Microsoft MS-102 Practice Exams
Last updated on Mar 31,2025- Exam Code: MS-102
- Exam Name: Microsoft 365 Administrator
- Certification Provider: Microsoft
- Latest update: Mar 31,2025
You need to recommend a solution for the security administrator. The solution must meet the technical requirements.
What should you include in the recommendation?
- A . Microsoft Azure Active Directory (Azure AD) Privileged Identity Management
- B . Microsoft Azure Active Directory (Azure AD) Identity Protection
- C . Microsoft Azure Active Directory (Azure AD) conditional access policies
- D . Microsoft Azure Active Directory (Azure AD) authentication methods
You have a Microsoft J65 E5 subscription.
You integrate Microsoft Defender for Endpoint with Microsoft Intune.
You need to ensure that devices automatically onboard to Defender for Endpoint when they are enrolled in Intune.
Solution: You configure a device configuration profile.
Does this meet the goal?
- A . Yes
- B . No
HOTSPOT
Your company has a hybrid deployment of Microsoft 365.
An on-premises user named User1 is synced to Azure AD.
Azure AD Connect is configured as shown in the following exhibit
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic. NOTE: Each correct selection is worth one point.
HOTSPOT
You have a Microsoft 365 E3 subscription.
You plan to launch Attack simulation training for all users.
Which social engineering technique and training experience will be available? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the Exchange Administrator role.
Does this meet the goal?
- A . Yes
- B . No
Your company has 10,000 users who access all applications from an on-premises data center.
You plan to create a Microsoft 365 subscription and to migrate data to the cloud.
You plan to implement directory synchronization.
User accounts and group accounts must sync to Azure AD successfully.
You discover that several user accounts fail to sync to Azure AD.
You need to resolve the issue as quickly as possible.
What should you do?
- A . From Active Directory Administrative Center, search for all the users, and then modify the properties of the user accounts.
- B . Run idfix.exe, and then click Edit.
- C . From Windows PowerShell, run the start-AdSyncSyncCycle -PolicyType Delta command.
- D . Run idfix.exe, and then click Complete.
HOTSPOT
You have a Microsoft 365 tenant that contains the groups shown in the following table.
You plan to create a compliance policy named Compliance1.
You need to identify the groups that meet the following requirements:
Can be added to Compliance1 as recipients of noncompliance notifications Can be assigned to Compliance1
To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 E5 tenant.
The Microsoft Secure Score for the tenant is shown in the following exhibit.
You plan to enable Security defaults for Azure Active Directory (Azure AD).
Which three improvement actions will this affect?
- A . Require MFA for administrative roles.
- B . Ensure all users can complete multi-factor authentication for secure access
- C . Enable policy to block legacy authentication
- D . Enable self-service password reset
- E . Use limited administrative roles
HOTSPOT
You have a Microsoft 365 E5 tenant that contains five devices enrolled in Microsoft Intune as shown in the following table.
All the devices have an app named App1 installed.
You need to prevent users from copying data from App1 and pasting the data into other apps.
Which policy should you create in Microsoft Endpoint Manager, and what is the minimum number of required policies? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 tenant.
You plan to implement device configuration profiles in Microsoft Intune.
Which platform can you manage by using the profiles?
- A . Ubuntu Linux
- B . macOS
- C . Android Enterprise
- D . Windows 8.1