MD-101 Online Practice Questions and Answers

Questions 4

You are currently making use of the Antimalware Assessment solution in Microsoft Azure Log Analytics.

You have accessed the Protection Status dashboard and find that there is a device that has no real time protection.

Which of the following could be a reason for this occurring?

A. Windows Defender has been disabled.

B. You need to install the Azure Diagnostic extension.

C. Windows Defender Credential Guard is incorrectly configured.

D. Windows Defender System Guard is incorrectly configured.

Buy Now

Questions 5

You have an Azure Active Directory (Azure AD) tenant named adatum.com that contains two computers named Computer1 and Computer2. The computers run Windows 10 and are members of a group named GroupA.

The tenant contains a user named User1 that is a member of a group named Group1.

You need to ensure that if User1 changes the desktop background on Computer1, the new desktop background will appear when User1 signs in to Computer2.

What should you do?

A. Create a device configuration profile for Windows 10 and configure the Shared multi-user device settings. Assign the profile to Group1.

B. Create a device configuration profile for Windows 10 and configure the Shared multi-user device settings. Assign the profile to GroupA.

C. From the Azure Active Directory admin center, enable Enterprise State Roaming for Group1.

D. From the Azure Active Directory admin center, enable Enterprise State Roaming for GroupA.

Buy Now

Questions 6

You have a Microsoft 365 E5 subscription that contains a user named User! and the devices shown In the following table.

User1 can access her Microsoft Exchange Online mailbox from both Device1 and Device2.

You plan to create a Conditional Access policy named CAPolicy1 that will have the following settings:

Assignments

Users or workload identities: User1

Cloud apps or actions: Office 365 Exchange Online

Access controls

Grant Block access

You need to configure CAPolicy1 to allow mailbox access from Device1 but block mailbox access from Device2.

Solution: You add a condition to filter for devices.

Does this meet the goal?

A. Yes

B. No

Buy Now

Questions 7

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while

others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your company uses Windows Update for Business.

The research department has several computers that have specialized hardware and software installed.

You need to prevent the video drivers from being updated automatically by using Windows Update.

Solution: From the Device Installation settings in a Group Policy object (GPO), you enable Specify search order for device driver source locations, and then you select Do not search Windows Update.

Does this meet the goal?

A. Yes

B. No

Buy Now

Questions 8

others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

Your company has several Windows 10 devices that are enrolled in Microsoft Intune.

You deploy a new computer named Computer1 that runs Windows 10 and is in a workgroup.

You need to enroll Computer1 in Intune.

Solution: You install the Company Portal app on Computer1 and use the Devices tab from the app.

Does this meet the goal?

A. Yes

B. No

Buy Now

Questions 9

Your network contains an on-premises Active Directory domain and an Azure Active Directory (Azure AD) tenant. The Default Domain Policy Group Policy Object (GPO) contains the settings shown in the following table.

You need to migrate the existing Default Domain Policy GPO settings to a device configuration profile.

Which type of device configuration profile should you create?

A. Custom

B. Endpoint protection

C. Administrative Templates

D. Device restrictions

Buy Now

Questions 10

DRAG DROP

Your company uses Microsoft Intune. You have a Microsoft Store for Business account.

You need to ensure that you can deploy Microsoft Store for Business apps by using Intune.

Which three actions should you perform in sequence?

To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

NOTE: More than one order of answer choices is correct.

You will receive credit for any of the correct orders you select.

Select and Place:

Buy Now

Questions 11

HOTSPOT

You have 200 computers that run Windows 10. The computers are joined to Microsoft Azure Active Directory (Azure AD) and enrolled in Microsoft Intune.

You need to configure an Intune device configuration profile to meet the following requirements:

Prevent Microsoft Office applications from launching child processes.

Block users from transferring files over FTP.

Which two settings should you configure in Endpoint protection? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Buy Now

Questions 12

HOTSPOT

Your network contains an on-premises Active Directory forest named contoso.com. The forest contains a user named User1 and two computers named Computer1 and Computer2 that run Windows 10.

User1 is configured as shown in the following exhibit.

You rename file \\Server1\Profiles\User1.V6\NTUSER.DAT as NTUSER.MAN.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Hot Area:

Buy Now

Questions 13

HOTSPOT

You have a Microsoft 365 E5 tenant that contains the users shown in the following table.

You provision the private store in Microsoft Store for Business and assign Microsoft Store for Business roles to the users as shown in the following table.