MS-102 Exam - Free Actual Q&As, Page 2

You have Contributor Access to MS-102. Thank you for supporting ExamTopics!

MS-102 Actual Exam Questions

Last updated on May 30, 2025.

Vendor:Microsoft

Exam Code:MS-102

Exam Name:Microsoft 365 Administrator

Exam Questions:383

Question #11 Topic 1

You have a Microsoft 365 subscription.
You have an Azure AD tenant that contains the users shown in the following table.

You configure Tenant properties as shown in the following exhibit.

Which users will be contacted by Microsoft if the tenant experiences a data breach?

A. User1 only
B. User2 only
C. User3 only
D. User1 and User2 only
E. User2 and User3 only

Reveal Solution Discussion 52

Correct Answer: B 🗳️

Community vote distribution

B (75%)

D (25%)

Question #12 Topic 1

Your network contains an Active Directory forest named contoso.local.
You purchase a Microsoft 365 subscription.
You plan to move to Microsoft 365 and to implement a hybrid deployment solution for the next 12 months.
You need to prepare for the planned move to Microsoft 365.
What is the best action to perform before you implement directory synchronization? More than one answer choice may achieve the goal. Select the BEST answer.

A. Purchase a third-party X.509 certificate.
B. Create an external forest trust.
C. Rename the Active Directory forest.
D. Purchase a custom domain name.

Reveal Solution Discussion 12

Correct Answer: D 🗳️

Community vote distribution

D (100%)

Question #13 Topic 1

You have a Microsoft 365 subscription.
You configure a new Azure AD enterprise application named App1. App1 requires that a user be assigned the Reports Reader role.
Which type of group should you use to assign the Reports Reader role and to access App1?

A. a Microsoft 365 group that has assigned membership
B. a Microsoft 365 group that has dynamic user membership
C. a security group that has assigned membership
D. a security group that has dynamic user membership

Reveal Solution Discussion 9

Correct Answer: C 🗳️

Community vote distribution

C (100%)

Question #14 Topic 1

You have a new Microsoft 365 E5 tenant.
You need to enable an alert policy that will be triggered when an elevation of Microsoft Exchange Online administrative privileges is detected.
What should you do first?

A. Enable auditing.
B. Enable Microsoft 365 usage analytics.
C. Create an Insider risk management policy.
D. Create a communication compliance policy.

Reveal Solution Discussion 13

Correct Answer: A 🗳️

Community vote distribution

A (88%)

12%

Question #15 Topic 1

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains 1,000 Windows 10 devices.
You perform a proof of concept (PoC) deployment of Microsoft Defender for Endpoint for 10 test devices. During the onboarding process, you configure Microsoft Defender for Endpoint-related data to be stored in the United States.
You plan to onboard all the devices to Microsoft Defender for Endpoint.
You need to store the Microsoft Defender for Endpoint data in Europe.
What should you do first?

A. Delete the workspace.
B. Create a workspace.
C. Onboard a new device.
D. Offboard the test devices.

Reveal Solution Discussion 23

Correct Answer: D 🗳️

Community vote distribution

D (77%)

B (17%)

Question #16 Topic 1

You have a Microsoft 365 E5 subscription that contains a user named User1.
User1 exceeds the default daily limit of allowed email messages and is on the Restricted entities list.
You need to remove User1 from the Restricted entities list.
What should you use?

A. the Exchange admin center
B. the Microsoft Purview compliance portal
C. the Microsoft 365 admin center
D. the Microsoft 365 Defender portal
E. the Microsoft Entra admin center

Reveal Solution Discussion 16

Correct Answer: D 🗳️

Community vote distribution

D (97%)

Question #17 Topic 1

Your company has a Microsoft 365 E5 subscription.
Users in the research department work with sensitive data.
You need to prevent the research department users from accessing potentially unsafe websites by using hyperlinks embedded in email messages and documents. Users in other departments must not be restricted.
What should you do?

A. Create a data loss prevention (DLP) policy that has a Content is shared condition.
B. Modify the safe links policy Global settings.
C. Create a data loss prevention (DLP) policy that has a Content contains condition.
D. Create a new safe links policy.

Reveal Solution Discussion 7

Correct Answer: D 🗳️

Community vote distribution

D (100%)

Question #18 Topic 1

HOTSPOT -
You have an Azure AD tenant that contains the users shown in the following table.

Your company uses Microsoft Defender for Endpoint. Microsoft Defender for Endpoint contains the roles shown in the following table.

Microsoft Defender for Endpoint contains the device groups shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Reveal Solution Discussion 12

Correct Answer:

Question #19 Topic 1

HOTSPOT -
You have a Microsoft 365 E5 tenant.
You need to ensure that administrators are notified when a user receives an email message that contains malware. The solution must use the principle of least privilege.
Which type of policy should you create, and which Microsoft Purview solutions role is required to create the policy? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Reveal Solution Discussion 28

Correct Answer:

Question #20 Topic 1

You have a Microsoft 365 E5 subscription.
You need to compare the current Safe Links configuration to the Microsoft recommended configurations.
What should you use?

A. Microsoft Purview
B. Azure AD Identity Protection
C. Microsoft Secure Score
D. the configuration analyzer

Reveal Solution Discussion 14

Correct Answer: D 🗳️

Community vote distribution

D (100%)

Previous Questions

Viewing page 2 out of 39 pages.

Next Questions

Browse atleast 50% to increase passing rate