Microsoft 365 Fundamentals MS-900 (MS-900) — Questions 751825

985 questions total · 14pages · All types, answers revealed

Page 10

Page 11 of 14

Page 12
751
Multi-Selecteasy

Which two statements correctly describe SaaS in a cloud computing model? (Choose 2.)

Select 2 answers
A.Users access a complete application provided by the cloud service provider.
B.The provider manages the underlying infrastructure and application platform.
C.Customers manage the operating system patching.
D.Customers deploy their own runtime environment.
AnswersA, B

That is the defining characteristic of SaaS.

Why this answer

Option A is correct because in the SaaS model, users access a complete application—such as Microsoft 365—that is hosted and managed entirely by the cloud service provider. The provider handles all aspects of the application, including availability, performance, and security, while the user simply consumes the software via a web browser or client. This aligns with the NIST definition of SaaS, where the consumer does not manage or control the underlying cloud infrastructure or even individual application capabilities.

Exam trap

The trap here is that candidates confuse SaaS with PaaS or IaaS, mistakenly thinking customers are responsible for OS patching (Option C) or deploying their own runtime (Option D), when in fact SaaS abstracts all underlying layers away from the consumer.

752
MCQmedium

A consulting firm needs a tool to allow customers to schedule appointments with specific consultants online. The tool must show available time slots, send confirmation emails, and allow customers to reschedule. Which Microsoft 365 app should they use?

A.Microsoft Bookings
B.Microsoft Forms
C.Microsoft To Do
D.Microsoft Planner
AnswerA

Correct. Bookings provides a public booking page, automatic email confirmations, and the ability to reschedule.

Why this answer

Microsoft Bookings is the correct app because it is specifically designed for scheduling appointments, showing real-time availability of staff, sending automated confirmation and reminder emails, and allowing customers to self-manage rescheduling or cancellations. It integrates with Exchange Online for calendar synchronization and Teams for virtual meetings, meeting all stated requirements.

Exam trap

The trap here is that candidates may confuse Microsoft Bookings with Microsoft Forms or Planner, assuming any Microsoft 365 app with a calendar or task feature can handle scheduling, but only Bookings provides the dedicated customer-facing booking page and automated confirmation workflow required for external appointment management.

How to eliminate wrong answers

Option B (Microsoft Forms) is wrong because it is a survey and data collection tool, not a scheduling system; it cannot show available time slots or send confirmation emails for appointments. Option C (Microsoft To Do) is wrong because it is a personal task management app focused on to-do lists and reminders, lacking any scheduling or customer-facing booking capabilities. Option D (Microsoft Planner) is wrong because it is a project management tool for team task boards and plans, not designed for external customer appointment scheduling or time slot management.

753
MCQmedium

A company wants to ensure that sensitive documents in Microsoft SharePoint Online are automatically classified and protected when they contain credit card numbers. Which Microsoft 365 service should they use?

A.Microsoft Purview Compliance Manager
B.Microsoft Purview Audit
C.Microsoft Purview Insider Risk Management
D.Microsoft Purview Information Protection
AnswerD

This service provides automatic classification and labeling of sensitive data.

Why this answer

Microsoft Purview Information Protection (D) enables organizations to automatically classify and protect sensitive documents based on data classification rules. By configuring a sensitive information type for credit card numbers, SharePoint Online can apply sensitivity labels or retention labels to documents containing that pattern, ensuring they are encrypted or restricted as defined by policy.

Exam trap

The trap here is that candidates may confuse Compliance Manager (a compliance posture dashboard) with the actual data classification and protection service, or assume Insider Risk Management handles content classification when it is actually focused on user behavior analytics.

How to eliminate wrong answers

Option A is wrong because Microsoft Purview Compliance Manager is a risk assessment and compliance score tool, not a data classification or protection engine; it does not automatically classify or protect documents based on content. Option B is wrong because Microsoft Purview Audit provides logging and investigation of user and admin activities, not automated classification or protection of sensitive data. Option C is wrong because Microsoft Purview Insider Risk Management focuses on detecting risky user behaviors (e.g., data exfiltration) through analytics and policies, not on automatically classifying or protecting documents based on content patterns like credit card numbers.

754
MCQeasy

A healthcare organization stores patient records in SharePoint Online. They need to ensure that the data is encrypted at rest and in transit. Which statement is true regarding Microsoft 365 encryption?

A.Microsoft provides default encryption for data at rest and in transit.
B.Customers must enable encryption at rest manually for each workload.
C.Encryption only applies to Exchange Online, not SharePoint or OneDrive.
D.Encryption is optional and can be turned off if a customer chooses.
AnswerA

Microsoft 365 encrypts all data at rest using disk and file encryption, and all data in transit using industry-standard protocols like TLS.

Why this answer

Microsoft 365 provides default encryption for data at rest and in transit across all workloads, including SharePoint Online, Exchange Online, and OneDrive for Business. For data at rest, Microsoft uses BitLocker Drive Encryption and service-side encryption with per-file keys, while data in transit is secured using TLS 1.2+ and IPSec. This means the healthcare organization's patient records in SharePoint Online are automatically encrypted without any manual configuration.

Exam trap

The trap here is that candidates often assume encryption must be manually configured or is optional, but Microsoft 365 enforces encryption by default across all workloads, and customers cannot disable it.

How to eliminate wrong answers

Option B is wrong because encryption at rest is enabled by default for all Microsoft 365 workloads, including SharePoint Online, and does not require manual enablement per workload. Option C is wrong because encryption applies to all Microsoft 365 services, not just Exchange Online; SharePoint Online and OneDrive for Business also use BitLocker and service-side encryption for data at rest and TLS for data in transit. Option D is wrong because encryption is mandatory and cannot be turned off by customers; Microsoft enforces encryption as a core security feature to protect data.

755
Multi-Selectmedium

A company is planning to migrate its collaboration tools to Microsoft 365. They need a solution for real-time document co-authoring, instant messaging, and video conferencing, all in one integrated platform. Which two Microsoft 365 services should they use? (Choose two.)

Select 2 answers
A.Microsoft SharePoint
B.Microsoft Teams
C.Microsoft OneDrive
D.Microsoft Stream
AnswersA, B

Correct. SharePoint enables real-time co-authoring of documents and provides a central repository for team files.

Why this answer

Microsoft SharePoint is correct because it provides the document storage and versioning infrastructure that enables real-time co-authoring of documents (e.g., Word, Excel, PowerPoint) via the Office Online Server integration. Microsoft Teams is correct because it integrates instant messaging, persistent chat, and video conferencing (using the underlying Skype for Business Online technology) with SharePoint and OneDrive for seamless file sharing and co-authoring within the same interface.

Exam trap

The trap here is that candidates often confuse OneDrive for Business (a personal sync tool) with SharePoint (a team-based document management platform), or they assume Microsoft Stream provides live video conferencing, when in fact Stream is for recorded video management and Teams handles live meetings.

756
MCQmedium

A user reports receiving a phishing email that bypassed Exchange Online Protection (EOP). You need to investigate the threat and automate a response across email, endpoints, and identities. Which Microsoft 365 security solution should you use?

A.Microsoft Sentinel
B.Microsoft Defender for Office 365
C.Microsoft Defender for Endpoint
D.Microsoft Defender XDR
AnswerD

Defender XDR correlates signals across email, endpoints, and identities and automates response.

Why this answer

Microsoft Defender XDR (formerly Microsoft 365 Defender) provides unified detection and automated response across email, endpoints, and identities. Option C is correct. Option A (Defender for Office 365) focuses only on email, Option B (Defender for Endpoint) only on endpoints, and Option D (Sentinel) is a SIEM that could be used but is not the primary automated response tool for this scenario.

757
MCQmedium

A business stakeholder asks how Microsoft 365 can help them allow sign-in using biometrics or FIDO2 security keys. Microsoft security, identity, or compliance capability should it use?

A.Microsoft Planner
B.Microsoft Entra ID passwordless authentication
C.Microsoft Stream
D.Microsoft Forms
AnswerB

Microsoft Entra ID supports passwordless methods such as Windows Hello for Business and FIDO2 security keys.

Why this answer

Microsoft Entra ID passwordless authentication (Option B) is the correct capability because it directly supports sign-in using biometrics (Windows Hello, Microsoft Authenticator) and FIDO2 security keys. This feature eliminates the need for passwords by leveraging public-key cryptography and the WebAuthn standard, aligning with the stakeholder's request for passwordless sign-in methods.

Exam trap

The trap here is that candidates may confuse productivity tools (Planner, Stream, Forms) with identity and access management capabilities, failing to recognize that passwordless authentication is a core feature of Microsoft Entra ID, not a standalone app.

How to eliminate wrong answers

Option A (Microsoft Planner) is wrong because it is a task management and project planning tool, not an identity or authentication service. Option C (Microsoft Stream) is wrong because it is a video sharing and management platform, unrelated to authentication mechanisms. Option D (Microsoft Forms) is wrong because it is a survey and data collection tool, with no capability to handle biometric or FIDO2 sign-in.

758
Multi-Selectmedium

Which TWO Microsoft 365 services can be used to create and manage corporate training content and track employee completion?

Select 2 answers
A.Microsoft Viva Learning
B.Microsoft Forms
C.Microsoft Stream
D.Microsoft To Do
E.SharePoint Online
AnswersA, E

Microsoft Viva Learning provides a centralized learning hub within Teams.

Why this answer

Microsoft Viva Learning (A) is a centralized learning hub within Microsoft Teams that allows organizations to create, assign, and track corporate training content from internal sources (like SharePoint) and external providers (like LinkedIn Learning). SharePoint Online (E) enables the creation and management of training materials as documents, pages, or custom learning portals, and can integrate with Viva Learning to track employee completion via list-based progress tracking or Power Automate workflows.

Exam trap

The trap here is that candidates often confuse Microsoft Forms (a simple quiz tool) or Microsoft Stream (a video platform) with having built-in training management capabilities, when in fact they lack the assignment and completion tracking features required for corporate training.

759
MCQeasy

A cloud provider allows customers to provision virtual machines, storage, and other resources through a web portal without requiring human interaction with the provider's staff. Which cloud computing characteristic does this best illustrate?

A.Rapid elasticity
B.Measured service
C.Resource pooling
D.On-demand self-service
AnswerD

This is the definition of on-demand self-service: consumers can unilaterally provision computing capabilities without requiring human interaction with the provider.

Why this answer

The scenario describes a user provisioning resources through a web portal without any human interaction from the provider. This directly matches the NIST SP 800-145 definition of on-demand self-service, where a consumer can unilaterally provision computing capabilities as needed automatically without requiring human interaction with each service provider.

Exam trap

The trap here is that candidates confuse the 'self-service' aspect of provisioning with 'rapid elasticity' because both involve speed, but the question specifically highlights the lack of human interaction, which is the defining feature of on-demand self-service, not the scaling behavior.

How to eliminate wrong answers

Option A is wrong because rapid elasticity refers to the ability to quickly scale resources up or down, often automatically, not the method of provisioning without human contact. Option B is wrong because measured service involves monitoring, controlling, and reporting resource usage for billing and optimization, not the self-provisioning capability. Option C is wrong because resource pooling describes the provider's multi-tenant model where physical and virtual resources are dynamically assigned to serve multiple consumers, not the consumer's ability to provision without staff interaction.

760
MCQhard

Refer to the exhibit. A JSON snippet from a Microsoft Purview compliance policy. What is the effect of this policy when applied to a document?

A.It encrypts the document and adds a watermark.
B.It prevents any sharing of the document.
C.It only adds a watermark.
D.It only encrypts the document.
AnswerA

Both intents are present and enabled.

Why this answer

The JSON snippet defines a Microsoft Purview sensitivity label policy configured with both encryption (via 'protection' settings) and a dynamic watermark (via 'marking' settings). When applied to a document, this label enforces both actions simultaneously: it encrypts the document to restrict access and adds a watermark to deter unauthorized sharing. Option A is correct because the policy explicitly includes both 'encryption' and 'watermark' properties, meaning the document will be both encrypted and watermarked upon labeling.

Exam trap

The trap here is that candidates may assume a sensitivity label only performs one action (either encryption or watermarking) and overlook that Microsoft Purview allows combining multiple protection and marking actions in a single label policy.

How to eliminate wrong answers

Option B is wrong because the policy does not block sharing entirely; encryption controls access but does not prevent sharing via secure channels (e.g., encrypted email or protected sharing). Option C is wrong because the policy includes encryption settings in addition to the watermark, so it does more than just add a watermark. Option D is wrong because the policy also includes watermark settings, so it does not only encrypt the document.

761
Multi-Selecteasy

Which TWO Microsoft 365 apps are part of the Microsoft Viva suite?

Select 2 answers
A.Microsoft Viva Insights
B.Microsoft Teams
C.Microsoft SharePoint
D.Microsoft Viva Connections
E.Microsoft Power BI
AnswersA, D

Productivity insights app in Viva.

Why this answer

Microsoft Viva Insights is correct because it is a core component of the Microsoft Viva employee experience platform, providing personalized wellbeing, productivity, and collaboration analytics derived from Microsoft 365 data. It uses signals from emails, meetings, and chats to deliver actionable insights to individuals, managers, and leaders.

Exam trap

The trap here is that candidates often confuse the host platform (Microsoft Teams) or supporting services (SharePoint, Power BI) with the actual Viva suite components, leading them to select those as Viva apps instead of the dedicated Viva modules.

762
MCQmedium

A help desk lead is documenting the correct Microsoft 365 approach to view usage reports without changing configuration. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Whiteboard
B.Microsoft Stream
C.Microsoft Forms
D.Reports Reader
AnswerD

Reports Reader can view reporting data while maintaining limited permissions.

Why this answer

The Reports Reader role in Microsoft 365 is specifically designed to allow users to view usage reports and adoption metrics without requiring any administrative permissions or configuration changes. This role provides read-only access to the Reports section in the Microsoft 365 admin center, enabling help desk leads to monitor usage data without altering settings or licensing. The other options (Whiteboard, Stream, Forms) are unrelated to viewing usage reports.

Exam trap

The trap here is that candidates may confuse the Reports Reader role with other Microsoft 365 services (like Stream or Forms) that have 'reporting' features in their own context, but only the Reports Reader role provides tenant-wide usage report access without configuration changes.

How to eliminate wrong answers

Option A is wrong because Microsoft Whiteboard is a digital canvas collaboration tool, not a reporting or admin role, and it does not provide access to usage reports. Option B is wrong because Microsoft Stream is a video service for recording and sharing videos, and it lacks any built-in capability to view Microsoft 365 usage reports without additional configuration. Option C is wrong because Microsoft Forms is a survey and quiz creation tool, and it cannot be used to access or view tenant-level usage reports from the admin center.

763
Multi-Selectmedium

A healthcare organization must encrypt outbound email automatically when a message contains passport numbers. Which two Microsoft Purview capabilities are commonly combined? (Choose two.)

Select 2 answers
A.Microsoft Planner
B.Data Loss Prevention (DLP)
C.Microsoft Purview Message Encryption
D.Microsoft Viva Engage
AnswersB, C

DLP detects sensitive information and can trigger actions.

Why this answer

Data Loss Prevention (DLP) is the correct answer because it provides the policy engine that detects sensitive information, such as passport numbers, in outbound email. When a DLP rule matches, it can trigger automatic encryption of the message using Microsoft Purview Message Encryption, ensuring the email is protected before leaving the organization.

Exam trap

The trap here is that candidates often confuse Microsoft Purview Message Encryption as a standalone solution, forgetting that it requires a DLP policy to automatically detect and trigger the encryption action.

764
MCQmedium

A department asks for the Microsoft 365 service best suited for task tracking using boards and buckets. Which service should they use?

A.Microsoft Defender for Endpoint
B.Microsoft Planner
C.Microsoft Entra Privileged Identity Management
D.Microsoft Purview Compliance Manager
AnswerB

Planner provides lightweight team task management with buckets and boards.

Why this answer

Microsoft Planner is the correct service because it provides task tracking using boards and buckets, which are core features of its Kanban-style project management interface. This aligns directly with the department's request for organizing tasks visually, making it the appropriate Microsoft 365 app for lightweight project coordination.

Exam trap

The trap here is that candidates may confuse Microsoft Planner with Microsoft To Do or Microsoft Project, but Planner is specifically designed for team-based task tracking with boards and buckets, whereas To Do is for personal task lists and Project is for complex project management.

How to eliminate wrong answers

Option A is wrong because Microsoft Defender for Endpoint is a security solution for endpoint protection, threat detection, and response, not a task management tool. Option C is wrong because Microsoft Entra Privileged Identity Management is an identity governance service for managing, controlling, and monitoring access to privileged roles in Azure AD, not for task tracking. Option D is wrong because Microsoft Purview Compliance Manager is a compliance management solution for assessing and managing regulatory compliance risks, not for organizing tasks with boards and buckets.

765
MCQmedium

A company needs to ensure that their cloud data and applications remain available even if an entire Azure region experiences an outage. They also want to minimize latency by hosting resources in multiple geographic locations. Which cloud concept addresses these requirements?

A.Scalability
B.Geo-redundancy
C.Measured service
D.Resource pooling
AnswerB

Geo-redundancy replicates data across multiple geographic regions, providing disaster recovery and enabling users to access resources from a region closer to them for lower latency.

Why this answer

Geo-redundancy (Option B) is correct because it specifically addresses the requirement for data and application availability during an entire Azure region outage by replicating resources across multiple geographically separated regions, such as Azure paired regions (e.g., East US and West US). This also minimizes latency by allowing traffic to be routed to the nearest available region, leveraging Azure Traffic Manager or Azure Front Door for global load balancing.

Exam trap

The trap here is that candidates often confuse geo-redundancy with high availability within a single region (e.g., Availability Zones) or mistakenly think scalability or resource pooling can provide region-level disaster recovery, but only geo-redundancy ensures data and app availability across entire regions.

How to eliminate wrong answers

Option A is wrong because scalability refers to the ability to increase or decrease resources (e.g., compute or storage) to handle demand, not to maintain availability during a region-wide outage or to reduce latency across geographic locations. Option C is wrong because measured service is a cloud characteristic where usage is metered and billed (e.g., pay-as-you-go), which does not address disaster recovery or geographic latency. Option D is wrong because resource pooling describes the multi-tenant model where provider resources are shared among customers (e.g., Azure's hypervisor isolation), not the replication of data across regions for high availability.

766
MCQmedium

A business stakeholder asks how Microsoft 365 can help them desktop Office apps plus business email and collaboration services without advanced security management. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Stream
B.Microsoft Forms
C.Microsoft 365 Business Standard
D.Microsoft Whiteboard
AnswerC

Business Standard includes desktop Office apps and core business services.

Why this answer

Microsoft 365 Business Standard is the correct licensing plan because it includes desktop versions of Office apps (e.g., Word, Excel, PowerPoint), business-class email via Exchange Online, and collaboration services like Microsoft Teams and SharePoint—all without requiring advanced security management features such as Microsoft Defender for Office 365 or Azure Information Protection. This plan is designed for businesses that need core productivity and communication tools without the complexity of enterprise-grade security controls.

Exam trap

The trap here is that candidates may confuse individual service names (like Stream, Forms, or Whiteboard) with licensing plans, failing to recognize that only a subscription plan like Business Standard bundles desktop Office apps, email, and collaboration services together.

How to eliminate wrong answers

Option A is wrong because Microsoft Stream is a video hosting and sharing service within Microsoft 365, not a licensing plan that provides desktop Office apps, email, or collaboration services. Option B is wrong because Microsoft Forms is a survey and quiz creation tool, not a licensing plan that bundles desktop Office apps, email, or collaboration services. Option D is wrong because Microsoft Whiteboard is a digital canvas for collaboration, not a licensing plan that includes desktop Office apps, business email, or collaboration services.

767
MCQhard

An organization wants to prevent employees from sharing sensitive files with external users via SharePoint Online, but they need to allow sharing with a specific external partner for a single project. What is the most efficient configuration?

A.Disable external sharing at the tenant level and enable it only for the specific project site
B.Change the default sharing link type to 'Specific people' and add the partner's domain to an allow list
C.Apply sensitivity labels with encryption to all files
D.Configure a DLP policy to block external sharing except for the partner domain
AnswerA

This approach uses the granular sharing settings in SharePoint Online: a tenant-wide restriction prevents all external sharing by default, and exceptions can be made on a per-site basis, providing a clear, manageable security model.

Why this answer

Option A is correct because it allows the organization to disable external sharing globally at the tenant level via the SharePoint admin center, which prevents all users from sharing with external users by default. Then, by enabling external sharing only for the specific project site (site-level override), the organization can grant the necessary access to the external partner while maintaining the broad restriction. This is the most efficient approach because it uses a single configuration change at the tenant level and a targeted exception at the site level, avoiding complex policies or labels.

Exam trap

The trap here is that candidates often confuse DLP policies or sensitivity labels as the primary method to control sharing, when in fact SharePoint sharing settings at the tenant and site level are the direct and most efficient configuration for this scenario.

How to eliminate wrong answers

Option B is wrong because changing the default sharing link type to 'Specific people' does not block external sharing; it only changes the default link behavior, and adding the partner's domain to an allow list (via cross-tenant access settings) still permits external sharing broadly, not just for the single project. Option C is wrong because applying sensitivity labels with encryption protects files but does not prevent sharing; users can still share encrypted files with external users, and encryption does not enforce sharing restrictions. Option D is wrong because configuring a DLP policy to block external sharing except for the partner domain is overly complex and less efficient; DLP policies are designed for data loss prevention (e.g., blocking sensitive info in emails or documents) and are not the primary tool for controlling SharePoint sharing settings, which are managed via sharing permissions.

768
MCQeasy

Your organization uses Microsoft 365 and wants to provide employees with access to corporate resources from their personal devices without managing the entire device. Which cloud service model is being used?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Desktop as a Service (DaaS)
D.Software as a Service (SaaS)
AnswerD

Microsoft 365 is a SaaS offering.

Why this answer

Option A is correct because SaaS delivers software over the internet, accessed via subscription. Option B is wrong because PaaS provides a platform for application development. Option C is wrong because IaaS provides virtualized computing resources.

Option D is wrong because DaaS delivers virtual desktops.

769
MCQmedium

A helpdesk team needs to provide remote assistance to users by viewing and controlling their Windows devices. Which Microsoft 365 service enables this?

A.Microsoft Teams screen sharing
B.Windows 365
C.Microsoft Quick Assist
D.Microsoft Intune Remote Help
AnswerD

Remote Help provides secure remote control and view capabilities for managed devices.

Why this answer

Remote Help via Intune allows support personnel to remotely view and control devices. Teams screen sharing is less secure. Quick Assist is not integrated.

Windows 365 is a cloud PC.

770
MCQmedium

A 500-user organization is licensed with Microsoft 365 E3. They need to comply with a regulation that requires retaining all Exchange Online mailbox content for 10 years and providing unlimited archive storage for users. Which add-on license or service should they acquire to meet this requirement most cost-effectively?

A.Microsoft 365 E5 Compliance add-on
B.Exchange Online Archiving for Exchange Online Plan 2
C.Microsoft Purview eDiscovery add-on
D.Microsoft 365 E5 Security add-on
AnswerB

This add-on provides unlimited archive storage for users who already have Exchange Online Plan 2 (included in E3). Retention policies can enforce 10-year retention.

Why this answer

Option B is correct because Exchange Online Archiving for Exchange Online Plan 2 provides unlimited archive storage and retention policies that can enforce a 10-year hold on mailbox content. This add-on is the most cost-effective way to meet the regulatory requirements without upgrading to E5, as it directly extends the archiving and retention capabilities of the existing E3 license.

Exam trap

The trap here is that candidates often assume only an E5 license or a compliance add-on can provide long-term retention and unlimited archiving, but the Exchange Online Archiving add-on is a targeted, lower-cost solution for these specific needs.

How to eliminate wrong answers

Option A is wrong because Microsoft 365 E5 Compliance add-on includes advanced eDiscovery, insider risk management, and other compliance tools, but it is more expensive than the Exchange Online Archiving add-on and not required solely for unlimited archive storage and 10-year retention. Option C is wrong because Microsoft Purview eDiscovery add-on focuses on search and export of content for legal cases, not on providing unlimited archive storage or retention policies. Option D is wrong because Microsoft 365 E5 Security add-on provides advanced security features like Microsoft Defender for Office 365 and Microsoft Sentinel, but does not include unlimited archive storage or retention capabilities for Exchange Online mailboxes.

771
MCQmedium

A hospital uses Microsoft 365 and wants to enable secure messaging between doctors and nurses that supports compliance with health data regulations. Which Microsoft 365 service provides encrypted, compliant messaging?

A.Microsoft Yammer
B.Microsoft Teams
C.Microsoft Viva
D.Microsoft Bookings
AnswerB

Teams supports encrypted chat with compliance features like retention and eDiscovery.

Why this answer

Microsoft Teams supports encrypted messaging and compliance with health data regulations like HIPAA through features such as data encryption at rest and in transit, Data Loss Prevention (DLP) policies, and eDiscovery. It provides secure communication channels for healthcare professionals while meeting regulatory requirements for protected health information (PHI).

Exam trap

The trap here is that candidates may confuse Microsoft Teams with Yammer as both are communication tools, but Yammer lacks the compliance and encryption features required for regulated health data messaging.

How to eliminate wrong answers

Option A is wrong because Microsoft Yammer is an enterprise social network focused on broad organizational communication and lacks the granular compliance controls (e.g., DLP, eDiscovery, retention policies) needed for secure, regulated messaging in healthcare. Option C is wrong because Microsoft Viva is an employee experience platform that integrates with Microsoft 365 and third-party tools for insights, learning, and wellbeing, but it does not provide native messaging or encrypted communication capabilities. Option D is wrong because Microsoft Bookings is a scheduling and appointment management tool, not a messaging service, and does not offer encrypted, compliant messaging features.

772
Multi-Selecteasy

A company uses a cloud service where they pay only for the compute hours their virtual machines run. They can increase or decrease the number of VMs instantly based on demand. Which two cloud computing characteristics are demonstrated? (Choose two.)

Select 2 answers
A.On-demand self-service
B.Rapid elasticity
C.Measured service
D.Resource pooling
AnswersB, C

The ability to quickly increase or decrease the number of VMs based on demand is a direct example of rapid elasticity.

Why this answer

B is correct because rapid elasticity allows the company to instantly increase or decrease the number of virtual machines based on demand, scaling resources up or down automatically. C is correct because measured service ensures that the company pays only for the compute hours their VMs run, with usage metered and billed accordingly.

Exam trap

The trap here is that candidates often confuse 'on-demand self-service' with the ability to instantly scale resources, but on-demand self-service specifically refers to the user's ability to provision resources without provider intervention, not the elasticity of scaling.

773
MCQeasy

A marketing team needs to create a slide-based presentation that includes charts copied from an Excel spreadsheet and animated transitions. They also require the ability to collaborate in real-time with remote colleagues. Which Microsoft 365 app should they use?

A.Word
B.Excel
C.PowerPoint
D.Sway
AnswerC

PowerPoint provides slide creation, chart embedding, animations, transitions, and real-time collaboration.

Why this answer

PowerPoint is the correct choice because it is specifically designed for creating slide-based presentations with rich media, including charts copied from Excel and animated transitions. It also supports real-time co-authoring via OneDrive or SharePoint, enabling multiple remote colleagues to edit simultaneously.

Exam trap

The trap here is that candidates may confuse Sway as a presentation tool because it can create visually rich content, but it is not a slide-based presentation app and lacks the specific features (animated transitions, real-time co-authoring) that PowerPoint provides for this scenario.

How to eliminate wrong answers

Option A is wrong because Word is a word-processing app for documents, not slide-based presentations, and lacks native support for animated transitions between slides. Option B is wrong because Excel is a spreadsheet app for data analysis and charting, but it cannot create slide-based presentations or apply slide transitions. Option D is wrong because Sway is a digital storytelling app for interactive web-based reports, not traditional slide-based presentations, and it does not support animated transitions or real-time co-authoring in the same way as PowerPoint.

774
MCQeasy

An administrator is reviewing a request from users who need to avoid buying servers upfront and pay monthly based on usage. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Data Loss Prevention (DLP)
C.Operational expenditure (OpEx) model
D.Microsoft Planner
AnswerC

Cloud services commonly shift spending from upfront capital purchases to ongoing operational spending based on consumption.

Why this answer

The requirement to avoid upfront server purchases and pay monthly based on usage directly aligns with the operational expenditure (OpEx) model, a key cloud computing benefit. In cloud services, OpEx shifts costs from capital expenditure (CapEx) to a pay-as-you-go or subscription-based model, eliminating the need for large upfront hardware investments. This is a fundamental concept in Microsoft Azure and other cloud platforms, where resources like virtual machines are billed monthly based on actual consumption.

Exam trap

The trap here is that candidates often confuse OpEx with other cloud benefits like scalability or elasticity, but the question specifically tests the financial distinction between paying upfront (CapEx) versus paying monthly based on usage (OpEx).

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data based on sensitivity (e.g., confidential, public), not a financial or deployment model. Option B is wrong because Data Loss Prevention (DLP) is a security policy mechanism that detects and prevents unauthorized sharing of sensitive data, unrelated to cost models or server procurement. Option D is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365, designed for organizing work, not for financial planning or infrastructure purchasing.

775
Multi-Selecthard

Which THREE Microsoft 365 services are included in Microsoft 365 E3 that are NOT in Microsoft 365 Business Basic?

Select 3 answers
A.Exchange Online
B.Microsoft Purview Information Protection
C.Microsoft Teams
D.Desktop versions of Office apps
E.Microsoft Intune
AnswersB, D, E

E3 includes compliance features; Business Basic does not.

Why this answer

Microsoft Purview Information Protection (formerly Azure Information Protection) is included in Microsoft 365 E3 but not in Microsoft 365 Business Basic. Business Basic only includes Exchange Online, Teams, and web/mobile versions of Office apps, with no data classification or rights management capabilities. E3 adds full Purview features like sensitivity labels and encryption for compliance and data loss prevention.

Exam trap

The trap here is that candidates assume all 'Business' plans lack advanced security features, but the question specifically asks for services included in E3 that are NOT in Business Basic, and Exchange Online and Teams are common to both, while desktop Office apps and Intune are also exclusive to E3.

776
MCQmedium

During requirements gathering, an IT manager says the organization must create an approval workflow between SharePoint and Teams without writing code. Microsoft 365 app or service is the best fit?

A.Power Automate
B.Microsoft Purview Audit
C.Microsoft Forms
D.Microsoft Planner
AnswerA

Power Automate creates low-code workflows across Microsoft 365 services.

Why this answer

Power Automate is the correct choice because it provides a low-code/no-code platform for creating automated workflows that integrate SharePoint and Teams. It allows you to trigger actions based on events in SharePoint (e.g., a new item added to a list) and then perform subsequent actions in Teams (e.g., posting an approval request in a channel). This directly meets the requirement to build an approval workflow without writing code.

Exam trap

The trap here is that candidates may confuse Microsoft Planner's task assignment features with workflow automation, but Planner lacks the cross-service orchestration and approval action types that Power Automate provides.

How to eliminate wrong answers

Option B is wrong because Microsoft Purview Audit is a compliance and auditing tool that logs user and admin activities across Microsoft 365; it cannot create or execute approval workflows. Option C is wrong because Microsoft Forms is used to create surveys, quizzes, and polls, not to build multi-step approval workflows between SharePoint and Teams. Option D is wrong because Microsoft Planner is a task management and project tracking tool that lacks the workflow automation capabilities needed to orchestrate an approval process across different services.

777
MCQmedium

A company with 500 users is currently licensed with Microsoft 365 E3. The compliance team needs to add advanced eDiscovery capabilities (including predictive coding and legal hold) and the ability to retain data for up to 7 years. What is the most cost-effective licensing addition?

A.Microsoft 365 E5 Compliance add-on
B.Microsoft 365 E5 Security add-on
C.Microsoft 365 E5
D.Office 365 E5
AnswerA

This add-on includes advanced eDiscovery and retention features, specifically designed to meet compliance needs without the full E5 suite.

Why this answer

Option A is correct because the Microsoft 365 E5 Compliance add-on provides advanced eDiscovery capabilities (including predictive coding and legal hold) and the ability to retain data for up to 7 years via retention policies. This add-on is the most cost-effective way to add these specific compliance features to an existing Microsoft 365 E3 subscription, as it avoids the higher cost of upgrading the entire suite to E5.

Exam trap

The trap here is that candidates often confuse the E5 Compliance add-on with the full E5 suite, assuming they need to upgrade the entire license when a targeted add-on is sufficient and more cost-effective.

How to eliminate wrong answers

Option B is wrong because the Microsoft 365 E5 Security add-on focuses on security features like Microsoft Defender for Office 365 and Microsoft 365 Defender, not on compliance capabilities such as advanced eDiscovery or long-term data retention. Option C is wrong because Microsoft 365 E5 includes both security and compliance features but is significantly more expensive than the E5 Compliance add-on, making it less cost-effective when only compliance features are needed. Option D is wrong because Office 365 E5 is a legacy plan that does not include the Windows or device management components of Microsoft 365 E3, and it would require a full license migration rather than a simple add-on, increasing cost and complexity.

778
MCQmedium

A marketing team wants to create a visual task board to track campaign activities, assign owners, and set deadlines. They do not need subtasks or dependencies. Which Microsoft 365 app is most suitable?

A.Microsoft Planner
B.Microsoft Project
C.Microsoft To Do
D.Microsoft Lists
AnswerA

Planner offers an intuitive board view with cards for tasks, assignments, due dates, and progress tracking, perfectly matching the team's needs for a visual task board.

Why this answer

Microsoft Planner is the most suitable app because it provides a visual Kanban-style task board specifically designed for team collaboration, allowing users to create tasks, assign owners, set deadlines, and track progress without requiring subtasks or dependencies. It integrates seamlessly with Microsoft Teams and other Microsoft 365 services, making it ideal for lightweight project management like campaign tracking.

Exam trap

The trap here is that candidates often confuse Microsoft Planner with Microsoft To Do or Microsoft Lists, assuming any task-related app can handle team boards, but only Planner provides the specific visual Kanban board with team assignment and deadline tracking without dependencies.

How to eliminate wrong answers

Option B (Microsoft Project) is wrong because it is a full-featured project management tool designed for complex projects with dependencies, subtasks, resource management, and Gantt charts, which is overkill for a simple visual task board and not intended for lightweight team collaboration. Option C (Microsoft To Do) is wrong because it is a personal task management app focused on individual productivity, lacking team assignment, shared boards, and deadline tracking for group activities. Option D (Microsoft Lists) is wrong because it is a data-tracking and list management app for creating custom lists, forms, and workflows, but it does not provide a native Kanban board view or built-in task assignment features like Planner does.

779
MCQeasy

A security administrator needs to review all sign-in attempts and identify suspicious login patterns for the past 30 days. Which Microsoft 365 portal should they use to access this information?

A.Microsoft Purview compliance portal
B.Microsoft 365 admin center
C.Microsoft Entra ID sign-in logs
D.Microsoft Defender for Cloud Apps
AnswerC

Microsoft Entra ID Sign-ins logs (in the Azure portal or Entra admin center) provide comprehensive sign-in activity data for analysis and investigation.

Why this answer

Microsoft Entra ID sign-in logs provide a detailed record of all sign-in attempts, including successful and failed logins, IP addresses, applications used, and risk detections. This data can be filtered and analyzed to identify suspicious patterns such as multiple failed attempts or sign-ins from unusual locations over the past 30 days, making it the correct choice for a security administrator.

Exam trap

The trap here is that candidates often confuse the Microsoft 365 admin center (which shows basic sign-in activity under 'Health' > 'Sign-in logs') with the full-featured Microsoft Entra ID sign-in logs, but the admin center only provides a limited view and lacks the detailed filtering, risk analysis, and 30-day retention needed for security investigations.

How to eliminate wrong answers

Option A is wrong because the Microsoft Purview compliance portal focuses on data governance, retention, eDiscovery, and compliance management, not on real-time sign-in logs or authentication patterns. Option B is wrong because the Microsoft 365 admin center is used for managing users, licenses, and service settings, but it does not provide detailed sign-in logs or security analysis of login attempts. Option D is wrong because Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) that provides visibility into cloud app usage and anomalies, but the primary source for raw sign-in logs and authentication events is Microsoft Entra ID sign-in logs.

780
Multi-Selectmedium

Which three factors should a customer consider when estimating the total cost of ownership (TCO) for Microsoft 365 compared to on-premises solutions? (Choose three.)

Select 3 answers
.Subscription licensing fees are typically predictable monthly or annual costs.
.On-premises solutions generally have lower security compliance costs than cloud subscriptions.
.Cloud solutions eliminate the need for hardware procurement and maintenance.
.Migration costs for moving existing data to the cloud are always included in the subscription price.
.IT staff time for patching and updates is reduced with Microsoft 365.
.Microsoft 365 always offers a lower TCO than any on-premises deployment.

Why this answer

Subscription licensing fees for Microsoft 365 are predictable monthly or annual costs, which simplifies budgeting compared to the variable costs of on-premises solutions. Cloud solutions eliminate the need for hardware procurement and maintenance, as Microsoft manages the underlying infrastructure. IT staff time for patching and updates is reduced with Microsoft 365 because Microsoft handles these tasks, freeing up IT resources for other priorities.

Exam trap

Microsoft often tests the misconception that cloud solutions always have a lower TCO or that all migration costs are included, but the correct approach is to evaluate TCO based on specific organizational factors and recognize that Microsoft 365 reduces hardware and maintenance costs while providing predictable licensing.

781
MCQmedium

A development team wants to build a custom web application. They choose a cloud service that provides the runtime environment, operating system, and middleware, but the team is responsible for writing and deploying their own code. The provider automatically applies patches to the underlying infrastructure. Which cloud service model best describes this approach?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Function as a Service (FaaS)
AnswerB

Correct. PaaS provides the platform infrastructure (runtime, OS, middleware) and manages it, allowing the team to focus on code deployment.

Why this answer

Platform as a Service (PaaS) provides the runtime environment, operating system, and middleware, allowing developers to focus on writing and deploying their own code while the cloud provider manages the underlying infrastructure, including automatic patching. This model abstracts the hardware and OS layer, giving the team full control over application code but not the platform stack.

Exam trap

The trap here is that candidates confuse IaaS with PaaS because both involve deploying custom code, but IaaS requires the team to manage the OS and middleware patching, whereas PaaS automates that responsibility.

How to eliminate wrong answers

Option A (IaaS) is wrong because it provides virtualized computing resources (e.g., VMs, storage, networking) where the team is responsible for managing the operating system, middleware, and runtime, including patching, which contradicts the automatic patching described. Option C (SaaS) is wrong because it delivers fully functional software applications over the internet, where the provider manages everything, and the team would not write or deploy their own code. Option D (FaaS) is wrong because it is a serverless compute model where code runs in response to events, and the provider manages the runtime environment, but it does not include middleware or a full runtime environment like a web server; it is a subset of PaaS focused on individual functions.

782
Multi-Selectmedium

Which TWO Microsoft 365 services can be used to create and manage chatbots that use AI to answer user questions?

Select 2 answers
A.Microsoft Copilot Studio
B.Microsoft Forms
C.Microsoft Viva Topics
D.Microsoft Bot Framework
E.Microsoft Power Automate
AnswersA, D

Copilot Studio enables creating AI-powered chatbots without code.

Why this answer

Microsoft Copilot Studio (formerly Power Virtual Agents) is a low-code platform for creating conversational AI chatbots that can answer user questions using natural language processing and generative AI. It integrates with Microsoft 365 and allows you to build, test, and deploy chatbots without extensive coding.

Exam trap

The trap here is that candidates confuse Microsoft Copilot Studio (a low-code chatbot builder) with Microsoft Power Automate (a workflow tool) or Microsoft Viva Topics (a knowledge management service), not realizing that only Copilot Studio and Bot Framework directly create and manage AI-powered conversational chatbots.

783
Multi-Selectmedium

An e-commerce company hosts its website on a public cloud IaaS platform. The site experiences varying traffic throughout the year. The cloud provider automatically adds more virtual servers during peak traffic and removes them when demand drops. The company only pays for the resources used during each period. Which two cloud characteristics are demonstrated? (Choose two.)

Select 2 answers
A.Rapid elasticity
B.Measured service
C.On-demand self-service
D.Resource pooling
AnswersA, B

Correct. The automatic addition and removal of VMs based on traffic demonstrates rapid elasticity.

Why this answer

Rapid elasticity is demonstrated because the cloud provider automatically scales virtual servers up or down in response to varying traffic, which is a key characteristic of cloud computing where resources can be provisioned and released elastically to match demand. Measured service is demonstrated because the company only pays for the resources used during each period, meaning the provider meters resource usage (e.g., CPU hours, memory, bandwidth) and bills accordingly, which is a core attribute of cloud services.

Exam trap

The trap here is that candidates often confuse 'on-demand self-service' with automatic scaling, but on-demand self-service is about manual provisioning without provider interaction, not about the system's ability to scale automatically based on load.

784
MCQmedium

The exhibit shows a mail flow rule in an Exchange Online environment. An administrator notices that emails from a trusted partner domain are being marked with [External]. The partner domain is configured as a domain in Microsoft 365. What should the administrator do to prevent this while maintaining the rule for other external senders?

A.Add an exception to the rule to exclude the partner domain.
B.Disable the rule.
C.Change the rule priority to a lower number.
D.Change the rule mode to 'Test' and review the results.
AnswerA

An exception will exclude that domain from the rule.

Why this answer

The mail flow rule is configured to mark all external senders with [External]. Since the partner domain is already configured as an accepted domain in Microsoft 365, Exchange Online treats it as internal, but the rule still applies because it matches the sender domain pattern. Adding an exception for the partner domain explicitly excludes it from the rule, ensuring emails from that domain are not marked [External] while the rule continues to apply to all other external senders.

Exam trap

The trap here is that candidates assume configuring the partner domain as an accepted domain automatically excludes it from mail flow rules, but rules must be explicitly modified with exceptions to override conditions that match the sender domain.

How to eliminate wrong answers

Option B is wrong because disabling the rule would stop marking all external emails with [External], which is not the desired outcome—the rule should still apply to other external senders. Option C is wrong because changing the rule priority to a lower number (higher priority) would not change the rule's behavior; it would still mark the partner domain's emails as [External] unless an exception is added. Option D is wrong because setting the rule to 'Test' mode would only generate a report without actually applying the action, so emails from the partner domain would still be marked [External] if the rule is enforced, and it does not solve the exclusion requirement.

785
MCQmedium

During requirements gathering, an IT manager says the organization must make document protection persist after a file is downloaded or emailed. Microsoft security, identity, or compliance capability should it use?

A.Microsoft Planner
B.Microsoft Forms
C.Microsoft Stream
D.Sensitivity labels with encryption
AnswerD

Sensitivity labels can apply persistent encryption and access restrictions.

Why this answer

Sensitivity labels can apply persistent encryption and access restrictions.

Exam trap

Candidates might be tempted by other Microsoft 365 services if they don't understand the 'persistent protection' requirement.

786
MCQeasy

A marketing team needs to create a printed newsletter that includes custom graphics, text boxes, and precise layout control. Which Microsoft 365 app is specifically designed for desktop publishing tasks like this?

A.Microsoft Word
B.Microsoft Publisher
C.Microsoft Sway
D.Microsoft PowerPoint
AnswerB

Publisher is a dedicated desktop publishing application that offers fine-grained control over text boxes, graphics, and page layout, making it ideal for printed newsletters.

Why this answer

Microsoft Publisher is the correct answer because it is specifically designed for desktop publishing (DTP) tasks such as creating printed newsletters with custom graphics, text boxes, and precise layout control. Unlike general-purpose word processors or presentation tools, Publisher provides advanced page layout features, including master pages, typography controls, and fine-grained object positioning, making it the appropriate choice for this scenario.

Exam trap

The trap here is that candidates often confuse Microsoft Word's basic layout capabilities (like text boxes and images) with the dedicated desktop publishing features of Publisher, leading them to choose Word for tasks that require precise print layout control.

How to eliminate wrong answers

Option A is wrong because Microsoft Word is a word processing application optimized for document creation and text editing, not for precise desktop publishing layout control, and it lacks dedicated DTP features like advanced text wrapping and object layering. Option C is wrong because Microsoft Sway is a web-based presentation and storytelling app designed for interactive, responsive content, not for print-ready desktop publishing with fixed layouts. Option D is wrong because Microsoft PowerPoint is a presentation application focused on slideshows and screen-based delivery, lacking the print-oriented layout tools and page size flexibility required for a printed newsletter.

787
Multi-Selecteasy

Your organization is planning to use Microsoft Purview to meet compliance requirements. Which TWO capabilities are part of Microsoft Purview? (Choose two.)

Select 2 answers
A.Data Classification
B.Advanced Threat Analytics
C.Data Loss Prevention (DLP)
D.Data Lifecycle Management
E.Insider Risk Management
AnswersC, D

DLP is a key component of Microsoft Purview for preventing data leaks.

Why this answer

Option A and D are correct. Data Loss Prevention (DLP) and Data Lifecycle Management are core Purview capabilities. Advanced Threat Analytics (B) is part of Microsoft Defender.

Insider Risk Management (C) is a Purview capability, but it's not listed as correct because the question asks for two. Data Classification (E) is also part of Purview, but the correct set is A and D. Note: Insider Risk Management is also a Purview capability; however, the question expects DLP and Data Lifecycle Management.

Since exactly two correct, we pick A and D.

788
MCQmedium

A tenant administrator is advising a department that wants to co-author a Word document with colleagues in real time from a browser. Microsoft 365 app or service is the best fit?

A.Microsoft Forms
B.Microsoft Purview Audit
C.Microsoft 365 web apps with OneDrive or SharePoint
D.Microsoft Planner
AnswerC

Microsoft 365 web apps and cloud storage enable real-time co-authoring.

Why this answer

Microsoft 365 web apps (Word, Excel, PowerPoint) combined with OneDrive or SharePoint enable real-time co-authoring from a browser. This allows multiple users to edit the same document simultaneously, with changes synced instantly via the cloud, which directly meets the department's requirement.

Exam trap

The trap here is that candidates may confuse Microsoft Forms or Planner as collaboration tools, but they are designed for data collection and task management, not real-time document co-authoring, which specifically requires web apps with OneDrive or SharePoint.

How to eliminate wrong answers

Option A is wrong because Microsoft Forms is a survey and quiz tool, not a document co-authoring solution; it does not support real-time editing of Word documents. Option B is wrong because Microsoft Purview Audit is a compliance and auditing service for tracking user activities, not a tool for collaborative document editing. Option D is wrong because Microsoft Planner is a task and project management app for organizing work, not a document co-authoring platform.

789
MCQmedium

A legal firm must ensure that all documents containing a specific project code are automatically retained for 7 years after the project ends. After the 7-year period, the documents should be permanently deleted. The firm already uses sensitivity labels to classify documents. Which Microsoft Purview solution should they configure?

A.Microsoft Purview Data Lifecycle Management
B.Microsoft Purview Records Management
C.Microsoft Purview Sensitivity Labels
D.Microsoft Purview Data Loss Prevention
AnswerB

Records Management enables retention labels that can be auto-applied based on sensitive info types. These labels can enforce retention and deletion. It is the correct solution for this scenario.

Why this answer

Microsoft Purview Records Management is the correct solution because it provides the ability to mark documents as records (or regulatory records) and apply retention labels that enforce a specific retention period—in this case, 7 years after the project ends—followed by automatic deletion. Unlike Data Lifecycle Management, Records Management includes disposition review and the ability to trigger deletion based on an event (e.g., project end date), which aligns with the legal firm's requirement for event-based retention and permanent deletion.

Exam trap

The trap here is that candidates often confuse Data Lifecycle Management (which handles general retention policies) with Records Management (which adds record declaration and event-based retention), and they may incorrectly choose Sensitivity Labels because the firm already uses them, not realizing that sensitivity labels alone cannot enforce retention or deletion schedules.

How to eliminate wrong answers

Option A is wrong because Microsoft Purview Data Lifecycle Management (formerly Microsoft 365 Retention) can apply retention and deletion policies, but it does not natively support event-based retention triggered by a custom event (like project end) without additional configuration via PowerShell or third-party tools, and it lacks the record declaration and disposition review capabilities required for legal compliance. Option C is wrong because Sensitivity Labels are designed for classification and protection (encryption, marking) of content based on sensitivity, not for enforcing retention or deletion schedules; they do not provide the event-based retention or automatic deletion after a specific period. Option D is wrong because Microsoft Purview Data Loss Prevention (DLP) is focused on preventing unauthorized sharing or leakage of sensitive data through policies that block or warn users, not on managing retention or deletion of documents after a project ends.

790
Drag & Dropmedium

Drag and drop the steps to configure a data loss prevention (DLP) policy in the Microsoft 365 compliance center into the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order

Why this order

DLP policies are created in the compliance center by selecting a template, locations, and rules.

791
MCQeasy

A non-profit organization, NPO Global, uses Microsoft 365 Nonprofit Business Basic. The organization has 200 users and is growing. They need to: 1. Create a central repository for storing and sharing documents with external partners. 2. Allow multiple users to co-author documents in real time. 3. Provide a secure way for external partners to access only specific folders. 4. Maintain version history for all documents. Which Microsoft 365 app should the organization primarily use?

A.Microsoft SharePoint
B.Microsoft Teams
C.Microsoft Power Apps
D.Microsoft OneDrive
AnswerA

Provides document libraries, co-authoring, version history, and external sharing.

Why this answer

Microsoft SharePoint is the correct primary app because it provides a centralized document repository with granular permission controls, enabling external sharing of specific folders via secure links. It supports real-time co-authoring through Office Online integration and maintains version history for all documents, meeting all four requirements.

Exam trap

The trap here is that candidates often confuse Microsoft Teams as a document management tool because it integrates with SharePoint, but Teams lacks the granular folder-level external sharing and centralized repository focus that SharePoint provides natively.

How to eliminate wrong answers

Option B (Microsoft Teams) is wrong because while Teams includes SharePoint-backed file storage and co-authoring, its primary focus is persistent chat and collaboration channels, not a dedicated central repository with folder-level external sharing; managing external access to specific folders is more complex and less granular than SharePoint. Option C (Microsoft Power Apps) is wrong because it is a low-code application development platform for building custom apps, not a document management or sharing solution; it lacks native document storage, co-authoring, and version history features. Option D (Microsoft OneDrive) is wrong because it is designed for individual file storage and sharing, not as a central repository for an organization; it does not support folder-level external sharing with granular permissions for multiple external partners, and its version history is per-user, not centrally managed for collaboration.

792
Multi-Selecthard

Which THREE Microsoft 365 services are part of Microsoft Viva, the employee experience platform?

Select 3 answers
A.Viva Learning
B.Viva Insights
C.Viva Connections
D.Microsoft Teams
E.Microsoft Stream
AnswersA, B, C

Viva Learning integrates learning resources into the flow of work.

Why this answer

Viva Learning is correct because it is a dedicated Microsoft Viva module that provides a centralized learning hub within Microsoft Teams, allowing employees to access, share, and assign training content from LinkedIn Learning, Microsoft Learn, and third-party sources. It is explicitly part of the Viva employee experience platform, not a standalone service.

Exam trap

The trap here is that candidates confuse the underlying Microsoft 365 services (like Teams or Stream) with the Viva modules that run on top of them, leading them to select Teams as a Viva component instead of recognizing that Viva is a separate employee experience platform with distinct modules.

793
MCQhard

A company runs a legacy application that requires a fixed amount of dedicated hardware resources for compliance reasons. However, they want to benefit from cloud-based backup and disaster recovery to reduce on-premises hardware costs. Which cloud deployment model best aligns with this requirement?

A.Public cloud
B.Private cloud
C.Hybrid cloud
D.Community cloud
AnswerC

Hybrid cloud allows the legacy app to run in a private environment with dedicated resources while using public cloud for backup and DR, reducing on-premises cost.

Why this answer

Hybrid cloud is correct because it allows the company to keep the legacy application on dedicated on-premises hardware for compliance, while leveraging cloud-based backup and disaster recovery services (e.g., Azure Backup and Azure Site Recovery) to reduce on-premises hardware costs. This model combines private cloud (or on-premises infrastructure) with public cloud resources, enabling data replication and failover to the cloud without migrating the application itself.

Exam trap

The trap here is that candidates often confuse 'hybrid cloud' with 'private cloud' because both involve on-premises resources, but the key differentiator is the use of public cloud services for backup/DR to reduce hardware costs, which only hybrid cloud enables.

How to eliminate wrong answers

Option A is wrong because public cloud would require running the legacy application entirely on shared cloud infrastructure, which cannot guarantee the fixed amount of dedicated hardware resources needed for compliance. Option B is wrong because private cloud, while providing dedicated resources, does not inherently reduce on-premises hardware costs as it still requires maintaining all hardware on-site or in a dedicated data center. Option D is wrong because community cloud is designed for organizations with shared compliance concerns (e.g., government or healthcare), but it does not specifically address the need for dedicated hardware for a single company's legacy application while also reducing on-premises costs via cloud backup.

794
MCQmedium

A company has 500 users and is considering moving to Microsoft 365. They need to ensure that all users have access to Exchange Online, SharePoint Online, and Teams, and they want to use Microsoft Entra ID P1 for identity management. Which Microsoft 365 subscription should they choose?

A.Microsoft 365 E5
B.Microsoft 365 E3
C.Microsoft 365 Business Basic
D.Microsoft 365 Business Premium
AnswerD

Includes Exchange Online, SharePoint Online, Teams, and Entra ID P1, designed for businesses up to 300 users but scalable with additional licenses.

Why this answer

Microsoft 365 Business Premium includes Exchange Online, SharePoint Online, Teams, and Microsoft Entra ID P1, meeting all stated requirements for 500 users. It is designed for organizations with up to 300 users, but since the question does not specify a user limit constraint, it is the correct choice among the options for the required services and identity tier.

Exam trap

The trap here is that candidates often assume Enterprise plans (E3 or E5) are always required for Entra ID P1, overlooking that Business Premium includes it natively, and they may also forget the 300-user limit on Business plans, though the question does not explicitly test that constraint.

How to eliminate wrong answers

Option A is wrong because Microsoft 365 E5 includes advanced security and compliance features (e.g., Microsoft Defender for Office 365, eDiscovery) that are not required, and it is more expensive than necessary. Option B is wrong because Microsoft 365 E3 includes Exchange Online, SharePoint Online, and Teams, but it only provides Microsoft Entra ID P1 as an add-on or through a separate license; it is not included by default in the E3 subscription. Option C is wrong because Microsoft 365 Business Basic includes Exchange Online, SharePoint Online, and Teams, but it does not include Microsoft Entra ID P1; it only provides Microsoft Entra ID Free, which lacks advanced identity management features.

795
MCQmedium

A department asks for the Microsoft 365 service best suited for custom low-code business apps. Which service should they use? The design must avoid adding custom operational scripts.

A.Microsoft Defender for Endpoint
B.Microsoft Entra Privileged Identity Management
C.Microsoft Purview Compliance Manager
D.Power Apps
AnswerD

Power Apps is used to build low-code apps connected to business data.

Why this answer

Power Apps is the correct choice because it is a low-code application development platform within Microsoft 365 that enables users to build custom business apps without writing traditional code. It provides pre-built templates, connectors to Microsoft and third-party services, and a visual drag-and-drop designer, allowing departments to create tailored solutions without custom operational scripts.

Exam trap

The trap here is that candidates may confuse security or compliance tools (like Defender, PIM, or Compliance Manager) with app development platforms, failing to recognize that Power Apps is the designated low-code solution in the Microsoft 365 ecosystem.

How to eliminate wrong answers

Option A is wrong because Microsoft Defender for Endpoint is a security solution for endpoint protection, threat detection, and response, not a platform for building custom low-code business apps. Option B is wrong because Microsoft Entra Privileged Identity Management is an identity governance tool for managing, controlling, and monitoring privileged access within Azure AD, not for app development. Option C is wrong because Microsoft Purview Compliance Manager is a compliance management solution that helps organizations assess and manage regulatory compliance, not a low-code app development service.

796
MCQhard

A global company needs to ensure that only employees in the 'HR' security group can access a specific set of HR documents stored in SharePoint. If a user outside the group attempts to view or copy the content, it must be blocked. The protection must persist even if someone downloads the files and shares them externally, or if the files are saved to a personal device. Which Microsoft Purview solution should be used?

A.Data Loss Prevention (DLP) policy
B.Sensitivity labels with encryption and permission settings
C.Microsoft Entra ID Conditional Access
D.Microsoft Defender for Cloud Apps session policy
AnswerB

Encryption via sensitivity labels protects the file regardless of where it is stored, and permissions ensure only the 'HR' group can access it.

Why this answer

Sensitivity labels with encryption and permission settings are the correct solution because they allow you to apply persistent protection that travels with the file, regardless of where it is stored or shared. By configuring a sensitivity label to restrict access to only members of the 'HR' security group and enabling encryption, the protection remains intact even if the file is downloaded, saved to a personal device, or shared externally. This meets the requirement for persistent access control that blocks unauthorized viewing or copying.

Exam trap

The trap here is that candidates often confuse DLP policies (which only monitor and block sharing at the transport layer) with sensitivity labels (which provide persistent encryption and access control that stays with the file), leading them to choose DLP when the question explicitly requires protection that persists after download or external sharing.

How to eliminate wrong answers

Option A is wrong because Data Loss Prevention (DLP) policies are designed to detect and prevent accidental sharing of sensitive information based on content inspection, but they do not apply persistent encryption or access control that travels with the file after it is downloaded or saved to a personal device. Option C is wrong because Microsoft Entra ID Conditional Access controls access at the authentication and session level for cloud apps, but it does not provide persistent protection that remains with the file once it is downloaded or shared outside the controlled environment. Option D is wrong because Microsoft Defender for Cloud Apps session policies can monitor and control access in real-time within the browser session, but they cannot enforce persistent encryption or access restrictions on files that have been downloaded or saved locally.

797
MCQmedium

During requirements gathering, an IT manager says the organization must track assets using columns such as owner, status, purchase date, and location. Microsoft 365 app or service is the best fit?

A.Microsoft Forms
B.Microsoft Planner
C.Microsoft Lists
D.Microsoft Purview Audit
AnswerC

Lists tracks structured information with columns, views, and rules.

Why this answer

Microsoft Lists is the best fit because it provides a structured, customizable data-tracking solution with columns for metadata like owner, status, purchase date, and location. Unlike simple task or form tools, Lists supports rich column types (e.g., choice, date, person), views, and integration with SharePoint, making it ideal for asset tracking.

Exam trap

The trap here is that candidates confuse Microsoft Planner (a task board) with a data tracking tool, overlooking that Lists is the correct choice for structured column-based asset management.

How to eliminate wrong answers

Option A is wrong because Microsoft Forms is designed for creating surveys and quizzes, not for tracking assets with structured columns and ongoing data management. Option B is wrong because Microsoft Planner is a task management tool for organizing work with buckets and checklists, not a data repository for asset metadata like purchase date and location. Option D is wrong because Microsoft Purview Audit is a compliance and auditing solution for tracking user and admin activities in Microsoft 365, not for creating and managing asset tracking lists.

798
MCQeasy

A user wants to quickly set up a website for their team to share news and resources. Which Microsoft 365 app should they use?

A.Microsoft Teams
B.Microsoft Viva
C.Yammer
D.SharePoint
AnswerD

SharePoint communication sites are ideal for team news and resources.

Why this answer

SharePoint is the correct choice because it is specifically designed for creating team sites that serve as centralized hubs for sharing news, documents, and resources. With SharePoint, users can quickly provision a modern team site using pre-built templates, add web parts for news feeds and document libraries, and manage permissions for team members. This directly meets the requirement for a website to share news and resources.

Exam trap

The trap here is that candidates often confuse Microsoft Teams with a website creation tool because Teams includes tabs for SharePoint pages and files, but Teams itself is not a website platform—SharePoint is the underlying service for site creation and content management.

How to eliminate wrong answers

Option A is wrong because Microsoft Teams is a chat-based collaboration workspace, not a website creation tool; while it integrates with SharePoint for file storage, it does not provide a standalone website for sharing news and resources. Option B is wrong because Microsoft Viva is an employee experience platform that focuses on insights, learning, and wellbeing, not on creating team websites or resource hubs. Option C is wrong because Yammer is an enterprise social networking tool for broad organizational communication, not a site for a specific team to share news and resources in a structured website format.

799
MCQmedium

Refer to the exhibit. A Teams administrator runs the PowerShell commands to enable meeting transcription and recording for all users. After running the commands, users still cannot start transcription in their meetings. What is the most likely cause?

A.Users may have a custom meeting policy that overrides the global policy.
B.The admin does not have the correct permissions.
C.The admin forgot to run a Grant-CsTeamsMeetingPolicy command.
D.The AllowTranscription property is misnamed.
AnswerA

If users have a custom policy, modifying the global policy does not affect them.

Why this answer

Option A is correct because in Microsoft Teams, meeting policies are applied hierarchically: a custom policy assigned directly to a user overrides the global policy. Even if the global policy has transcription enabled, users with a custom meeting policy that has AllowTranscription set to False will not be able to start transcription. The admin must either modify the custom policy or assign the global policy to those users.

Exam trap

The trap here is that candidates assume modifying the global policy affects all users, forgetting that a user-assigned custom policy takes precedence and must be explicitly updated or removed.

How to eliminate wrong answers

Option B is wrong because the admin successfully ran the PowerShell commands, which indicates they have the necessary permissions (e.g., Teams Administrator or Global Administrator role) to modify meeting policies. Option C is wrong because the Grant-CsTeamsMeetingPolicy cmdlet is used to assign a specific policy to a user; if the admin intended to modify the global policy, no Grant command is needed—the Set-CsTeamsMeetingPolicy cmdlet directly updates the global policy. Option D is wrong because the AllowTranscription property is correctly named; it is a valid parameter in the Set-CsTeamsMeetingPolicy cmdlet, and any typo would have caused an error when running the command.

800
MCQmedium

During requirements gathering, an IT manager says the organization must keep services available during a hardware failure. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Data Loss Prevention (DLP)
C.High availability
D.Sensitivity labels
AnswerC

High availability focuses on keeping services accessible despite component failure.

Why this answer

High availability (C) is the correct cloud concept because it directly addresses the requirement to keep services operational during hardware failure. In Microsoft 365, high availability is achieved through redundant infrastructure, such as multiple server instances across different Azure availability zones, and automatic failover mechanisms that ensure service continuity without manual intervention.

Exam trap

The trap here is that candidates may confuse high availability with disaster recovery, but the question specifically asks about keeping services available during a hardware failure, which is the definition of high availability, not the broader recovery from a major outage.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management application within Microsoft 365, not a cloud concept or benefit related to service availability during hardware failure. Option B is wrong because Data Loss Prevention (DLP) is a security feature that helps prevent sensitive information from being shared or leaked, focusing on data protection rather than infrastructure resilience. Option D is wrong because Sensitivity labels are classification and protection tools for data governance, used to apply encryption and access restrictions, not to maintain service uptime during hardware failures.

801
MCQmedium

Refer to the exhibit. A Microsoft 365 admin configures an update policy for Microsoft 365 Apps for enterprise. The channel is set to 'CurrentChannel'. What is the expected behavior for users?

A.Users receive feature updates monthly.
B.Users receive feature updates twice a year.
C.Users receive feature updates as soon as they are released.
D.Users receive updates only after the deadline.
AnswerC

CurrentChannel provides the latest features immediately.

Why this answer

Option C is correct because CurrentChannel receives new features as soon as they are released. Option A is wrong because Semi-Annual Channel provides twice-yearly updates. Option B is wrong because Monthly Channel is a different channel.

Option D is wrong because the update deadline is a deadline, not immediate.

802
MCQmedium

A tenant administrator is advising a department that wants to automatically apply a label when sensitive customer identifiers are detected. Microsoft security, identity, or compliance capability should it use?

A.Microsoft Planner
B.Auto-labeling for sensitivity labels
C.Microsoft Forms
D.Microsoft Stream
AnswerB

Auto-labeling can apply sensitivity labels based on configured conditions.

Why this answer

Auto-labeling can apply sensitivity labels based on configured conditions.

803
MCQmedium

A compliance officer needs to automatically detect when employees share customers' personal data (e.g., social security numbers) via email and block such sharing. Which Microsoft Purview solution should they configure?

A.Microsoft Purview Data Loss Prevention (DLP)
B.Microsoft Purview Insider Risk Management
C.Microsoft Purview Communication Compliance
D.Microsoft Purview Audit
AnswerA

DLP policies scan emails for sensitive data and can automatically block the message from being sent, with notifications to the user and administrator.

Why this answer

Microsoft Purview Data Loss Prevention (DLP) is the correct solution because it is specifically designed to identify, monitor, and automatically protect sensitive data—such as social security numbers—across Microsoft 365 services, including Exchange Online. DLP policies can be configured with conditions that detect sensitive information types (e.g., U.S. Social Security Number) in email messages and apply actions like blocking the email from being sent.

This directly meets the compliance officer's requirement to automatically detect and block sharing of customers' personal data via email.

Exam trap

The trap here is that candidates often confuse Communication Compliance (which reviews communications for policy violations) with DLP (which actively blocks sensitive data), leading them to select option C because they think 'compliance' implies blocking, but Communication Compliance only detects and flags, not blocks.

How to eliminate wrong answers

Option B is wrong because Microsoft Purview Insider Risk Management focuses on identifying, analyzing, and remediating internal risks (e.g., data theft, policy violations) by correlating signals from various sources, but it does not provide real-time blocking of sensitive data in email. Option C is wrong because Microsoft Purview Communication Compliance is designed to detect and review inappropriate or policy-violating communications (e.g., harassment, insider trading) but does not have the capability to automatically block data sharing based on sensitive content like social security numbers. Option D is wrong because Microsoft Purview Audit provides logging and investigation of user and admin activities, but it is a passive auditing tool that cannot automatically detect or block data sharing in real time.

804
MCQmedium

A compliance administrator needs to block sharing of documents containing credit card numbers. Which Microsoft 365 capability is the best fit?

A.Data Loss Prevention policies
B.Microsoft Teams live events
C.Microsoft Bookings
D.OneDrive sync client
AnswerA

DLP detects sensitive information types and can restrict sharing across Microsoft 365 locations.

Why this answer

Data Loss Prevention (DLP) policies in Microsoft 365 are specifically designed to identify, monitor, and automatically protect sensitive information—such as credit card numbers—across Exchange Online, SharePoint, OneDrive, and Teams. By configuring a DLP policy with a built-in sensitive info type for credit card numbers, the administrator can block users from sharing documents containing that data, either by preventing the action or triggering a notification. This directly addresses the compliance requirement to block sharing of documents with credit card numbers.

Exam trap

The trap here is that candidates may confuse the OneDrive sync client with the OneDrive cloud service, thinking the sync client can enforce DLP policies locally, when in fact DLP policies are applied at the cloud service layer and the sync client simply replicates cloud-side restrictions.

How to eliminate wrong answers

Option B is wrong because Microsoft Teams live events is a broadcast and meeting feature for streaming video to large audiences; it has no capability to scan or block documents based on sensitive content like credit card numbers. Option C is wrong because Microsoft Bookings is a scheduling and appointment management tool; it does not include any data classification or policy enforcement to block sharing of sensitive information. Option D is wrong because the OneDrive sync client is a desktop application that synchronizes files between a local device and OneDrive; it does not natively enforce DLP policies or block sharing of documents containing credit card numbers—DLP policies are enforced at the cloud service level, not by the sync client.

805
MCQmedium

A department asks for the Microsoft 365 service best suited for custom low-code business apps. Which service should they use?

A.Microsoft Defender for Endpoint
B.Microsoft Entra Privileged Identity Management
C.Microsoft Purview Compliance Manager
D.Power Apps
AnswerD

Power Apps is used to build low-code apps connected to business data.

Why this answer

Power Apps is the correct choice because it is a low-code application development platform within Microsoft 365 that enables users to build custom business apps without extensive coding. It provides pre-built templates, connectors to Microsoft and third-party services, and a drag-and-drop interface, making it ideal for department-level custom app needs.

Exam trap

The trap here is that candidates may confuse security or compliance services (like Defender, PIM, or Compliance Manager) with development tools, failing to recognize that Power Apps is the dedicated low-code platform for custom business applications.

How to eliminate wrong answers

Option A is wrong because Microsoft Defender for Endpoint is a security solution for endpoint protection, threat detection, and response, not a low-code app development tool. Option B is wrong because Microsoft Entra Privileged Identity Management is an identity governance service for managing, controlling, and monitoring privileged access within Azure AD, not for building custom apps. Option C is wrong because Microsoft Purview Compliance Manager is a compliance management solution that helps organizations assess and manage regulatory compliance risks, not a low-code app builder.

806
MCQmedium

A compliance-aware administrator is selecting the right Microsoft 365 capability to create dashboards showing sales and operational trends from multiple data sources. Microsoft 365 app or service is the best fit?

A.Power BI
B.Microsoft Purview Audit
C.Microsoft Planner
D.Microsoft Forms
AnswerA

Power BI is used for analytics, visualizations, reports, and dashboards.

Why this answer

Power BI is the correct choice because it is a business analytics service that enables users to create interactive dashboards and reports by connecting to multiple data sources, including Excel, SQL databases, and cloud services. It provides built-in data transformation, visualization, and sharing capabilities, making it ideal for aggregating sales and operational trends into a single dashboard.

Exam trap

The trap here is that candidates may confuse Microsoft Purview Audit with Power BI due to both involving data, but Purview is strictly for compliance logging and not for analytical dashboard creation.

How to eliminate wrong answers

Option B is wrong because Microsoft Purview Audit is a compliance and auditing solution that logs user and admin activities across Microsoft 365, not a tool for creating dashboards or analyzing trends from multiple data sources. Option C is wrong because Microsoft Planner is a task management and collaboration tool for organizing work with boards and checklists, lacking data integration and visualization features for dashboards. Option D is wrong because Microsoft Forms is a survey and form creation tool for collecting responses, not designed for aggregating data from multiple sources or building analytical dashboards.

807
MCQmedium

A compliance-aware administrator is selecting the right Microsoft 365 capability to require MFA only for sign-ins from outside trusted locations. Microsoft security, identity, or compliance capability should it use?

A.Conditional Access
B.Microsoft Stream
C.Microsoft Planner
D.Microsoft Forms
AnswerA

Conditional Access evaluates signals such as location and enforces controls such as MFA.

Why this answer

Conditional Access is the correct Microsoft 365 capability because it allows administrators to create policies that enforce MFA based on specific conditions, such as sign-in location. By configuring a Conditional Access policy with a 'location' condition that includes trusted IP ranges (defined via named locations), you can require MFA only when users sign in from outside those trusted locations. This directly addresses the requirement for location-aware MFA enforcement without affecting sign-ins from trusted networks.

Exam trap

Microsoft often tests the misconception that any Microsoft 365 workload can enforce MFA, but only Conditional Access (an Azure AD feature) provides the granular, location-based policy control needed for this scenario.

How to eliminate wrong answers

Option B (Microsoft Stream) is wrong because it is a video management and sharing service, not a security or identity capability; it cannot enforce MFA or evaluate sign-in locations. Option C (Microsoft Planner) is wrong because it is a task management and planning tool within Microsoft 365, lacking any identity or access control features to require MFA based on location. Option D (Microsoft Forms) is wrong because it is a survey and data collection tool; it has no mechanism to enforce authentication policies or evaluate sign-in locations.

808
Multi-Selectmedium

Which three of the following are Microsoft 365 apps and services that are primarily designed for productivity and collaboration? (Choose three.)

Select 3 answers
.Microsoft Teams
.Microsoft Exchange Online
.Microsoft SharePoint Online
.Microsoft Intune
.Microsoft Azure Active Directory
.Microsoft Defender for Office 365

Why this answer

Microsoft Teams, Exchange Online, and SharePoint Online are core Microsoft 365 workloads designed to enhance productivity and collaboration. Teams provides a unified communication platform with chat, meetings, and file sharing; Exchange Online delivers enterprise-grade email and calendaring; SharePoint Online enables document management, intranet portals, and team sites for collaborative content creation.

Exam trap

The trap here is that candidates often confuse security or identity services (like Intune, Azure AD, or Defender) with productivity tools, because they are part of the Microsoft 365 ecosystem, but the question specifically asks for apps and services 'primarily designed for productivity and collaboration.'

809
MCQmedium

A marketing manager wants to create a central repository for project documents, announcements, and a shared calendar. The solution must be accessible from Microsoft Teams and allow team members to co-author documents in real time. Which Microsoft 365 service should be used?

A.SharePoint Online (team site)
B.Microsoft Lists
C.Power Automate
D.Microsoft Planner
AnswerA

Correct. SharePoint team sites offer document libraries, calendars, announcements, and co-authoring, and can be added as a tab in Teams.

Why this answer

SharePoint Online team sites provide a centralized document library, announcements, and shared calendar that can be integrated directly into Microsoft Teams via the SharePoint tab. Team members can co-author documents in real time using Office Online integration, which supports simultaneous editing with auto-save. This makes SharePoint the correct choice for a central repository with real-time collaboration accessible from Teams.

Exam trap

The trap here is that candidates often confuse Microsoft Planner (task management) or Microsoft Lists (data tracking) with a full document and calendar repository, overlooking that SharePoint Online is the underlying service that provides the document library, calendar, and announcements that can be surfaced in Teams.

How to eliminate wrong answers

Option B (Microsoft Lists) is wrong because it is a data-tracking application for creating lists and tables, not a document repository or calendar; it lacks native real-time co-authoring for documents. Option C (Power Automate) is wrong because it is a workflow automation tool that orchestrates actions across services, not a storage or collaboration platform for documents and calendars. Option D (Microsoft Planner) is wrong because it is a task management and planning tool focused on Kanban boards and assignments, not a document repository or shared calendar with real-time co-authoring.

810
MCQeasy

A company uses a cloud provider that charges them based solely on the exact number of gigabytes of storage used and the number of virtual machine hours consumed. They can increase or decrease usage at any time without any upfront commitment. Which essential characteristic of cloud computing does this billing model demonstrate?

A.Measured service
B.Rapid elasticity
C.Resource pooling
D.On-demand self-service
AnswerA

Measured service means cloud resources are metered and billed based on consumption, like storage and compute hours.

Why this answer

The billing model charges based on exact gigabytes of storage used and virtual machine hours consumed, which directly aligns with the 'measured service' characteristic of cloud computing. Measured service means cloud providers meter and bill customers precisely for the resources they consume, often using a pay-as-you-go model. This allows the company to pay only for what they use without upfront commitments, as described in the scenario.

Exam trap

The trap here is that candidates often confuse 'measured service' with 'on-demand self-service' because both involve user control and flexibility, but measured service specifically focuses on the metering and billing aspect, not the ability to provision resources without human interaction.

How to eliminate wrong answers

Option B (Rapid elasticity) is wrong because rapid elasticity refers to the ability to automatically scale resources up or down quickly in response to demand, not to the billing or metering of those resources. Option C (Resource pooling) is wrong because resource pooling describes how the provider's computing resources are pooled to serve multiple customers using a multi-tenant model, with physical and virtual resources dynamically assigned and reassigned according to consumer demand; it does not directly relate to billing granularity. Option D (On-demand self-service) is wrong because on-demand self-service allows a consumer to provision computing capabilities automatically without requiring human interaction with each service provider; while the scenario mentions the ability to increase or decrease usage at any time, the key billing aspect of 'pay per exact usage' is specifically measured service, not the provisioning mechanism.

811
MCQmedium

Your organization is required to retain all communications related to a legal case for 5 years. Emails and Teams messages must be preserved immutably. Which Microsoft 365 feature should you use?

A.Litigation Hold
B.Data Loss Prevention (DLP) policies
C.Retention policies and tags
D.eDiscovery (Standard)
AnswerA

Litigation Hold preserves mailbox items immutably until removed.

Why this answer

Litigation Hold preserves all mailbox content immutably. Option A is correct. Option B (Retention tags) can delete or archive but not preserve immutably.

Option C (DLP) is for prevention. Option D (eDiscovery) is for search, not preservation.

812
MCQmedium

A company has 500 users with Microsoft 365 E3 licenses. They need to add Communication Compliance and Insider Risk Management for all users. They want to minimize additional costs while retaining their existing E3 subscriptions. What is the most cost-effective licensing approach?

A.Upgrade all users to Microsoft 365 E5
B.Purchase the Microsoft 365 E5 Compliance add-on for all users
C.Purchase the Microsoft 365 E5 eDiscovery and Audit add-on
D.Replace E3 with Microsoft 365 Business Premium
AnswerB

The E5 Compliance add-on is designed for E3 subscribers to gain exactly the compliance capabilities mentioned, including Communication Compliance and Insider Risk Management.

Why this answer

Microsoft 365 E5 Compliance is an add-on license for E3 that provides Communication Compliance, Insider Risk Management, and other advanced compliance features. Upgrading all users to E5 is more expensive if the advanced security features of E5 are not needed. The E5 eDiscovery and Audit add-on does not include Communication Compliance or Insider Risk Management.

Business Premium plans are not compatible with enterprise E3 subscriptions and lack these features.

813
MCQmedium

Wide World Importers is a retail company with 2,000 users. They use Microsoft 365 E3. They need to: (1) Deploy a new employee experience platform that integrates with Microsoft 365 and provides personalized news, tasks, and learning; (2) Enable employees to create low-code apps to automate approvals and workflows without custom development; (3) Provide a secure way for employees to store and share company files with granular permissions; (4) Allow IT to manage mobile devices and applications centrally. Which Microsoft 365 services should they use?

A.Viva Connections, Power Apps and Power Automate, SharePoint Online, Microsoft Intune
B.Viva Insights, Power Apps and Power Automate, SharePoint Online, Microsoft 365 Defender
C.Microsoft Teams, Power Apps and Power Automate, OneDrive, Microsoft Entra ID
D.Viva Connections, Power BI, OneDrive, Microsoft Intune
AnswerA

Correct: Viva Connections for employee experience, Power Apps/Automate for low-code apps, SharePoint for file storage, Intune for mobile management.

Why this answer

Microsoft Viva Connections provides the employee experience platform with personalized news and tasks. Power Apps and Power Automate allow low-code app creation for approvals. SharePoint Online provides secure file storage with granular permissions.

Microsoft Intune provides mobile device and app management. Microsoft Teams is a collaboration platform but not the employee experience platform.

814
MCQmedium

A user in your organization receives an email from an unknown sender with a link to a fake login page. The user reports it. You need to analyze the threat and check if other users received similar emails. Which Microsoft 365 Defender feature should you use?

A.Threat analytics
B.Threat Explorer (Explorer)
C.Attack simulation training
D.Automated investigation and response (AIR)
AnswerB

Correct. Threat Explorer allows detailed investigation of email threats.

Why this answer

Threat Explorer (Explorer) is the correct tool because it provides a real-time, interactive view of email threats, allowing you to search for and analyze specific messages (like the phishing link) across all users. You can use filters such as sender, recipient, or URL to determine if other users received the same malicious email, enabling rapid threat hunting and response.

Exam trap

The trap here is that candidates confuse Threat Explorer (a manual hunting and analysis tool) with Automated investigation and response (AIR), which is an automated reaction system, leading them to pick D because they think 'investigation' implies manual analysis, but AIR is fully automated and not designed for ad-hoc email searches.

How to eliminate wrong answers

Option A is wrong because Threat analytics is a feature that provides intelligence about active threats, vulnerabilities, and attack campaigns, but it does not allow you to search for specific emails or check if other users received a particular message. Option C is wrong because Attack simulation training is used to create and run simulated phishing attacks for user training and awareness, not for analyzing real threats or checking email delivery. Option D is wrong because Automated investigation and response (AIR) automatically triggers investigations and remediation actions after a threat is detected, but it is not the tool you use to manually search and analyze whether other users received a similar email.

815
MCQhard

You are the security administrator for Contoso, a global consulting firm with 10,000 employees. Contoso uses Microsoft 365 E5 and Microsoft Entra ID P2. The company has a strict policy that all sensitive client data must be encrypted at rest and in transit. Additionally, the legal team requires that any document labeled as 'Highly Confidential' must be automatically encrypted and cannot be printed or forwarded. You have created a sensitivity label called 'Highly Confidential' with encryption and a protection setting that restricts actions like printing. However, you notice that users are still able to print documents that have the label applied. After investigation, you find that the label is correctly configured but users are manually applying the label. What should you do to ensure the label is consistently applied and printing is blocked?

A.Create a Data Loss Prevention (DLP) policy that blocks printing of documents with the 'Highly Confidential' label.
B.Configure a Conditional Access policy that blocks printing for users accessing documents from unmanaged devices.
C.Modify the sensitivity label's encryption settings to require user authentication before printing.
D.Create an auto-labeling policy that automatically applies the 'Highly Confidential' label to documents that contain certain sensitive information types, and ensure the label's protection settings block printing.
AnswerD

Auto-labeling ensures consistent application, and protection blocks printing.

Why this answer

Option C is correct because auto-labeling policies can automatically apply the sensitivity label based on conditions, ensuring consistent application. Additionally, the label's protection settings should block printing. Option A is incorrect because creating a DLP policy that blocks printing may not respect the sensitivity label's settings.

Option B is incorrect because the label already has protection settings, but the issue is manual application. Option D is incorrect because Conditional Access does not control document actions like printing.

816
MCQhard

A multinational organization with 5,000 users currently has Microsoft 365 E3 licenses. They need to meet a regulatory requirement that all user activity logs must be retained for 7 years. They also require the ability to place litigation holds on all mailboxes. Which licensing approach meets the compliance requirements at the lowest additional cost?

A.Upgrade all users to Microsoft 365 E5
B.Add Microsoft 365 E5 Compliance add-on for all users
C.Add Microsoft 365 E5 eDiscovery and Audit add-on for all users
D.Add Microsoft 365 Communications Compliance add-on for all users
AnswerB

This add-on provides advanced audit log retention (up to 10 years) and eDiscovery capabilities, including litigation hold, at a lower cost than upgrading to E5.

Why this answer

Option B is correct because the Microsoft 365 E5 Compliance add-on provides the required 7-year audit log retention (via Unified Audit Log retention policies) and litigation hold capabilities for mailboxes, without upgrading the entire license to E5. This add-on is the most cost-effective way to meet these specific compliance needs for all 5,000 users while retaining their existing E3 base licenses.

Exam trap

The trap here is that candidates often confuse the E5 Compliance add-on with a full E5 upgrade or with specific add-ons like eDiscovery or Communications Compliance, not realizing that the E5 Compliance add-on is the precise, lower-cost bundle that includes both audit log retention and litigation hold.

How to eliminate wrong answers

Option A is wrong because upgrading all users to Microsoft 365 E5 would provide the same compliance features but at a significantly higher per-user cost, as E5 includes many additional services (e.g., advanced analytics, security) not required here. Option C is wrong because there is no standalone 'Microsoft 365 E5 eDiscovery and Audit add-on'; the correct add-on for audit log retention and litigation hold is the E5 Compliance add-on, which bundles these features. Option D is wrong because the Communications Compliance add-on is specifically designed for monitoring and managing internal and external communications (e.g., for regulatory surveillance), not for audit log retention or litigation hold capabilities.

817
MCQeasy

A sales team needs a centralized repository for customer proposals that multiple team members can edit simultaneously and that maintains version history. Which Microsoft 365 service should they use?

A.OneDrive for Business
B.SharePoint Online
C.Microsoft Teams
D.Exchange Online
AnswerB

SharePoint Online provides document libraries that enable multiple users to co-author documents simultaneously and offers detailed version history, making it the correct choice for a collaborative team repository.

Why this answer

SharePoint Online is the correct choice because it provides a centralized document library where multiple users can co-author documents simultaneously, with built-in version history to track changes over time. This aligns directly with the requirement for a shared repository with real-time collaboration and versioning, which OneDrive for Business lacks for team-wide access.

Exam trap

The trap here is that candidates often confuse Microsoft Teams as the file storage solution, but Teams relies on SharePoint Online for its Files tab, so the underlying service providing version history and simultaneous editing is SharePoint Online, not Teams itself.

How to eliminate wrong answers

Option A is wrong because OneDrive for Business is designed for personal storage and sharing with individuals, not as a centralized team repository; it does not support simultaneous editing by multiple team members in a shared workspace. Option C is wrong because Microsoft Teams is a collaboration platform that uses SharePoint Online for file storage; Teams itself does not provide the document library or version history features required. Option D is wrong because Exchange Online is an email and calendaring service, not a document management or collaboration tool, and cannot store or version customer proposals.

818
Drag & Dropmedium

Drag and drop the steps to enable Microsoft 365 audit logging in the compliance center into the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order

Why this order

Audit logging is enabled in the compliance center under Audit.

819
MCQeasy

A user receives a suspicious email with a link. They report it using the built-in Microsoft 365 reporting tool. Which service will analyze the reported message?

A.Microsoft Defender for Office 365
B.Microsoft Sentinel
C.Microsoft Purview
D.Microsoft Defender XDR
AnswerA

Defender for Office 365 analyzes reported phishing and malware in email.

Why this answer

Microsoft Defender for Office 365 (MDO) includes the built-in reporting tool that allows users to report suspicious emails directly from Outlook. When a user submits a message via this tool, it is automatically routed to the Microsoft 365 Defender portal's Submissions page, where it is analyzed by MDO's threat protection engines, including detonation in the sandbox environment for URLs and attachments. This analysis determines whether the message is malicious, spam, or a false positive, and updates the tenant's filtering policies accordingly.

Exam trap

The trap here is that candidates confuse Microsoft Defender for Office 365 (which handles email-specific threat analysis and user submissions) with Microsoft Defender XDR (which is the broader correlation engine that ingests alerts from Defender for Office 365 and other sources, but does not itself perform the initial analysis of user-reported messages).

How to eliminate wrong answers

Option B (Microsoft Sentinel) is wrong because Sentinel is a cloud-native SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) solution that ingests logs and alerts from multiple sources for enterprise-wide threat detection, not a tool for analyzing user-reported emails from the built-in reporting tool. Option C (Microsoft Purview) is wrong because Purview focuses on data governance, compliance, and information protection (e.g., data loss prevention, records management, eDiscovery), not on email threat analysis or sandboxing. Option D (Microsoft Defender XDR) is wrong because Defender XDR is a cross-domain extended detection and response solution that correlates alerts across endpoints, identities, email, and cloud apps, but the actual analysis of user-reported messages is performed by Defender for Office 365's specific threat engines, not by the XDR correlation layer.

820
MCQeasy

A project team needs a centralized location to store, share, and co-author documents while maintaining version history. Which Microsoft 365 service should they use?

A.SharePoint Online
B.OneDrive for Business
C.Microsoft Teams
D.Microsoft Viva Topics
AnswerA

SharePoint provides team sites with document libraries, version history, and co-authoring.

Why this answer

SharePoint Online is the correct choice because it is designed as a centralized document management and storage platform that supports co-authoring, version history, and granular permission controls. Unlike personal storage services, SharePoint Online provides team-oriented libraries where multiple users can simultaneously edit documents while automatically tracking changes through versioning. This aligns directly with the requirement for a shared, collaborative repository with version history.

Exam trap

The trap here is that candidates often confuse OneDrive for Business with SharePoint Online, assuming both are equivalent for team collaboration, but OneDrive for Business is designed for individual use and lacks the centralized team site structure and advanced permission management that SharePoint Online provides.

How to eliminate wrong answers

Option B (OneDrive for Business) is wrong because it is primarily a personal cloud storage service for an individual user's files, not a centralized team repository; while it supports co-authoring and version history, it lacks the team-level sharing and management features required for a project team. Option C (Microsoft Teams) is wrong because it is a collaboration hub that integrates chat, meetings, and apps, but its file storage relies on underlying SharePoint Online or OneDrive for Business; Teams itself is not a dedicated document storage service. Option D (Microsoft Viva Topics) is wrong because it is a knowledge discovery and AI-powered topic experience service that surfaces information from across Microsoft 365, not a document storage or co-authoring platform.

821
MCQeasy

A department asks for the Microsoft 365 service best suited for workflow approvals between Microsoft 365 and Dynamics 365. Which service should they use?

A.Microsoft Entra Privileged Identity Management
B.Microsoft Defender for Endpoint
C.Power Automate
D.Microsoft Purview Compliance Manager
AnswerC

Power Automate creates cloud flows and business-process automation.

Why this answer

Power Automate (Option C) is the correct service because it provides a low-code, workflow automation platform that integrates directly with both Microsoft 365 (e.g., SharePoint, Teams) and Dynamics 365. It enables users to create automated approval workflows using prebuilt templates and connectors, making it the ideal choice for cross-service approval processes.

Exam trap

The trap here is that candidates may confuse Microsoft Purview Compliance Manager (a compliance tool) with workflow automation, or think that Privileged Identity Management can handle approvals, but PIM only manages role activation approvals, not general business workflow approvals between Microsoft 365 and Dynamics 365.

How to eliminate wrong answers

Option A is wrong because Microsoft Entra Privileged Identity Management (PIM) is an identity governance tool for managing, controlling, and monitoring privileged role assignments in Azure AD, not for building workflow approvals between Microsoft 365 and Dynamics 365. Option B is wrong because Microsoft Defender for Endpoint is a security solution for endpoint protection, detection, and response, and has no capability to create or manage workflow approvals. Option D is wrong because Microsoft Purview Compliance Manager is a compliance management tool that helps assess and manage regulatory compliance risks, not a workflow automation service.

822
MCQeasy

A small business with 15 employees needs Microsoft 365 subscriptions that include desktop versions of Office apps and business-class email. They have a limited budget. Which is the most cost-effective plan that meets these requirements?

A.Microsoft 365 Business Basic
B.Microsoft 365 Business Standard
C.Microsoft 365 Business Premium
D.Office 365 E1
AnswerB

Business Standard provides desktop Office apps and email at the lowest cost among plans that include both.

Why this answer

Microsoft 365 Business Standard is the most cost-effective plan that includes both desktop versions of Office apps (e.g., Word, Excel, PowerPoint) and business-class email (Exchange Online with a 50 GB mailbox and custom domain). Business Basic only provides web and mobile Office apps without desktop installations, while Business Premium adds advanced security and device management features that exceed the small business's limited budget and stated requirements. Office 365 E1 is an enterprise plan that lacks desktop Office apps entirely.

Exam trap

The trap here is that candidates often confuse 'Business Basic' (which lacks desktop Office apps) with 'Business Standard' (which includes them), or they assume 'Business Premium' is the only plan with desktop apps and email, overlooking the cost-benefit trade-off that Business Standard is the correct minimum plan for these exact requirements.

How to eliminate wrong answers

Option A (Microsoft 365 Business Basic) is wrong because it includes only web and mobile versions of Office apps with no desktop installation rights, failing the requirement for desktop Office apps. Option C (Microsoft 365 Business Premium) is wrong because while it includes desktop Office apps and email, its additional cost (approximately $22/user/month vs. $12.50/user/month for Business Standard) is driven by advanced security, compliance, and device management features (e.g., Microsoft Defender for Office 365, Intune) that are unnecessary for a small business with a limited budget. Option D (Office 365 E1) is wrong because it is an enterprise plan that provides Exchange Online email but does not include any version of the Office desktop apps, only web and mobile access.

823
MCQmedium

An administrator is reviewing a request from users who need to explain why a newly licensed user may not access an app immediately. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Whiteboard
B.License provisioning may need time after assignment
C.Microsoft Stream
D.Microsoft Forms
AnswerB

Some services can take time to provision after license assignment.

Why this answer

Option B is correct because when a Microsoft 365 license is assigned to a user, the provisioning of the associated services (e.g., Exchange Online, SharePoint Online) is not instantaneous. It typically takes from a few minutes up to 24 hours for the license to fully propagate and for the user to be able to access the licensed apps. This delay is a standard behavior in Microsoft 365's licensing and provisioning system, not a sign of a problem.

Exam trap

The trap here is that candidates may confuse the specific app names (Whiteboard, Stream, Forms) with the underlying licensing provisioning concept, thinking that the question is about which app is most relevant, rather than recognizing that the delay is a general licensing behavior.

How to eliminate wrong answers

Option A is wrong because Microsoft Whiteboard is a specific application, not a licensing, admin, or support concept that explains why a newly licensed user cannot access an app immediately. Option C is wrong because Microsoft Stream is a video service, and its availability depends on the license provisioning process, but it is not the core concept explaining the delay. Option D is wrong because Microsoft Forms is a survey tool, and like Whiteboard and Stream, it is an app that becomes available only after the license provisioning completes, not the reason for the delay.

824
MCQmedium

Refer to the exhibit. The JSON snippet represents a Microsoft Purview sensitivity label policy. An administrator wants to prevent external users from accessing documents labeled 'Highly Confidential'. Which element in the policy achieves this?

A.blockAccess
B.encrypt
C.applyWatermark
D.labels
AnswerA

blockAccess is set to true, preventing unauthorized access.

Why this answer

The 'blockAccess' action in a Microsoft Purview sensitivity label policy is specifically designed to prevent users from accessing content that has been labeled with a particular sensitivity level. In this case, setting 'blockAccess' to 'true' for the 'Highly Confidential' label ensures that external users cannot open or interact with documents carrying that label, enforcing access control at the label level.

Exam trap

The trap here is that candidates often confuse 'blockAccess' with 'encrypt', assuming that encryption alone prevents access, but encryption only protects the data from unauthorized decryption, not from authorized users or external users who might have been granted permissions through the label policy.

How to eliminate wrong answers

Option B is wrong because 'encrypt' applies encryption to the document, which protects data at rest and in transit but does not inherently block external users from accessing the content if they have the decryption key or permissions. Option C is wrong because 'applyWatermark' adds a visual overlay (e.g., text or image) to the document to indicate its sensitivity, but it does not restrict access or prevent external users from viewing or editing the file. Option D is wrong because 'labels' is the array that defines the sensitivity labels themselves, not an action that enforces access restrictions; it merely lists which labels are included in the policy.

825
MCQeasy

A user reports receiving a phishing email in their Outlook inbox. The organization uses Microsoft Defender for Office 365. Which feature should the user use to report the email to the security team?

A.Use the Report Message add-in in Outlook
B.Block the sender in Outlook
C.Submit the email to the Microsoft 365 Defender portal
D.Enable Safe Links in Outlook
AnswerA

The Report Message add-in allows users to report phishing and junk emails to Microsoft and the organization for analysis.

Why this answer

Option B is correct. The Report Message add-in allows users to report phishing emails directly to Microsoft and the organization. Option A is wrong because blocking the sender is a local action.

Option C is wrong because Safe Links protects against malicious URLs, not reporting. Option D is wrong because the admin center is for administrators.

Page 10

Page 11 of 14

Page 12