premises file server.
The site contains the files shown in the following table.

The file server contains the files shown in the following table.

You migrate D:\Folder1 and D:\Folder2 to the Documents library by using the SharePoint Migration Tool as shown in the following exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 180
You have a Microsoft 365 subscription that uses a default named contoso.com.
Three files were created on February 1, 2019, as shown in the following table.

On March 1, 2019, you create two retention labels named Label1 and label2.
The settings for Label1 are configured as shown in the Label1 exhibit. (Click the Label1 tab.) Label 1

The settings for Label2 are configured as shown in the Label1 exhibit. (Click the Label2 tab.) Label 2

You apply the retention labels to Exchange email, SharePoint sites, and OneDrive accounts.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/office365/securitycompliance/labels
https://docs.microsoft.com/en-us/office365/securitycompliance/disposition-reviews

 

NEW QUESTION 181
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
You may now click next to proceed to the lab.
Lab information
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username: [email protected]
Microsoft 365 Password: m3t^We$Z7&xy
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The following information is for technical support purposes only:
Lab Instance: 11440873

You need to create a policy that allows a user named Lee Gu to use Outlook Web App to review 50 percent of the outbound email messages sent by a user named Joni Sherman.
To answer, sign in to the Microsoft 365 portal.

Answer:

Explanation:
See explanation below.
Explanation
You need to configure a Supervision Policy.
1. Go to https://protection.office.com or navigate to the Security & Compliance admin center.
2. In the left navigation pane, select Supervision.
3. Click the '+Create' button to create a new supervision policy.
4. Give the policy a name such as 'Joni Sherman' and click Next.
5. In the 'Supervised users' section, click '+Add users or groups'.
6. Select Joni Sherman from the users list and click the Add button.
7. Deselect the 'Teams chats' and 'Skype for Business Conversations' checkboxes leaving only the 'Exchange Email' checkbox ticked and click Next.
8. Under 'Direction is', deselect Inbound leaving only Outbound selected and click Next.
9. In the 'Percentage to review' section, enter 50 and click Next.
10. In the 'Reviewers' section, start typing Lee Gu then select his account when it appears.
11. Click Next.
12. On the 'Review your settings' page, check the settings are correct the click the Finish button to create the policy.

 

NEW QUESTION 182
You have several devices enrolled in Microsoft Intune.
You have a Microsoft Azure Active Directory (Azure AD) tenant that includes the users shown in the following table.

The device type restrictions in Intune are configured as shown in the following table.

You add User3 as a device enrollment manager in Intune.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/intune/enrollment/enrollment-restrictions-set

 

NEW QUESTION 183
You have a Microsoft 365 subscription that contains the domains shown in the following exhibit.

Which domain name suffixes can you use when you create users?

  • A. only Contoso1919.onmicrosoft.com and Sub2.Contoso1919.onmicrosoft.com
  • B. only Contoso1919.onmicrosoft.com, Sub1.Contoso1919.onmicrosoft.com, and Sub2.Contoso1919.onmicrosoft.com
  • C. all the domains in the subscription
  • D. only Sub1.Contoso1919.onmicrosoft.com

Answer: B

 

NEW QUESTION 184
Your company has a hybrid deployment of Microsoft 365.
An on-premises user named User1 is synced to Microsoft Azure Active Directory (Azure AD).
Azure AD Connect is configured as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

 

NEW QUESTION 185
To which Azure AD role should you add User4 to meet the security requirement?

  • A. Password administrator
  • B. Security administrator
  • C. Global administrator
  • D. Privileged role administrator

Answer: C

Explanation:
User4 must be able to reset User3 password.
User3 is assigned the Customer Lockbox Access Approver role. Only global admins can reset the passwords of people assigned to this role as it's considered a privileged role.
Reference:
https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Customer-Lockbox-Approver-Role-Now-Available/ba-p/223393

 

NEW QUESTION 186
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory forest.
You deploy Microsoft 365.
You plan to implement directory synchronization.
You need to recommend a security solution for the synchronized identities. The solution must meet the following requirements:
* Users must be able to authenticate successfully to Microsoft 365 services if Active Directory becomes unavailable.
* Users passwords must be 10 characters or more.
Solution: Implement pass-through authentication and configure password protection in the Azure AD tenant.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: A

 

NEW QUESTION 187
You have a hybrid deployment of Microsoft 365 that contains the users shown in the following table.

You have an on-premises web app named App
You configure an Azure Active Directory (Azure AD) Application Proxy.
You add an Application Proxy entry for AppA as shown the exhibit. (Click the Exhibit tab.)

You assign the AppA enterprise application in Azure to Group2.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 188
Your on-premises network contains five file servers. The file servers host shares that contain user data.
You plan to migrate the user data to a Microsoft 36S subscription.
You need to recommend a solution to import the user data into Microsoft OneDrive.
What should you include in the recommendation?

  • A. Configure the Migrate of the OneDrive client on your Windows 10 dew
  • B. Run the SharePoint Migration Tool.
  • C. Run the SharePoint Hybrid Configuration Wizard.
  • D. Configure the Sync settings in the OneDrive admin center.

Answer: B

 

NEW QUESTION 189
Your network contains two on-premises Active Directory forests named contoso.com and fabrikam.com.
Fabrikam.com contains one domain and five domain controllers.
Contoso.com contains the domains shown in the following table.

You need to sync all the users from both the forests to a single Azure Active Directory (Azure AD) tenant by using Azure AD Connect.
What is the minimum number of Azure AD Connect sync servers required?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: B

Explanation:
You can have only one active Azure AD Connect server synchronizing accounts to a single Azure Active Directory (Azure AD) tenant.
You can have 'backup' Azure AD Connect servers, but these must be running in 'staging' mode.
Staging mode means the Azure AD Connect instance is not actively synchronizing users but is ready to be bought online if the active Azure AD Connect instance goes offline.
When you have multiple forests, all forests must be reachable by a single Azure AD Connect sync server.
The server must be joined to a domain. If necessary, to reach all forests, you can place the server in a perimeter network (also known as DMZ, demilitarized zone, and screened subnet).
References:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-connect-topologies#multiple-forests-single-azure-ad-tenant

 

NEW QUESTION 190
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may have more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
You may now click next to proceed to the lab.
Lab information
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username:
[email protected]
Microsoft 365 Password: *yfLo7Ir2&y-
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The following information is for technical support purposes only:
Lab Instance: 10811525
Your organization plans to open an office in New York, and then to add 100 users to the office. The city attribute for all new users will be New York.
You need to ensure that all the new users in the New York office are licensed for Microsoft Office 365 automatically.

Answer:

Explanation:
You need create a dynamic group based on the city attribute. You then need to assign a license to the group. User accounts with the city attribute set to 'New York will automatically be added to the group. Anyone who is added to the group will automatically be assigned the license that is assigned to the group.
1. Go to the Azure Active Directory admin center.
2. Select Azure Active Directory then select Groups.
3. Click on the New Group link.
4. Give the group a name such as New York Users.
5. Select Users as the membership type.
6. Select 'Add dynamic query'.
7. Select 'City' in the Property drop-down box.
8. Select 'Equals' in the Operator drop-down box.
9. Enter 'New York' as the Value. You should see the following text in the Expression box: user.city -eq "New York"
10. Click Save to create the group.
11. In the Groups list, select the new group to open the properties page for the group.
12. Select 'Licenses'.
13. Select the '+ Assignments' link.
14. Tick the box to select the license.
15. Click the Save button to save the changes.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/groups-dynamic-membership
https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/licensing-groups-assign

 

NEW QUESTION 191
You have a Microsoft 365 subscription.
You recently configured a Microsoft SharePoint Online tenant in the subscription.
You plan to create an alert policy.
You need to ensure that an alert is generated only when malware is detected in more than five documents stored in SharePoint Online during a period of 10 minutes.
What should you do first?

  • A. Enable Microsoft Office 365 Analytics.
  • B. Deploy Windows Defender Advanced Threat Protection (Windows Defender ATP).
  • C. Enable Microsoft Office 365 Cloud App Security.

Answer: B

Explanation:
Explanation
An alert policy consists of a set of rules and conditions that define the user or admin activity that generates an alert, a list of users who trigger the alert if they perform the activity, and a threshold that defines how many times the activity has to occur before an alert is triggered.
In this question, we would use the "Malware detected in file" activity in the alert settings then configure the threshold (5 detections) and the time window (10 minutes).
The ability to configure alert policies based on a threshold or based on unusual activity requires Advanced Threat Protection (ATP).
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/alert-policies

 

NEW QUESTION 192
You have a Microsoft Teams app that contains a conversational bot. The bot uses task modules to reply to users. When the hot receives a new message, the following code is executed before a response is sent back to the user to decide whether the bot should continue the conversation.

Answer:

Explanation:

Reference:
https://github.com/OfficeDev/microsoft-teams-sample-task-module-nodejs

 

NEW QUESTION 193
Your network contains an on-premises Active Directory domain. The domain contains a server named Server1. Server1 has a share named Share1 that contains the files shown in the following table.

You have a hybrid deployment of Microsoft 365.
You create a Microsoft SharePoint site collection named Col lection1.
You plan to migrate Share1 to a document library in Collection1
You configure the SharePoint Migration Tool as shown in the exhibit. (Click the Exhibit tab.) For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation
.

Box 1: No
File1.txt will not be migrated as it was created before Jan 1 2019
Box 2: Yes
File2.txt will be migrated as it was created after Jan 1 2019 and was modified after Mar 1 2019.
Box 3: Yes
File permissions will be maintained after the migration.
References:
https://docs.microsoft.com/en-us/sharepointmigration/spmt-settings

 

NEW QUESTION 194
......


Format of the Microsoft Certification exam:

The Microsoft Certification exams are delivered online through a web browser. Depending on the type of exam, you may be made to download a file or a specific application program to take your exams at a computer. You will be able to see the test screen and all instructions and questions during your testing time, while access to other programs will be disabled.

In addition, you can visit any website during your testing time, but viewing these sites will not be counted against your tested time frame. MS-100 Dumps questions and answers. Paths to the testing engine are provided at the start of your testing time. Modules that you will be tested on, and computer hardware and software requirements will be provided to you before starting your testing time.

##Microsoft MS-100 Professional Salary: Starting MS-100 Professional salary ranges from $70,000 to $150,000 depending upon the experience and skills required.

 

Check your preparation for Microsoft MS-100 On-Demand Exam: https://www.exam4docs.com/MS-100-study-questions.html

MS-100 Dumps PDF And Certification Training: https://drive.google.com/open?id=1JeVZYJz1eaadJXn0-N9B7epxi0Uverq3

Related Blogs

more
Microsoft MS-100 Certification Practice Exam

Our study guide torrent covers most questions of real test and can help you pass exam certainly. The high pass rate bring help you pass at the first attempt.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 EXAM4DOCS.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy