Valid MS-500 Dumps shared by ExamDiscuss.com for Helping Passing MS-500 Exam! ExamDiscuss.com now offer the newest MS-500 exam dumps, the ExamDiscuss.com MS-500 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com MS-500 dumps with Test Engine here:
Access MS-500 Dumps Premium Version
(329 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 16/37
You need to recommend a solution for the user administrators that meets the security requirements for auditing.
Which blade should you recommend using from the Azure Active Directory admin center?
Which blade should you recommend using from the Azure Active Directory admin center?
Correct Answer: A
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-sign-ins
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam has
5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove the
malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed every
seven days. If an administrator fails to respond to an access request within three days, access must be removed Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks for
up to three hours at a time. Global administrators must be exempt from this requirement Users must be prevented from inviting external users to view company data. Only global administrators
and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to Azure
AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
References:
https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-sign-ins
Overview
Fabrikam, Inc. is manufacturing company that sells products through partner retail stores. Fabrikam has
5,000 employees located in offices throughout Europe.
Existing Environment
Network Infrastructure
The network contains an Active Directory forest named fabrikam.com. Fabrikam has a hybrid Microsoft Azure Active Directory (Azure AD) environment.
The company maintains some on-premises servers for specific applications, but most end-user applications are provided by a Microsoft 365 E5 subscription.
Problem Statements
Fabrikam identifies the following issues:
Since last Friday, the IT team has been receiving automated email messages that contain "Unhealthy
Identity Synchronization Notification" in the subject line.
Several users recently opened email attachments that contained malware. The process to remove the
malware was time consuming.
Requirements
Planned Changes
Fabrikam plans to implement the following changes:
Fabrikam plans to monitor and investigate suspicious sign-ins to Active Directory
Fabrikam plans to provide partners with access to some of the data stored in Microsoft 365
Application Administration
Fabrikam identifies the following application requirements for managing workload applications:
User administrators will work from different countries
User administrators will use the Azure Active Directory admin center
Two new administrators named Admin1 and Admin2 will be responsible for managing Microsoft
Exchange Online only
Security Requirements
Fabrikam identifies the following security requirements:
Access to the Azure Active Directory admin center by the user administrators must be reviewed every
seven days. If an administrator fails to respond to an access request within three days, access must be removed Users who manage Microsoft 365 workloads must only be allowed to perform administrative tasks for
up to three hours at a time. Global administrators must be exempt from this requirement Users must be prevented from inviting external users to view company data. Only global administrators
and a user named User1 must be able to send invitations
Azure Advanced Threat Protection (ATP) must capture security group modifications for sensitive
groups, such as Domain Admins in Active Directory
Workload administrators must use multi-factor authentication (MFA) when signing in from an
anonymous or an unfamiliar location
The location of the user administrators must be audited when the administrators authenticate to Azure
AD
Email messages that include attachments containing malware must be delivered without the
attachment
The principle of least privilege must be used whenever possible
- Question List (37q)
- Question 1: Which role should you assign to User1?...
- Question 2: You have a hybrid Microsoft 365 environment. All computers r...
- Question 3: Which user passwords will User2 be prevented from resetting?...
- Question 4: You need to recommend a solution to protect the sign-ins of ...
- Question 5: Note: This question is part of series of questions that pres...
- Question 6: You need to meet the technical requirements for User9. What ...
- Question 7: You have a Microsoft 365 subscription. Yesterday, you create...
- Question 8: Your network contains an on-premises Active Directory domain...
- Question 9: You have a Microsoft 365 subscription. You need to create da...
- Question 10: You have a Microsoft 365 subscription that uses a default do...
- Question 11: You configure several Advanced Threat Protection (ATP) polic...
- Question 12: An administrator configures Azure AD Privileged Identity Man...
- Question 13: Note: This question is part of series of questions that pres...
- Question 14: You need to implement Windows Defender ATP to meet the secur...
- Question 15: You have a Microsoft 365 subscription. Some users access Mic...
- Question 16: You need to recommend a solution for the user administrators...
- Question 17: You have a Microsoft 365 E5 subscription and a hybrid Micros...
- Question 18: Your company has a main office and a Microsoft 365 subscript...
- Question 19: You create a data loss prevention (DLP) policy as shown in t...
- Question 20: You have a Microsoft 365 subscription. You create an Advance...
- Question 21: Note: This question is part of series of questions that pres...
- Question 22: Your company uses Microsoft Azure Advanced Threat Protection...
- Question 23: You have a Microsoft 365 E5 subscription. You implement Adva...
- Question 24: You have a Microsoft 365 subscription. You need to ensure th...
- Question 25: Which IP address space should you include in the MFA configu...
- Question 26: You have a Microsoft 365 Enterprise E5 subscription. You use...
- Question 27: You have a hybrid Microsoft 365 environment. All computers r...
- Question 28: Note: This question is part of series of questions that pres...
- Question 29: You need to create Group2. What are two possible ways to cre...
- Question 30: Your company has 500 computers. You plan to protect the comp...
- Question 31: Your company has a Microsoft 365 subscription. The company f...
- Question 32: You have a Microsoft 365 subscription that includes a user n...
- Question 33: You have a Microsoft 365 Enterprise E5 subscription. You use...
- Question 34: You have a Microsoft 365 subscription. From the Microsoft 36...
- Question 35: Note: This question is part of series of questions that pres...
- Question 36: You have a Microsoft 365 tenant. You have 500 computers that...
- Question 37: Note: This question is part of series of questions that pres...
