Microsoft 365 Fundamentals MS-900 (MS-900) — Questions 526600

985 questions total · 14pages · All types, answers revealed

Page 7

Page 8 of 14

Page 9
526
MCQmedium

A marketing team needs to create a visually rich newsletter that includes dynamic content from a SharePoint list, such as upcoming events and product images. Which Microsoft 365 app is specifically designed for creating interactive newsletters and presentations?

A.Microsoft Sway
B.Microsoft Forms
C.Microsoft Stream
D.Microsoft Microsoft Viva Engage
AnswerA

Sway is ideal for creating interactive, web-based newsletters and presentations that can pull in dynamic content from SharePoint lists and other sources.

Why this answer

Microsoft Sway is specifically designed for creating interactive, visually rich newsletters and presentations that can pull dynamic content from SharePoint lists, such as upcoming events and product images. It uses a web-based canvas with responsive design and supports embedding live data via SharePoint connectors, making it ideal for marketing teams needing dynamic, shareable content without coding.

Exam trap

The trap here is that candidates often confuse Microsoft Sway with Microsoft Forms or Stream because all three are content creation tools, but only Sway is purpose-built for interactive, data-driven newsletters and presentations.

How to eliminate wrong answers

Option B is wrong because Microsoft Forms is a survey and quiz tool for collecting data, not for creating interactive newsletters or presentations. Option C is wrong because Microsoft Stream is a video hosting and sharing platform for enterprise video content, not for building newsletters or presentations. Option D is wrong because Microsoft Viva Engage is a social networking and employee engagement tool focused on communities and conversations, not on creating interactive newsletters or presentations.

527
MCQmedium

A compliance officer needs to identify users who are at risk of leaking sensitive data based on their activities such as copying files to USB drives or emailing content outside the organization. The solution must also allow reviewing the activities in a case-based workflow. Which Microsoft Purview solution should they use?

A.Microsoft Purview Data Loss Prevention
B.Microsoft Purview Insider Risk Management
C.Microsoft Purview Audit (Premium)
D.Microsoft Purview Communication Compliance
AnswerB

This solution identifies, triages, and investigates risky user activities, offering a case-based workflow to review potential data leaks.

Why this answer

Microsoft Purview Insider Risk Management is specifically designed to detect, investigate, and act on risky user activities that could lead to data leaks, such as copying files to USB drives or emailing sensitive content externally. It provides a case-based workflow for reviewing and managing these activities, aligning directly with the compliance officer's requirements.

Exam trap

The trap here is that candidates often confuse Data Loss Prevention (DLP) with Insider Risk Management, but DLP is a preventive control that blocks actions in real-time, whereas Insider Risk Management is a detective control that identifies risky users and provides a case workflow for post-event review.

How to eliminate wrong answers

Option A is wrong because Microsoft Purview Data Loss Prevention (DLP) focuses on preventing data leaks through policies that block or warn users in real-time, but it does not provide a case-based workflow for reviewing activities after they occur. Option C is wrong because Microsoft Purview Audit (Premium) logs user and admin activities for forensic investigation but lacks the risk analysis, user risk scoring, and case management workflow needed to identify at-risk users proactively. Option D is wrong because Microsoft Purview Communication Compliance is designed to detect policy violations in communications (e.g., harassment, insider trading) and does not cover activities like copying files to USB drives or emailing content outside the organization.

528
MCQeasy

An e-commerce website hosted on a cloud provider automatically adds more virtual machines to handle increased traffic during Black Friday and removes them after the event. Which cloud characteristic does this illustrate?

A.Rapid elasticity
B.On-demand self-service
C.Resource pooling
D.Measured service
AnswerA

Correct. The automatic scaling of VMs up and down in response to traffic spikes demonstrates rapid elasticity.

Why this answer

Rapid elasticity is the cloud characteristic that enables resources to scale out (add VMs) automatically in response to demand spikes like Black Friday traffic, and scale in (remove VMs) when demand subsides. This is distinct from manual scaling because it happens automatically and dynamically, often using autoscaling policies tied to metrics such as CPU utilization or request count.

Exam trap

The trap here is that candidates confuse 'rapid elasticity' with 'on-demand self-service' because both involve automation, but elasticity specifically refers to automatic scaling in response to load, not just the ability to provision resources on demand.

How to eliminate wrong answers

Option B (On-demand self-service) is wrong because it refers to a user provisioning resources without human intervention, not the automatic scaling of resources in response to load. Option C (Resource pooling) is wrong because it describes the provider's multi-tenant model where physical and virtual resources are shared across customers, not the ability to scale up/down. Option D (Measured service) is wrong because it involves metering resource usage for billing and optimization, not the dynamic adjustment of capacity.

529
MCQmedium

An administrator is reviewing a request from users who need to give different departments different Microsoft 365 features without wasting licenses. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Assign plans based on user role and requirements
B.Microsoft Whiteboard
C.Microsoft Forms
D.Microsoft Stream
AnswerA

Licensing should match the features each user group actually needs.

Why this answer

The most relevant concept is assigning plans based on user role and requirements because it directly addresses the need to provide different Microsoft 365 features to different departments without wasting licenses. This involves using group-based licensing or per-user license assignment to match features like Exchange Online, SharePoint, or Teams to specific job functions, ensuring cost efficiency and compliance with licensing terms.

Exam trap

The trap here is that candidates confuse specific Microsoft 365 applications (like Whiteboard, Forms, or Stream) with licensing administration concepts, leading them to pick a product name instead of the correct licensing strategy.

How to eliminate wrong answers

Option B is wrong because Microsoft Whiteboard is a specific application, not a licensing or administration concept for managing feature assignments across departments. Option C is wrong because Microsoft Forms is a survey tool, irrelevant to license optimization or role-based feature allocation. Option D is wrong because Microsoft Stream is a video service, not a mechanism for controlling license distribution or feature access.

530
MCQmedium

An administrator needs to monitor and investigate potential data breaches by reviewing detailed records of file access and sharing activities across Microsoft 365. They require a centralized report showing who accessed what, from where, and any unusual patterns. Which tool should they use?

A.Microsoft 365 Defender
B.Microsoft Purview Audit (Standard)
C.Microsoft Purview eDiscovery
D.Microsoft Secure Score
AnswerB

Audit logs capture detailed records of user and admin activities, including file access and sharing, which can be searched and analyzed for potential breaches.

Why this answer

Microsoft Purview Audit (Standard) is the correct tool because it provides a centralized, searchable log of all file access and sharing activities across Microsoft 365 services, including who accessed what, from which IP address, and when. This allows administrators to detect and investigate unusual patterns indicative of data breaches by reviewing detailed audit records.

Exam trap

The trap here is that candidates often confuse Microsoft 365 Defender (a threat protection tool) with audit logging, but the question specifically asks for a centralized report of historical file access and sharing activities, which only Purview Audit provides.

How to eliminate wrong answers

Option A is wrong because Microsoft 365 Defender is a security incident response and threat protection platform that focuses on detecting and responding to active threats (like malware or phishing), not on providing detailed historical audit logs of file access and sharing activities. Option C is wrong because Microsoft Purview eDiscovery is designed for legal discovery and compliance searches to find and export content (e.g., emails, documents) for litigation, not for monitoring real-time or historical access patterns. Option D is wrong because Microsoft Secure Score is a security posture assessment tool that measures an organization's security configuration against best practices, not a logging or monitoring tool for file access activities.

531
MCQeasy

A company uses a cloud service that provides virtual machines. The company manages the operating system, middleware, and applications, while the cloud provider manages the physical hardware, networking, and data center security. Which cloud service model does this represent?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.Desktop as a Service (DaaS)
AnswerA

IaaS provides virtualized computing resources where the customer has control over the operating system and applications, and the provider manages the physical infrastructure.

Why this answer

This scenario describes Infrastructure as a Service (IaaS) because the customer manages the operating system, middleware, and applications, while the cloud provider is responsible for the physical hardware, networking, and data center security. In IaaS, the provider delivers virtualized computing resources over the internet, and the customer retains control over the guest OS, storage, and deployed applications, which matches the division of responsibilities given.

Exam trap

The trap here is that candidates confuse IaaS with PaaS because both involve virtual machines, but PaaS abstracts the OS and middleware, so the key differentiator is who manages the operating system and middleware—if the customer manages them, it is IaaS.

How to eliminate wrong answers

Option B (PaaS) is wrong because in Platform as a Service, the provider manages the operating system, middleware, and runtime environment, leaving the customer to only deploy and manage their own applications and data, not the OS or middleware. Option C (SaaS) is wrong because in Software as a Service, the provider manages the entire application stack, including the operating system, middleware, and applications, and the customer only uses the software via a web browser or client, with no management of the underlying infrastructure. Option D (DaaS) is wrong because Desktop as a Service delivers virtual desktops to end users, where the provider manages the desktop OS and underlying infrastructure, and the customer typically does not manage the OS or middleware as described.

532
MCQeasy

A project team needs a central location to store and collaborate on project documents, with version history, co-authoring, and the ability to share files securely with external partners. Which Microsoft 365 service provides these capabilities?

A.Exchange Online
B.SharePoint Online
C.Microsoft Stream
D.Microsoft Viva Engage
AnswerB

SharePoint Online offers document libraries with versioning, real-time co-authoring, and external sharing controls.

Why this answer

SharePoint Online is the correct choice because it provides a centralized document library with version history, real-time co-authoring via Office Online integration, and granular external sharing controls through secure links or direct invitations. These capabilities align directly with the project team's need for collaborative document management and secure external partner access.

Exam trap

The trap here is that candidates confuse Exchange Online's file attachments (which lack version history and co-authoring) with a proper document management system, or mistakenly think Microsoft Stream's sharing features equate to collaborative document editing.

How to eliminate wrong answers

Option A is wrong because Exchange Online is an email and calendaring service based on the MAPI/HTTP protocol, not a document storage or collaboration platform; it lacks version history and co-authoring for files. Option C is wrong because Microsoft Stream is a video hosting and sharing service for enterprise video content, not designed for document collaboration or version control. Option D is wrong because Microsoft Viva Engage (formerly Yammer) is a social networking and employee engagement tool focused on communities and conversations, not structured document management or secure external file sharing.

533
MCQmedium

A company with 100 users currently has Microsoft 365 Business Standard. The IT department wants to add governance-level security features, including conditional access policies, Microsoft Defender for Microsoft 365, and compliance tools like litigation hold and eDiscovery. Which licensing upgrade should they consider?

A.Microsoft 365 Business Premium
B.Microsoft 365 E3
C.Microsoft 365 F3
D.Microsoft 365 E1
AnswerA

Business Premium is the direct upgrade from Business Standard that adds the required security and compliance features while maintaining the same business-oriented licensing model. It is the most cost-effective choice for this scenario.

Why this answer

Microsoft 365 Business Premium is the correct upgrade because it includes all the requested governance-level security features—Conditional Access, Microsoft Defender for Business (which is the Defender for Microsoft 365 offering for the Business plan), and compliance tools like litigation hold and eDiscovery—while remaining within the Business suite. It is designed for organizations with up to 300 users that need enterprise-grade security and compliance without moving to the Enterprise (E) licensing tier.

Exam trap

The trap here is that candidates often assume E3 is the natural upgrade for security because of its 'Enterprise' branding, but they overlook that Business Premium includes Azure AD P1 and Defender for Business, which E3 lacks without expensive add-ons.

How to eliminate wrong answers

Option B (Microsoft 365 E3) is wrong because, although it includes eDiscovery and litigation hold, it does not include Microsoft Defender for Microsoft 365 (Defender for Office 365 Plan 1/2) or Conditional Access (those require E5 or add-on licenses), making it insufficient for the stated requirements. Option C (Microsoft 365 F3) is wrong because it is a firstline-worker plan that lacks Conditional Access, Microsoft Defender for Microsoft 365, and full compliance tools like litigation hold and eDiscovery; it is designed for kiosk or task-based users, not for governance-level security. Option D (Microsoft 365 E1) is wrong because it is an entry-level enterprise plan that provides only basic email and collaboration, with no Conditional Access, no Microsoft Defender for Microsoft 365, and no litigation hold or eDiscovery capabilities.

534
MCQhard

A company wants to automate approval workflows for expense reports. Which Microsoft 365 service should they use?

A.Microsoft Planner
B.Microsoft Forms
C.SharePoint
D.Power Automate
AnswerD

Power Automate can create automated approval workflows.

Why this answer

Power Automate is the correct service because it provides workflow automation capabilities, including the ability to create approval workflows for expense reports. It integrates with various Microsoft 365 services and third-party apps, allowing users to design automated processes that trigger approvals based on specific conditions, such as submission of an expense report via email or SharePoint.

Exam trap

The trap here is that candidates may confuse SharePoint's ability to host documents and trigger workflows with being the actual automation engine, but SharePoint requires Power Automate (or legacy SharePoint Designer) to execute the approval logic.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management tool for organizing work among teams, not a workflow automation service; it lacks the ability to create automated approval processes. Option B is wrong because Microsoft Forms is used for creating surveys and quizzes, not for automating workflows; it can collect data but cannot initiate or manage approval workflows. Option C is wrong because SharePoint is a document management and collaboration platform that can store expense reports and trigger workflows via Power Automate, but it does not natively provide the automation engine itself; SharePoint alone cannot create or run approval workflows without Power Automate or SharePoint Designer.

535
MCQmedium

A company with 40 users needs email, Teams, web Office apps, and cloud file storage but not desktop Office apps. Which option best matches the requirement?

A.A free personal Microsoft account only
B.Microsoft 365 Business Basic
C.Azure Virtual Desktop only
D.Microsoft Defender for Cloud only
AnswerB

Business Basic includes cloud services and web/mobile Office apps, but not desktop Office apps.

Why this answer

Microsoft 365 Business Basic provides Exchange Online for email, Teams for collaboration, web versions of Office apps (Word, Excel, PowerPoint), and OneDrive for cloud file storage — all without including desktop Office apps. This plan is designed specifically for organizations that need cloud productivity tools but not locally installed Office applications, matching the 40-user requirement exactly.

Exam trap

The trap here is that candidates often confuse Microsoft 365 Business Basic with Microsoft 365 Business Standard (which includes desktop Office apps), or mistakenly think a free personal account can serve business needs, overlooking the lack of centralized administration, business-grade security, and collaboration features like Teams.

How to eliminate wrong answers

Option A is wrong because a free personal Microsoft account (e.g., Outlook.com) does not include Teams for business, lacks administrative controls for a company of 40 users, and offers only limited cloud storage without enterprise-grade security or compliance features. Option C is wrong because Azure Virtual Desktop only provides virtualized Windows desktops and apps, not the core services of email, Teams, web Office apps, or cloud file storage — it is a delivery platform, not a subscription that includes those services. Option D is wrong because Microsoft Defender for Cloud is a cloud security posture management and workload protection service, not a productivity suite; it does not provide email, Teams, Office apps, or file storage.

536
MCQeasy

A company with 500 Microsoft 365 Business Premium users encounters a critical service outage that prevents all users from accessing email. They need to report the incident and expect a response within 1 hour. Which support option should they use to achieve this while keeping additional costs as low as possible?

A.Create a service request through the Microsoft 365 admin center, which includes a standard support incident.
B.Purchase a Microsoft Professional Direct support subscription and submit a Severity A incident.
C.Purchase a Microsoft Premier Support plan and submit a critical incident.
D.Post the issue in the Microsoft 365 Tech Community forum.
AnswerB

Correct. Professional Direct support includes a 1-hour response SLA for critical (Severity A) incidents and is the least expensive paid option that meets the requirement.

Why this answer

Microsoft 365 Business Premium includes only standard support incidents with no guaranteed response time. To achieve a 1-hour response for a critical outage (Severity A), you need a paid support plan. The Professional Direct support subscription is the most cost-effective option that provides a 1-hour response for Severity A incidents, making option B correct.

Exam trap

The trap here is that candidates assume standard support included with Microsoft 365 Business Premium provides a fast response for critical issues, but Microsoft explicitly excludes SLA guarantees for standard support, requiring a paid plan like Professional Direct for a 1-hour response.

How to eliminate wrong answers

Option A is wrong because standard support incidents included with Microsoft 365 Business Premium do not offer a guaranteed response time; they are typically handled within 8 hours or more, not within 1 hour. Option C is wrong because while Premier Support can provide a 1-hour response for critical incidents, it is significantly more expensive than Professional Direct and is overkill for this requirement, as Professional Direct already meets the need at lower cost. Option D is wrong because the Microsoft 365 Tech Community forum is a peer-to-peer discussion platform with no formal support SLA or guaranteed response time, and it cannot be used to report a critical service outage requiring a 1-hour response.

537
Multi-Selecthard

Which THREE Microsoft 365 services are part of Microsoft Defender XDR (Extended Detection and Response)? (Select three.)

Select 3 answers
A.Microsoft Defender for Endpoint
B.Microsoft Purview
C.Microsoft Defender for Identity
D.Microsoft Sentinel
E.Microsoft Defender for Office 365
AnswersA, C, E

Defender for Endpoint protects devices.

Why this answer

Microsoft Defender XDR (Extended Detection and Response) is a unified security suite that correlates signals across endpoints, identities, and email/collaboration. Microsoft Defender for Endpoint is correct because it provides endpoint detection and response (EDR) capabilities, collecting telemetry from Windows, macOS, Linux, Android, and iOS devices to detect and remediate advanced threats.

Exam trap

The trap here is that candidates often confuse Microsoft Sentinel (a SIEM) with a component of Defender XDR, but Sentinel is a separate Azure service that ingests logs from Defender XDR rather than being part of the XDR product itself.

538
MCQeasy

Your organization wants to provide employees with a personalized news feed and internal communications dashboard. Which Microsoft 365 service should you use?

A.Microsoft Stream
B.Microsoft Viva Topics
C.Microsoft Viva Connections
D.SharePoint Online
AnswerC

Viva Connections offers a personalized dashboard integrating news, conversations, and resources.

Why this answer

Microsoft Viva Connections is the correct choice because it provides a personalized news feed and internal communications dashboard directly within Microsoft Teams. It aggregates content from SharePoint, Yammer, and other sources to create a curated employee experience, aligning with the requirement for a centralized communications hub.

Exam trap

The trap here is that candidates often confuse SharePoint Online's news web part with Viva Connections' personalized dashboard, but Viva Connections is the dedicated service for a unified, personalized employee experience within Teams.

How to eliminate wrong answers

Option A is wrong because Microsoft Stream is a video management and sharing service, not a news feed or communications dashboard. Option B is wrong because Microsoft Viva Topics uses AI to organize knowledge into topic pages, but it does not provide a personalized news feed or internal communications dashboard. Option D is wrong because SharePoint Online is a document management and collaboration platform that can host news posts, but it lacks the personalized, dashboard-style aggregation and integration with Teams that Viva Connections offers.

539
MCQhard

An organization uses Microsoft Bookings to manage customer appointments. Staff need to see their Bookings calendar within Outlook. What must be configured?

A.Configure calendar sharing between Bookings and Outlook.
B.Run a PowerShell script to sync calendars.
C.Add staff members to the Bookings calendar.
D.Integrate Bookings with Dynamics 365.
AnswerC

When added as staff, the calendar appears automatically in Outlook.

Why this answer

Option C is correct because for staff to see their Bookings calendar within Outlook, they must be added as staff members in the Bookings calendar. This automatically creates a Bookings-specific calendar in their Outlook that syncs appointments. No additional sharing or scripting is required.

Exam trap

The trap here is that candidates may think additional sharing or scripting is required, but Microsoft has designed Bookings to automatically integrate with Outlook once staff membership is configured, making the other options unnecessary overhead.

How to eliminate wrong answers

Option A is wrong because calendar sharing between Bookings and Outlook is not a separate configuration step; the integration is built-in once staff are added. Option B is wrong because no PowerShell script is needed to sync calendars; the synchronization happens automatically via Exchange Web Services (EWS) when staff are members. Option D is wrong because integrating Bookings with Dynamics 365 is an advanced feature for customer relationship management, not a prerequisite for staff to see their Bookings calendar in Outlook.

540
Multi-Selectmedium

Which three options describe key capabilities of Microsoft Purview that help organizations manage compliance and data governance in Microsoft 365? (Choose three.)

Select 3 answers
.Automatically classify and label sensitive data across Microsoft 365 services
.Apply retention policies and labels to preserve or delete content based on legal requirements
.Conduct eDiscovery searches and hold content for legal cases
.Manage user passwords and enforce multi-factor authentication
.Monitor network traffic to prevent DDoS attacks
.Provide anti-malware and phishing protection in email

Why this answer

Microsoft Purview provides integrated data governance and compliance capabilities across Microsoft 365. It automatically classifies and labels sensitive data using trainable classifiers and exact data match, applies retention policies and labels to meet legal and regulatory requirements, and enables eDiscovery searches with legal hold to preserve content for litigation. These three capabilities directly address data classification, lifecycle management, and legal discovery.

Exam trap

The trap here is that candidates confuse Microsoft Purview with other Microsoft 365 security services like Microsoft Entra ID (identity) or Microsoft Defender (threat protection), leading them to select options that are valid security features but not part of Purview's compliance and data governance scope.

541
MCQmedium

A non-profit organization with 300 users currently uses Microsoft 365 Business Basic. They want to add Microsoft Defender for Office 365 (Plan 1) and endpoint management capabilities using Microsoft Intune. They are eligible for non-profit pricing. What is the most cost-effective way to obtain these features?

A.Upgrade to Microsoft 365 Business Premium
B.Switch to Microsoft 365 E3 licenses
C.Add Microsoft 365 E5 Security add-on
D.Add Microsoft 365 Business Extra File Storage
AnswerA

Business Premium includes Defender for Office 365 and Intune, meeting the requirements at the lowest cost for a non-profit.

Why this answer

Microsoft 365 Business Premium includes both Microsoft Defender for Office 365 (Plan 1) and Microsoft Intune (for endpoint management) at no additional cost, and with non-profit pricing it is the most cost-effective option. Upgrading from Business Basic to Business Premium provides all required features in a single subscription, avoiding the need for separate add-ons or higher-tier enterprise plans.

Exam trap

The trap here is that candidates may assume they need to purchase separate add-ons (like E5 Security) or upgrade to an enterprise plan (E3) to get advanced security and management, when Business Premium already includes both Defender for Office 365 Plan 1 and Intune at a lower per-user cost.

How to eliminate wrong answers

Option B is wrong because Microsoft 365 E3 licenses are more expensive than Business Premium, even with non-profit pricing, and include features like eDiscovery and advanced compliance that are not required here, making it less cost-effective. Option C is wrong because the Microsoft 365 E5 Security add-on requires an underlying E3 or E5 license, which would increase costs significantly compared to a single Business Premium subscription. Option D is wrong because Microsoft 365 Business Extra File Storage only adds additional OneDrive or SharePoint storage capacity and does not provide Defender for Office 365 or Intune endpoint management capabilities.

542
MCQmedium

An organization uses Microsoft 365 Copilot and wants to ensure that Copilot responses are based only on data the user has permission to access. Which principle does this enforce?

A.Defense in depth
B.Segregation of duties
C.Zero Trust
D.Least privilege
AnswerD

Least privilege ensures users only access data they have permissions for.

Why this answer

The principle of least privilege ensures users only access data they need. Copilot respects existing permissions. Option B is correct.

Options A, C, and D are incorrect.

543
MCQeasy

A company wants to ensure that all Microsoft 365 users authenticate using multi-factor authentication (MFA). Which Microsoft 365 security feature should they configure?

A.Microsoft Intune compliance policies
B.Microsoft Purview Data Loss Prevention
C.Microsoft Defender XDR
D.Microsoft Entra ID Conditional Access
AnswerD

Conditional Access policies can require MFA for all users.

Why this answer

Option B is correct because Microsoft Entra ID Conditional Access policies can enforce MFA for all users. Option A is wrong because Microsoft Defender XDR is for threat detection and response. Option C is wrong because Microsoft Intune is for device management.

Option D is wrong because Microsoft Purview is for compliance and information protection.

544
MCQmedium

A department asks for the Microsoft 365 service best suited for interactive business dashboards. Which service should they use? The design must avoid adding custom operational scripts.

A.Microsoft Purview Compliance Manager
B.Power BI
C.Microsoft Defender for Endpoint
D.Microsoft Entra Privileged Identity Management
AnswerB

Power BI provides reporting, semantic models, and dashboards.

Why this answer

Power BI is the correct choice because it is Microsoft's dedicated business analytics service that enables users to create interactive dashboards and reports from various data sources. It provides drag-and-drop visualization tools, real-time data refresh, and natural language querying (Q&A) without requiring custom operational scripts, aligning perfectly with the department's requirement for no-code dashboard creation.

Exam trap

The trap here is that candidates may confuse Microsoft Purview Compliance Manager's compliance dashboards (which are static compliance scorecards) with interactive business dashboards, or assume that security tools like Defender for Endpoint include business analytics features, leading them to select a wrong option that sounds 'dashboard-like' but serves a completely different purpose.

How to eliminate wrong answers

Option A is wrong because Microsoft Purview Compliance Manager is a compliance management tool that assesses and reports on an organization's compliance posture against regulations; it does not create interactive business dashboards. Option C is wrong because Microsoft Defender for Endpoint is a security solution for endpoint protection, detection, and response; it is not designed for business analytics or dashboarding. Option D is wrong because Microsoft Entra Privileged Identity Management (PIM) manages just-in-time privileged access to Azure AD and Azure resources; it has no capability for building interactive dashboards.

545
MCQmedium

An organization uses Microsoft Teams and wants to record meetings for compliance purposes. Which Microsoft 365 service provides meeting recording with automatic transcription?

A.Microsoft OneDrive
B.Microsoft Teams meeting recording
C.Microsoft Forms
D.Microsoft Stream
AnswerB

Teams allows recording and automatic transcription.

Why this answer

Microsoft Teams meeting recording with automatic transcription is a native feature of Teams itself, not a separate service. When a meeting is recorded, Teams stores the recording in OneDrive or SharePoint, but the recording and transcription capabilities are part of the Teams meeting experience. Option B is correct because Teams meeting recording directly provides the recording and automatic transcription for compliance purposes.

Exam trap

Microsoft often tests the misconception that Microsoft Stream is the service that provides meeting recording and transcription, but in reality, Stream is only a playback and management interface, while the recording and transcription are native Teams features.

How to eliminate wrong answers

Option A is wrong because Microsoft OneDrive is a cloud storage service that stores the recorded file after the meeting, but it does not provide the meeting recording or transcription functionality itself. Option C is wrong because Microsoft Forms is a survey and quiz tool, not a meeting recording or transcription service. Option D is wrong because Microsoft Stream (classic) was previously used for storing and managing meeting recordings, but as of 2023, Teams meeting recordings are stored in OneDrive/SharePoint, and Stream (on SharePoint) is a video playback portal, not the service that performs recording or transcription.

546
MCQeasy

While preparing a Microsoft 365 adoption plan, a consultant is asked to avoid buying servers upfront and pay monthly based on usage. Cloud concept or benefit best matches this requirement?

A.Sensitivity labels
B.Data Loss Prevention (DLP)
C.Operational expenditure (OpEx) model
D.Microsoft Planner
AnswerC

Cloud services commonly shift spending from upfront capital purchases to ongoing operational spending based on consumption.

Why this answer

The operational expenditure (OpEx) model is correct because it aligns with the requirement to avoid upfront capital investment (CapEx) and instead pay monthly based on usage. In Microsoft 365, this is delivered through subscription-based licensing (e.g., per-user per-month plans), which shifts costs from large upfront server purchases to predictable monthly payments that scale with consumption.

Exam trap

The trap here is that candidates may confuse 'operational expenditure' with a specific tool or feature (like Planner or DLP) because they focus on the word 'plan' in the question, rather than recognizing that OpEx is a fundamental cloud financial model distinct from any product or security feature.

How to eliminate wrong answers

Option A is wrong because sensitivity labels are a Microsoft Purview Information Protection feature used to classify and protect data (e.g., encrypt emails or mark documents as confidential), not a financial or deployment model. Option B is wrong because Data Loss Prevention (DLP) is a policy-based security feature that detects and prevents accidental sharing of sensitive information (e.g., credit card numbers), not a cost or procurement model. Option D is wrong because Microsoft Planner is a task management and collaboration tool within Microsoft 365 (part of the Power Platform and Teams), not a cloud concept or benefit related to payment or infrastructure.

547
MCQhard

Your organization is migrating from on-premises Exchange to Exchange Online. You need to ensure that users can access their mailboxes using Outlook for Windows without re-entering credentials each time. Which Microsoft 365 service should you configure to enable single sign-on (SSO) and modern authentication?

A.Microsoft Entra ID
B.Microsoft Intune
C.Microsoft Purview
D.Microsoft Sentinel
AnswerA

Provides identity and access management, including SSO and modern auth.

Why this answer

Microsoft Entra ID (formerly Azure AD) is the identity and access management service that provides single sign-on (SSO) and modern authentication (OAuth 2.0, OpenID Connect) for Exchange Online. When configured, Outlook for Windows can use the Microsoft Entra ID token to authenticate silently, eliminating the need for users to re-enter credentials each time they access their mailbox.

Exam trap

The trap here is that candidates confuse Microsoft Intune (device management) with identity services, or assume that any Microsoft 365 security or management tool can enable SSO, when only the identity provider (Microsoft Entra ID) can issue authentication tokens for modern auth.

How to eliminate wrong answers

Option B is wrong because Microsoft Intune is a mobile device management (MDM) and mobile application management (MAM) service; it does not handle authentication or SSO for Exchange Online. Option C is wrong because Microsoft Purview is a compliance and data governance solution (e.g., data loss prevention, eDiscovery); it has no role in enabling SSO or modern authentication. Option D is wrong because Microsoft Sentinel is a cloud-native security information and event management (SIEM) service; it is used for threat detection and response, not for identity-based authentication.

548
MCQhard

Fabrikam Inc. is a technology company that uses Microsoft 365 E5. They have implemented Microsoft Defender XDR to monitor for threats. The security team wants to receive alerts when a user is compromised, such as when a user's credentials are used from an unusual location. They also want to automatically block the user from signing in until the risk is mitigated. You need to configure a solution that automatically detects and responds to such identity risks. What should you configure?

A.Enable Microsoft Defender for Cloud Apps to monitor user activities.
B.Configure Identity Protection in Microsoft Entra ID to detect risky sign-ins and enable the 'User risk policy' to automatically block high-risk users.
C.Deploy Microsoft Sentinel and create analytics rules to detect and respond to identity threats.
D.Create a Conditional Access policy that requires MFA for all sign-ins.
AnswerB

Identity Protection can detect and automatically block high-risk sign-ins.

Why this answer

Option C is correct. Identity Protection in Microsoft Entra ID can detect risky sign-ins and users, and can be configured to automatically block sign-ins or require MFA. Option A (Conditional Access) can enforce policies based on risk, but the automatic blocking is handled by Identity Protection.

Option B (Defender for Cloud Apps) is for app-level protection. Option D (Microsoft Sentinel) is for SIEM, not automatic response.

549
MCQhard

The exhibit shows a Microsoft Purview auto-labeling policy configuration. A user uploads a document containing a credit card number to a SharePoint Online site. The document does not get automatically labeled. Which is the most likely reason?

A.The credit card number does not meet the minimum confidence threshold of 75.
B.The document was uploaded before the policy was published.
C.The policy is configured to apply to Exchange Online, not SharePoint.
D.The document is a PDF file, and auto-labeling only supports Office documents.
AnswerB

Auto-labeling policies do not apply retroactively to existing documents.

Why this answer

Option B is correct because auto-labeling policies in Microsoft Purview apply labels to documents that are newly created or modified after the policy is published. Documents uploaded before the policy's publication date are not retroactively scanned or labeled unless a separate manual or scheduled labeling job is triggered. Since the user uploaded the document before the policy was published, it falls outside the policy's scope.

Exam trap

The trap here is that candidates often assume auto-labeling policies scan all existing content in a location, but Microsoft Purview auto-labeling only applies to content created or modified after the policy is published, not retroactively.

How to eliminate wrong answers

Option A is wrong because the minimum confidence threshold of 75 is a default setting for sensitive info types, but credit card numbers are a built-in sensitive info type with a high confidence level; if the number is valid, it typically meets the threshold. Option C is wrong because the exhibit shows the policy is configured for SharePoint Online, not Exchange Online, as indicated by the location selection in the policy configuration. Option D is wrong because auto-labeling in Purview supports PDF files for sensitivity labels when applied via auto-labeling policies, not just Office documents.

550
Multi-Selecthard

Which TWO Microsoft 365 compliance features are available in Microsoft Purview to help organizations manage and protect sensitive data?

Select 2 answers
A.Microsoft Defender for Cloud Apps
B.Data Lifecycle Management
C.Microsoft Entra ID Protection
D.Microsoft Defender XDR
E.Data Loss Prevention (DLP)
AnswersB, E

Data Lifecycle Management (retention and deletion) is part of Purview.

Why this answer

Data Lifecycle Management (B) is correct because it enables organizations to govern their data through retention policies and retention labels, automatically retaining or deleting content based on regulatory requirements. Data Loss Prevention (DLP) (E) is correct because it identifies, monitors, and protects sensitive data across Microsoft 365 services (Exchange, SharePoint, OneDrive, Teams) by applying policies that prevent unauthorized sharing or leakage.

Exam trap

Microsoft often tests the distinction between security tools (Defender, Entra ID Protection) and compliance tools (Purview features), so candidates mistakenly select Defender for Cloud Apps or Defender XDR because they associate 'protect sensitive data' with security rather than data governance and loss prevention.

551
MCQmedium

A company with 500 Microsoft 365 Business Premium users wants to enable advanced identity protection features, such as risk-based conditional access and privileged identity management (PIM). These features require Microsoft Entra ID Premium P2. What is the most cost-effective licensing approach to add this capability?

A.Upgrade all users to Microsoft 365 E5
B.Purchase Microsoft 365 E5 Security add-on
C.Purchase Microsoft Entra ID Premium P2 as a standalone add-on
D.Purchase Microsoft 365 E5 Compliance add-on
AnswerC

This directly adds the required identity protection capabilities to existing Business Premium licenses at the lowest cost.

Why this answer

Option C is correct because Microsoft Entra ID Premium P2 is the specific license that provides risk-based conditional access and Privileged Identity Management (PIM). Purchasing it as a standalone add-on for the existing Microsoft 365 Business Premium users is the most cost-effective approach, as it adds only the required identity protection features without upgrading the entire suite or purchasing unrelated add-ons.

Exam trap

The trap here is that candidates often assume the E5 Security add-on is the cheapest way to get Entra ID P2, but they overlook that the standalone Entra ID P2 add-on is more cost-effective when only identity features are needed, and they may confuse the E5 Compliance add-on as a source of identity protection.

How to eliminate wrong answers

Option A is wrong because upgrading all users to Microsoft 365 E5 is significantly more expensive and includes many features (e.g., advanced eDiscovery, Power BI Pro) that are not required for identity protection, making it an inefficient use of budget. Option B is wrong because the Microsoft 365 E5 Security add-on includes Microsoft Entra ID Premium P2, but it also bundles other security features (e.g., Microsoft Defender for Office 365, Microsoft Defender for Cloud Apps) that are not needed, and it is typically more expensive than the standalone Entra ID P2 add-on. Option D is wrong because the Microsoft 365 E5 Compliance add-on provides compliance features (e.g., eDiscovery, audit, communication compliance) and does not include Microsoft Entra ID Premium P2, so it cannot enable risk-based conditional access or PIM.

552
MCQeasy

A company uses a cloud provider that hosts multiple customers on the same physical servers. Each customer's data and applications are isolated, but customers have no knowledge or control over the exact physical location of their resources. Which cloud characteristic does this describe?

A.Resource pooling
B.Rapid elasticity
C.On-demand self-service
D.Measured service
AnswerA

Correct. Resource pooling allows the provider to serve multiple customers from shared infrastructure while isolating each customer's data.

Why this answer

Resource pooling is the correct answer because the scenario describes a multi-tenant model where the cloud provider's physical and virtual resources are pooled to serve multiple customers, with isolation between tenants. Customers have no knowledge or control over the exact physical location of their resources, which is a defining characteristic of resource pooling as defined by NIST SP 800-145.

Exam trap

The trap here is that candidates often confuse resource pooling with rapid elasticity because both involve shared infrastructure, but resource pooling specifically focuses on multi-tenancy and location transparency, not dynamic scaling.

How to eliminate wrong answers

Option B (Rapid elasticity) is wrong because it refers to the ability to quickly scale resources up or down based on demand, not to multi-tenant isolation or location transparency. Option C (On-demand self-service) is wrong because it describes the capability for a user to provision computing capabilities automatically without requiring human interaction with the provider, not the pooling of resources across customers. Option D (Measured service) is wrong because it involves metering and billing based on usage (e.g., pay-per-use), not the sharing of physical infrastructure among multiple tenants.

553
MCQmedium

During requirements gathering, an IT manager says the organization must remove a departing user's license safely. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Forms
B.Microsoft Whiteboard
C.Preserve or transfer required data according to offboarding policy before reclaiming a license
D.Microsoft Stream
AnswerC

Data and mailbox requirements should be handled before license reclamation.

Why this answer

Option C is correct because the most relevant concept for safely removing a departing user's license is the offboarding policy, which includes preserving or transferring required data (e.g., via eDiscovery, retention policies, or data migration) before reclaiming the license. This ensures compliance and data integrity, as license removal can trigger data deletion after a grace period (e.g., 30 days for Exchange Online). The other options are productivity tools, not licensing or offboarding concepts.

Exam trap

The trap here is that candidates confuse productivity tools (Forms, Whiteboard, Stream) with licensing or offboarding concepts, overlooking that the question explicitly asks for the most relevant licensing, admin, or support concept, which is the offboarding policy for data preservation.

How to eliminate wrong answers

Option A is wrong because Microsoft Forms is a survey and data collection tool, not related to license management or user offboarding. Option B is wrong because Microsoft Whiteboard is a digital canvas for collaboration, irrelevant to licensing or data preservation during offboarding. Option D is wrong because Microsoft Stream is a video hosting and sharing service, not a licensing or support concept for removing a user's license safely.

554
MCQmedium

A company with 200 users currently has Microsoft 365 Business Basic licenses. They now need device management (Microsoft Intune) and Microsoft Defender for Office 365 Plan 1 for all users. They want to keep costs as low as possible. What is the most cost-effective licensing strategy?

A.Upgrade all users to Microsoft 365 Business Premium.
B.Add the Microsoft 365 Business Premium add-on to each user.
C.Purchase Microsoft Intune and Microsoft Defender for Office 365 Plan 1 as standalone add-ons.
D.Upgrade all users to Microsoft 365 E3.
AnswerC

Both Intune and Defender for Office 365 Plan 1 are available as standalone add-ons for Business Basic. This adds the needed features at a lower total cost than switching to a higher-tier plan.

Why this answer

Option C is correct because Microsoft Intune and Microsoft Defender for Office 365 Plan 1 are available as standalone add-ons for Microsoft 365 Business Basic. This allows the company to add only the specific services needed without upgrading the entire license, keeping costs minimal while meeting the device management and security requirements.

Exam trap

The trap here is that candidates often assume you must upgrade to a higher-tier suite (like Business Premium) to get Intune and Defender, overlooking the cost-effective standalone add-on options available for Business Basic.

How to eliminate wrong answers

Option A is wrong because upgrading all users to Microsoft 365 Business Premium includes many additional features (e.g., desktop apps, advanced compliance) that are not required, making it more expensive than necessary. Option B is wrong because there is no 'Microsoft 365 Business Premium add-on'; Business Premium is a full license, not an add-on, and this option is not a valid licensing construct. Option D is wrong because upgrading to Microsoft 365 E3 provides enterprise-grade features (e.g., advanced eDiscovery, information protection) that exceed the company's needs and cost significantly more than the standalone add-ons.

555
MCQmedium

A company subscribes to a cloud service where they can provision virtual machines, choose the operating system, install any software, and manage all applications. The cloud provider is responsible for the underlying physical hardware and network infrastructure. Which cloud service model is being used?

A.Infrastructure as a Service (IaaS)
B.Platform as a Service (PaaS)
C.Software as a Service (SaaS)
D.On-premises
AnswerA

IaaS provides virtual machines and infrastructure where the customer controls the OS and applications, and the provider manages physical hardware.

Why this answer

This scenario describes Infrastructure as a Service (IaaS) because the customer provisions virtual machines, chooses the operating system, installs software, and manages applications, while the cloud provider is responsible for the underlying physical hardware and network infrastructure. In IaaS, the provider delivers virtualized computing resources over the internet, and the customer retains control over the OS, storage, and deployed applications, which matches the description exactly.

Exam trap

The trap here is that candidates often confuse IaaS with PaaS because both involve virtual machines, but PaaS abstracts the OS and runtime, whereas IaaS gives the customer full control over the OS and software installation, as explicitly stated in the question.

How to eliminate wrong answers

Option B (PaaS) is wrong because PaaS provides a managed platform where the provider handles the OS, runtime, and middleware, and the customer only deploys and manages applications—not the OS or full software stack. Option C (SaaS) is wrong because SaaS delivers fully managed applications accessed via a browser or client, with no customer control over the underlying infrastructure, OS, or software installation. Option D (On-premises) is wrong because on-premises deployment means the customer owns and manages all hardware, software, and networking within their own data center, contradicting the cloud provider's responsibility for physical infrastructure.

556
MCQhard

A multinational organization uses Microsoft 365 and wants to comply with data residency requirements. They need to ensure that data for European users stays within the European Union. Which Microsoft 365 feature should they configure?

A.Create retention policies for EU users.
B.Set conditional access policies to restrict access from outside EU.
C.Use data loss prevention policies to block data movement.
D.Configure multi-geo capabilities in SharePoint Online and OneDrive.
AnswerD

Multi-geo enables data residency by provisioning data in specific geographic locations.

Why this answer

Multi-Geo capabilities in SharePoint Online and OneDrive allow organizations to provision and store data at rest in specific geographic locations, such as the European Union, to meet data residency requirements. This feature enables tenant administrators to define a preferred data location for users, ensuring their content remains within the EU boundary.

Exam trap

The trap here is that candidates confuse data residency (where data is stored at rest) with data protection mechanisms like retention, access control, or DLP, which address data lifecycle and security but not physical storage location.

How to eliminate wrong answers

Option A is wrong because retention policies control how long data is kept, not where it is stored geographically; they do not enforce data residency. Option B is wrong because conditional access policies control authentication and access based on location, but they do not determine where data is physically stored at rest. Option C is wrong because data loss prevention policies prevent sensitive data from being shared or exfiltrated, but they do not control the geographic location of data storage.

557
MCQeasy

A user wants to schedule a meeting with colleagues and automatically record the meeting for later viewing. Which Microsoft 365 apps should they use?

A.Microsoft SharePoint and Microsoft Viva Topics
B.Microsoft Viva Engage and Microsoft Forms
C.Microsoft OneDrive and Microsoft Stream
D.Microsoft Outlook and Microsoft Teams
AnswerD

Outlook schedules meetings; Teams can record the meeting.

Why this answer

Microsoft Outlook is used to schedule the meeting and send invitations, while Microsoft Teams provides the platform to conduct the online meeting with the capability to automatically record the session. The recording is saved to Microsoft Stream (or OneDrive/SharePoint depending on the version), but the core apps for scheduling and recording are Outlook and Teams.

Exam trap

The trap here is that candidates may think Microsoft Stream alone is sufficient for recording, but Stream is only the storage/playback service, not the app that schedules or conducts the meeting with recording capability.

How to eliminate wrong answers

Option A is wrong because Microsoft SharePoint is a document management and collaboration platform, and Viva Topics uses AI to organize knowledge; neither provides meeting scheduling or recording. Option B is wrong because Viva Engage is an enterprise social network and Forms is for surveys and quizzes; neither supports meeting scheduling or recording. Option C is wrong because OneDrive is for file storage and sync, and Stream is a video service; while Stream can host recordings, OneDrive does not schedule meetings, and the combination lacks the scheduling and real-time meeting capabilities.

558
Multi-Selecteasy

Which TWO Microsoft 365 apps are included in the Microsoft 365 Business Basic subscription?

Select 2 answers
A.Microsoft Teams
B.Microsoft Outlook (web)
C.Microsoft Power BI Pro
D.Microsoft Word (desktop app)
E.Microsoft Purview Compliance Portal
AnswersA, B

Teams is included in Business Basic.

Why this answer

Microsoft 365 Business Basic is a cloud-only subscription that includes web and mobile versions of Office apps, not desktop installations. Microsoft Teams is included as the core collaboration hub for chat, meetings, and file sharing. Microsoft Outlook (web) is also included, providing email, calendar, and contacts via a browser interface.

Exam trap

The trap here is that candidates often confuse 'Business Basic' with 'Business Standard' or 'Apps for Business,' assuming desktop Office apps are included, or they mistakenly think Power BI Pro is a standard component of any Microsoft 365 plan.

559
Multi-Selecthard

Which THREE Microsoft Purview features are part of the eDiscovery workflow for legal investigations?

Select 3 answers
A.Communication
B.Content Search
C.Export
D.Analytics
E.eDiscovery Hold
AnswersB, C, E

Used to search for relevant content.

Why this answer

eDiscovery workflow includes Content Search (identify data), Hold (preserve data), and Export (export data for review). Communication is part of eDiscovery Premium but not always required; Analytics is not a standard eDiscovery feature.

560
MCQhard

A company has employees who frequently work from home on personal devices. They need to ensure corporate data in Microsoft 365 is protected even if the device is lost or compromised, without managing the entire device. What should they implement?

A.Microsoft Intune App Protection Policies
B.Microsoft Defender for Endpoint
C.Microsoft Entra Conditional Access
D.Microsoft Purview Data Loss Prevention
AnswerA

App Protection Policies protect corporate data within apps on personal devices without full device management.

Why this answer

Microsoft Intune App Protection Policies (MAM) protect data at the app level without device enrollment. Conditional Access controls access. DLP prevents data loss.

MAM is the correct approach for unmanaged devices.

561
Multi-Selecteasy

Which TWO Microsoft 365 services are primarily used for enterprise social networking and communication within an organization?

Select 2 answers
A.Microsoft Teams
B.Microsoft Viva Engage
C.Microsoft SharePoint
D.Microsoft Stream
E.Exchange Online
AnswersA, B

Microsoft Teams provides chat and channels for communication.

Why this answer

Microsoft Teams is correct because it serves as the primary hub for persistent chat, meetings, and collaboration, integrating enterprise social networking features such as channels, @mentions, and threaded conversations. Microsoft Viva Engage (formerly Yammer) is correct because it provides a dedicated enterprise social network for broad organizational communication, communities, and knowledge sharing, distinct from Teams' more team-focused interactions.

Exam trap

Microsoft often tests the distinction between collaboration tools by making SharePoint or Exchange Online seem like social networking options, but the trap here is confusing document management or email with enterprise social networking, which requires persistent, community-driven communication features.

562
MCQmedium

A tenant administrator is advising a department that wants to avoid service disruption before subscription renewal. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Forms
B.Subscription status, renewal dates, billing information, and payment methods
C.Microsoft Whiteboard
D.Microsoft Stream
AnswerB

Billing and renewal details affect service continuity.

Why this answer

Option B is correct because the scenario involves avoiding service disruption before subscription renewal, which directly relates to managing subscription status, renewal dates, billing information, and payment methods. These are core billing and subscription management concepts within Microsoft 365 administration, ensuring continuous service access by preventing lapses in payment or renewal.

Exam trap

The trap here is that candidates may confuse productivity tools (Forms, Whiteboard, Stream) with administrative billing concepts, overlooking that the question specifically targets subscription lifecycle management to avoid disruption.

How to eliminate wrong answers

Option A is wrong because Microsoft Forms is a survey and data collection tool, not related to subscription management or billing. Option C is wrong because Microsoft Whiteboard is a collaborative digital canvas application, irrelevant to subscription renewal or service disruption. Option D is wrong because Microsoft Stream is a video sharing and management service, not involved in billing or subscription status.

563
Multi-Selectmedium

WideWorldImporters is a retail company with 500 employees. They use Microsoft 365 Business Premium. The company has a shared mailbox for customer inquiries that several employees monitor. Recently, they noticed that some emails from the shared mailbox are being deleted before being read. The IT admin investigates and finds that a PowerShell script runs daily to clean up the shared mailbox by deleting emails older than 30 days. However, some emails are being deleted before 30 days. The admin needs to ensure that no emails are deleted from the shared mailbox before they are read by at least one person. The admin also wants to retain all emails for a minimum of 30 days for compliance purposes, even if they are read. Additionally, the admin wants to prevent users from accidentally deleting emails from the shared mailbox. Which three configurations should the admin implement? (Choose three. Each correct answer is part of the solution.)

Select 3 answers
A.Disable the PowerShell script that deletes emails older than 30 days.
B.Place the shared mailbox on litigation hold for 30 days.
C.Enable the shared mailbox for archiving to move old emails to archive.
D.Modify the shared mailbox permissions to remove 'Delete' access for users.
E.Apply a messaging records management (MRM) policy that deletes emails after 30 days.
AnswersA, B, D

The script is deleting emails prematurely; disabling it stops the issue.

Why this answer

Option A is correct because the PowerShell script is the root cause of premature deletions. Disabling it stops the automated cleanup that deletes emails before they are read, allowing the admin to implement controlled retention policies instead.

Exam trap

The trap here is that candidates may confuse archiving (Option C) with retention, not realizing that archiving does not prevent deletion or enforce a minimum retention period, and may incorrectly assume an MRM deletion policy (Option E) can be tuned to meet both the read-before-delete and 30-day retention requirements simultaneously.

564
MCQmedium

While preparing a Microsoft 365 adoption plan, a consultant is asked to reduce maintenance of power, cooling, and server replacement. Cloud concept or benefit best matches this requirement?

A.Reduced data center management
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerA

Cloud providers manage physical data center facilities and hardware for cloud services.

Why this answer

Reduced data center management is the correct answer because the requirement to reduce maintenance of power, cooling, and server replacement directly maps to the cloud benefit of offloading physical infrastructure responsibilities to the cloud provider. In Microsoft 365, this is realized through the shared responsibility model where Microsoft manages the underlying hardware, facilities, and environmental controls, allowing the organization to focus on application and data management rather than data center operations.

Exam trap

The trap here is that candidates may confuse operational benefits (like reduced maintenance) with productivity tools (Planner) or security features (DLP, sensitivity labels), rather than recognizing that the question is testing the foundational cloud concept of offloading infrastructure management to the provider.

How to eliminate wrong answers

Option B (Microsoft Planner) is wrong because it is a task management and planning tool within Microsoft 365, not a cloud concept or benefit related to reducing physical infrastructure maintenance. Option C (Data Loss Prevention or DLP) is wrong because it is a security feature that helps prevent accidental sharing of sensitive data, not a cloud concept that reduces power, cooling, or server replacement efforts. Option D (Sensitivity labels) is wrong because they are classification and protection mechanisms for data governance, not a cloud benefit addressing data center operational overhead.

565
MCQmedium

A company is migrating its on-premises workloads to Microsoft 365. The IT team wants to minimize latency for users in Europe while ensuring data residency requirements are met. Which cloud concept should the team consider?

A.Geography
B.Hybrid deployment
C.Redundancy
D.Multi-tenancy
AnswerA

Geography determines the specific Azure region where data is stored, affecting latency and compliance with data residency.

Why this answer

Option B is correct because geography determines the data residency region. Option A is wrong because redundancy is about high availability, not latency or residency. Option C is wrong because multi-tenancy is a shared infrastructure model.

Option D is wrong because hybrid deployment combines cloud and on-premises, not specifically addressing latency or residency.

566
MCQhard

You run the above PowerShell cmdlets against Microsoft Entra ID. What is the output?

A.List of Microsoft 365 group names the user is a member of
B.List of roles assigned to the user
C.List of devices enrolled by the user
D.List of licenses assigned to the user
AnswerA

Get-MgUserMemberOf returns group memberships; filter for groups and select DisplayName.

Why this answer

The cmdlets retrieve the user's group memberships and filter for groups, outputting display names. Option C is correct. It does not show roles, licenses, or devices.

567
MCQmedium

A compliance-aware administrator is selecting the right Microsoft 365 capability to use Microsoft 365 and another public cloud provider for different workloads. Cloud concept or benefit best matches this requirement?

A.Microsoft Planner
B.Sensitivity labels
C.Multi-cloud
D.Data Loss Prevention (DLP)
AnswerC

Multi-cloud means using cloud services from more than one public cloud provider.

Why this answer

Multi-cloud is the correct answer because the requirement explicitly involves using Microsoft 365 alongside another public cloud provider for different workloads. Multi-cloud refers to the strategy of leveraging services from multiple cloud providers (e.g., Microsoft Azure and AWS) to avoid vendor lock-in, optimize costs, or meet compliance needs. This directly matches the scenario of using Microsoft 365 and another public cloud provider together.

Exam trap

The trap here is that candidates may confuse 'multi-cloud' with 'hybrid cloud' (which combines public and private cloud) or mistakenly think a specific Microsoft 365 feature like DLP or Sensitivity labels is the answer, when the question is about the overarching cloud concept of using multiple public providers.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management and planning tool within Microsoft 365, not a cloud concept or benefit that addresses multi-provider workload distribution. Option B is wrong because Sensitivity labels are a Microsoft Information Protection feature used to classify and protect data based on sensitivity, not a cloud deployment model or strategy for using multiple providers. Option D is wrong because Data Loss Prevention (DLP) is a security policy mechanism to prevent accidental sharing of sensitive data, not a cloud concept describing the use of multiple cloud providers.

568
MCQmedium

A company uses Microsoft 365 E3. They want to upgrade to include advanced compliance features like communication compliance and insider risk management. Which add-on license do they need?

A.Microsoft 365 E5 Compliance
B.Microsoft 365 E5 Security
C.Microsoft Purview Compliance Manager
D.Microsoft Defender for Cloud Apps
AnswerA

Correct. E5 Compliance add-on includes communication compliance and insider risk management.

Why this answer

Microsoft 365 E5 Compliance is the correct add-on license because it includes advanced compliance features such as Communication Compliance (for monitoring and detecting inappropriate messages) and Insider Risk Management (for identifying and mitigating internal data risks). These features are not available in the base Microsoft 365 E3 subscription and require the E5 Compliance SKU to unlock.

Exam trap

The trap here is that candidates often confuse Microsoft 365 E5 Security with Microsoft 365 E5 Compliance, assuming that advanced security features automatically include compliance capabilities, but Microsoft separates these into distinct SKUs with different feature sets.

How to eliminate wrong answers

Option B is wrong because Microsoft 365 E5 Security provides advanced security features like Microsoft Defender for Office 365 and Microsoft Defender for Identity, but it does not include Communication Compliance or Insider Risk Management, which are compliance-specific capabilities. Option C is wrong because Microsoft Purview Compliance Manager is a tool within the Microsoft Purview compliance portal for managing compliance assessments and controls, not a license add-on; it is included with E5 Compliance but cannot be purchased as a standalone license to enable the required features. Option D is wrong because Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) focused on securing cloud applications and data, not a license that provides Communication Compliance or Insider Risk Management.

569
MCQmedium

Refer to the exhibit. The exhibit shows an anti-phishing policy in Microsoft Defender for Office 365. Which users receive the highest level of protection?

A.All users in the organization.
B.Only users in the quarantine list.
C.The CEO and CFO specifically.
D.Users with phishing threshold level 2.
AnswerC

Targeted users receive advanced protection.

Why this answer

Option B is correct: Targeted user protection explicitly lists the CEO and CFO, who get additional protection. Option A is incorrect because all users get the policy but targeted users get extra protection. Option C is incorrect because the policy is enabled for all users.

Option D is incorrect because the policy applies to all users, not just targeted.

570
Matchingmedium

Match each Microsoft 365 service level agreement (SLA) term to its meaning.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Service is available at least 99.9% of the time monthly

Discount on bill if SLA is not met

Scheduled downtime for updates

Minimum spend or term length in contract

Why these pairings

SLAs define service availability and compensation for downtime.

571
MCQhard

A global financial services firm needs to protect highly confidential documents containing trade secrets. The protection must restrict access to a specific group of employees, prevent editing and printing, and remain enforced even if the document is downloaded and saved to an external device. Which Microsoft Purview solution should be used?

A.Sensitivity labels (Azure Information Protection)
B.Data Loss Prevention (DLP) policy
C.Information Barriers
D.Advanced Audit
AnswerA

Correct. Sensitivity labels apply encryption and usage restrictions (view, edit, print) that follow the document even when stored externally.

Why this answer

Sensitivity labels from Azure Information Protection (AIP) allow you to classify and protect documents with persistent protection that travels with the file, even when it is downloaded to an external device. By configuring a sensitivity label with encryption, you can restrict access to a specific group of employees, disable editing and printing, and enforce these restrictions regardless of where the file is stored. This meets all the requirements of the scenario, including persistent protection after download.

Exam trap

The trap here is that candidates often confuse DLP policies with sensitivity labels, thinking DLP can protect files after download, but DLP only monitors and blocks at the point of sharing, not persistently encrypting the file.

How to eliminate wrong answers

Option B is wrong because Data Loss Prevention (DLP) policies are designed to detect and prevent the sharing of sensitive information via email, Teams, or cloud apps, but they do not apply persistent protection (encryption, rights management) to files after they are downloaded to an external device. Option C is wrong because Information Barriers are used to prevent communication and collaboration between specific groups (e.g., to avoid conflicts of interest), not to protect documents with encryption or restrict editing/printing. Option D is wrong because Advanced Audit provides detailed logging and investigation of user and admin activities, but it does not enforce access controls or persistent protection on documents.

572
MCQmedium

A compliance officer needs to automatically classify documents stored in SharePoint Online that contain personally identifiable information (PII) such as social security numbers. The classification must apply a sensitivity label that encrypts the document and restricts access to only employees in the Legal department. The process should run without any user interaction. Which Microsoft Purview solution should be configured?

A.Microsoft Purview Data Lifecycle Management
B.Microsoft Purview Data Loss Prevention (DLP)
C.Microsoft Purview Information Protection with auto-labeling
D.Microsoft Purview Insider Risk Management
AnswerC

Auto-labeling policies in Purview Information Protection can automatically classify and protect documents based on content, applying the appropriate sensitivity label (including encryption and access restrictions) without user intervention.

Why this answer

Option C is correct because Microsoft Purview Information Protection with auto-labeling can automatically detect PII (e.g., social security numbers) in documents stored in SharePoint Online and apply a sensitivity label that encrypts the content and restricts access to the Legal department. This process runs without user interaction, meeting the compliance officer's requirement for automatic classification and protection.

Exam trap

The trap here is that candidates often confuse DLP policies (which block sharing) with auto-labeling policies (which apply sensitivity labels and encryption), but DLP does not automatically encrypt or restrict access via sensitivity labels.

How to eliminate wrong answers

Option A is wrong because Microsoft Purview Data Lifecycle Management focuses on retaining or deleting data based on policies (e.g., retention labels), not on automatically classifying or encrypting documents with sensitivity labels. Option B is wrong because Microsoft Purview Data Loss Prevention (DLP) is designed to prevent unauthorized sharing or exfiltration of sensitive data (e.g., blocking emails or file transfers), not to apply sensitivity labels that encrypt and restrict access. Option D is wrong because Microsoft Purview Insider Risk Management detects risky user activities (e.g., data theft by insiders) through analytics and alerts, but does not automatically classify or encrypt documents with sensitivity labels.

573
MCQhard

Your organization uses Microsoft 365 E5 and experiences a security incident where a user's account is compromised. You need to immediately prevent the attacker from accessing Microsoft 365 services while preserving the user's data for investigation. Which action should you take?

A.Block sign-in for the user in Microsoft Entra ID
B.Delete the user account from Microsoft Entra ID
C.Revoke the user's sessions using Microsoft Entra ID
D.Reset the user's password
AnswerA

Blocking sign-in immediately prevents all access while preserving data for investigation.

Why this answer

Blocking sign-in for the user in Microsoft Entra ID immediately prevents the attacker from authenticating to any Microsoft 365 service, while the user's data remains intact in Exchange Online, SharePoint, and OneDrive for forensic analysis. This action does not delete or alter any data, preserving the full investigation trail.

Exam trap

The trap here is that candidates confuse 'revoke sessions' (which only kills current sessions but allows re-authentication) with 'block sign-in' (which prevents all future authentication), leading them to choose Option C as a quick fix without realizing the attacker can simply log back in.

How to eliminate wrong answers

Option B is wrong because deleting the user account permanently removes the user object and all associated data (mailbox, OneDrive files, SharePoint access) from Microsoft 365, destroying evidence needed for investigation. Option C is wrong because revoking sessions only terminates active tokens and sessions but does not prevent the attacker from re-authenticating with the compromised credentials, leaving the account still vulnerable. Option D is wrong because resetting the password alone does not invalidate existing refresh tokens or active sessions; the attacker could still use cached tokens or non-expired sessions to access services until those tokens expire or are explicitly revoked.

574
MCQmedium

A company with 500 Microsoft 365 E3 users wants to add the highest level of threat protection and advanced investigation capabilities for their security team. Which licensing add-on should they purchase?

A.Microsoft 365 E5 Security
B.Microsoft 365 E5 Compliance
C.Microsoft 365 E5
D.Microsoft Defender for Microsoft 365 Plan 2 only
AnswerA

Microsoft 365 E5 Security is an add-on for E3 that includes advanced security features such as Microsoft 365 Defender, Defender for Microsoft 365 Plan 2, Defender for Identity, and more, providing the highest threat protection and investigation.

Why this answer

Microsoft 365 E5 Security is the correct add-on because it bundles the highest level of threat protection (Microsoft Defender for Office 365 Plan 2, Microsoft Defender for Endpoint Plan 2, and Microsoft Defender for Identity) along with advanced investigation capabilities like automated investigation and response (AIR), threat analytics, and advanced hunting in Microsoft 365 Defender. This meets the requirement for top-tier threat protection and advanced investigation without upgrading the entire E3 base license to E5.

Exam trap

The trap here is that candidates often confuse 'Microsoft 365 E5' (a full suite upgrade) with 'Microsoft 365 E5 Security' (an add-on), or they assume that Defender for Office 365 Plan 2 alone provides all advanced investigation features, when in fact E5 Security bundles multiple Defender plans and advanced hunting tools.

How to eliminate wrong answers

Option B is wrong because Microsoft 365 E5 Compliance focuses on data governance, eDiscovery, and compliance management (e.g., Communication Compliance, Insider Risk Management), not threat protection or advanced security investigation capabilities. Option C is wrong because Microsoft 365 E5 is a full suite upgrade that includes both security and compliance features, but the question asks for an add-on to existing E3 licenses, not a full license upgrade; purchasing E5 would be redundant and cost-inefficient. Option D is wrong because Microsoft Defender for Microsoft 365 Plan 2 only provides threat protection for email, collaboration tools, and endpoints, but it does not include the full breadth of advanced investigation capabilities (e.g., Microsoft Defender for Identity, Microsoft Defender for Cloud Apps) that are bundled in E5 Security.

575
MCQmedium

Your organization is deploying Microsoft 365 Copilot. The compliance team is concerned that Copilot might expose sensitive data in its responses. What should you configure to prevent Copilot from using sensitive content?

A.Retention policies
B.Sensitivity labels with 'Copilot' condition
C.Data Loss Prevention policies
D.Unified audit log
AnswerB

Sensitivity labels can mark content that Copilot should not use.

Why this answer

Sensitivity labels (C) can restrict Copilot from accessing labeled content. Option A (DLP) blocks sharing, not Copilot. Option B (retention) is for preservation.

Option D (audit) logs usage.

576
MCQmedium

An administrator is reviewing a request from users who need to reset user passwords without assigning Global Administrator. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Whiteboard
B.Password Administrator
C.Microsoft Forms
D.Microsoft Stream
AnswerB

Password Administrator can reset passwords for many users without full tenant-wide rights.

Why this answer

The Password Administrator role in Microsoft Entra ID (formerly Azure AD) allows users to reset passwords for non-administrator users and manage service requests without granting the highly privileged Global Administrator role. This directly addresses the user request while adhering to the principle of least privilege, making it the most relevant concept for this scenario.

Exam trap

The trap here is that candidates may confuse the Password Administrator role with the Global Administrator role, assuming only Global Admin can reset passwords, or they might pick a random Microsoft service like Forms or Stream because they sound 'administrative' without understanding the specific role-based access control (RBAC) permissions in Microsoft Entra ID.

How to eliminate wrong answers

Option A is wrong because Microsoft Whiteboard is a collaboration tool for visual brainstorming, not an administrative role or licensing concept for password management. Option C is wrong because Microsoft Forms is a survey and data collection tool, unrelated to user administration or password reset capabilities. Option D is wrong because Microsoft Stream is a video management and sharing service, with no role or feature for resetting user passwords.

577
MCQeasy

An HR manager needs to collect anonymous feedback from employees about a new benefits policy. They want the responses to be automatically summarized into charts and graphs. Which Microsoft 365 app is best suited for this task?

A.Microsoft Forms
B.Microsoft Excel
C.Microsoft Sway
D.Microsoft Power BI
AnswerA

Forms includes built-in anonymous response options and automatically generates charts from responses.

Why this answer

Microsoft Forms is the correct choice because it is specifically designed for creating surveys and quizzes, with built-in support for anonymous responses and automatic generation of charts and graphs from collected data. The HR manager can create a feedback form, enable anonymous submissions, and view real-time summaries with visualizations directly within Forms, without needing additional tools.

Exam trap

The trap here is that candidates often confuse Microsoft Forms with Microsoft Power BI, assuming that any charting or graphing requirement must involve a dedicated analytics tool, but Forms handles simple survey summarization natively without needing Power BI's complexity.

How to eliminate wrong answers

Option B is wrong because Microsoft Excel is a spreadsheet application for data analysis and manual chart creation, but it lacks native anonymous survey capabilities and does not automatically collect responses or generate charts without manual setup. Option C is wrong because Microsoft Sway is a presentation and storytelling app for creating interactive reports and newsletters, not for collecting feedback or generating charts from survey data. Option D is wrong because Microsoft Power BI is a business analytics service for advanced data visualization and reporting from multiple data sources, but it is overkill for simple anonymous feedback collection and does not provide built-in survey creation or anonymous response handling.

578
MCQmedium

Refer to the exhibit. An admin configures these two Conditional Access policies in Microsoft Entra ID. A user signs in from a new location with a device that is not compliant and is assigned a high risk level by identity protection. What will happen to the user's sign-in?

A.The user is granted access because the second policy requires MFA.
B.The user is prompted for MFA due to the second policy.
C.The user is blocked from signing in.
D.The user is allowed access but with session restrictions.
AnswerC

High risk triggers the block policy.

Why this answer

The first Conditional Access policy blocks all access for users assigned a high risk level. Since the user is assigned a high risk level by Identity Protection, this policy is triggered first, and because Conditional Access policies are evaluated in order and the first applicable policy that results in a block will prevent further evaluation, the user is blocked from signing in. The second policy requiring MFA for non-compliant devices is never evaluated because the block policy takes precedence.

Exam trap

The trap here is that candidates assume the second policy (requiring MFA) will be applied because the device is non-compliant, but they overlook that the first policy with a 'Block' grant control takes precedence and stops all further policy evaluation.

How to eliminate wrong answers

Option A is wrong because the user is blocked by the first policy before the second policy can grant access, and the second policy does not grant access unconditionally—it requires MFA. Option B is wrong because the user is blocked by the first policy, so they are never prompted for MFA by the second policy; the block overrides any subsequent grant controls. Option D is wrong because the user is blocked entirely, not allowed access with session restrictions; session restrictions would only apply if access were granted.

579
MCQeasy

A company wants to ensure that only managed and compliant devices can access corporate email in Microsoft 365. Which Microsoft Entra ID capability should they configure?

A.Conditional Access
B.Microsoft Authenticator
C.Privileged Identity Management
D.Identity Protection
AnswerA

Conditional Access can enforce device compliance requirements.

Why this answer

Option B is correct because Conditional Access policies in Microsoft Entra ID can require devices to be compliant (e.g., via Intune) before granting access. Option A is incorrect because Identity Protection is for risk detection, not device compliance. Option C is incorrect because Privileged Identity Management is for managing admin roles.

Option D is incorrect because Microsoft Authenticator is an app for MFA, not device compliance.

580
MCQmedium

A sales manager wants to create an interactive dashboard that visualizes the sales pipeline, customer interactions, and team performance. The data resides in Dynamics 365. The manager needs to build the dashboard quickly without coding and share it with the team. Which Microsoft 365 app should they use?

A.Power BI
B.Power Apps
C.Power Automate
D.Power Virtual Agents
AnswerA

Power BI is designed for data visualization and dashboard creation, connecting to Dynamics 365 and sharing with others.

Why this answer

Power BI is the correct choice because it is a business analytics service that enables users to create interactive dashboards and visualizations from data sources like Dynamics 365 without writing code. It supports quick data modeling, real-time updates, and easy sharing with team members via Power BI service or embedded reports, meeting the manager's need for speed and collaboration.

Exam trap

The trap here is that candidates may confuse Power BI with Power Apps because both are part of the Power Platform and can integrate with Dynamics 365, but Power Apps is for building custom apps, not for creating dashboards or visualizations.

How to eliminate wrong answers

Option B (Power Apps) is wrong because it is a low-code platform for building custom applications, not for creating interactive dashboards or visualizations; it focuses on app logic and forms, not data analytics. Option C (Power Automate) is wrong because it is designed for workflow automation and process orchestration, not for building dashboards or visual data exploration. Option D (Power Virtual Agents) is wrong because it is a tool for creating conversational AI chatbots, not for data visualization or reporting.

581
MCQmedium

Your organization is deploying Microsoft 365 Copilot for sales teams. The compliance team requires that Copilot interactions with customer data in Dynamics 365 Sales be subject to retention policies. Which Microsoft Purview feature should you configure to manage this data?

A.Microsoft Purview Data Lifecycle Management
B.Microsoft Purview Sensitivity Labels
C.Microsoft Purview eDiscovery
D.Microsoft Purview Communication Compliance
AnswerA

Retention policies are managed in Data Lifecycle Management.

Why this answer

Option A is correct because Microsoft Purview Data Lifecycle Management enforces retention policies for Copilot interactions. Option B is incorrect because eDiscovery is for search and export. Option C is incorrect because Communication Compliance is for monitoring inappropriate messages.

Option D is incorrect because Sensitivity labels are for classification.

582
Multi-Selecteasy

Which TWO of the following are required to implement Microsoft Entra ID Conditional Access?

Select 2 answers
A.Microsoft 365 E5 license
B.Multifactor Authentication enabled for all users
C.Microsoft Entra ID P1 or P2 licenses
D.Global Administrator or Conditional Access Administrator role
E.Microsoft Intune subscription
AnswersC, D

Conditional Access requires P1 or P2.

Why this answer

Conditional Access requires Azure AD P1 or P2 licenses and roles that allow policy management. MFA and Intune are not required for all policies.

583
MCQmedium

A non-profit organization with 50 employees needs business-grade email, online versions of Office apps, and 1 TB of cloud storage per user. They have a very limited budget and are eligible for Microsoft's non-profit program. Which Microsoft 365 plan provides these features at the lowest cost?

A.Microsoft 365 Business Basic (non-profit)
B.Microsoft 365 Business Standard (non-profit)
C.Microsoft 365 E1 (non-profit)
D.Microsoft 365 E3 (non-profit)
AnswerA

Business Basic includes email, online Office, and 1 TB OneDrive. Non-profit pricing drastically reduces the cost.

Why this answer

Microsoft 365 Business Basic (non-profit pricing) includes Exchange Online email, web versions of Office apps, and 1 TB OneDrive storage per user, making it the most cost-effective choice for non-profits needing these features.

584
MCQhard

A legal team needs to place a hold on all data belonging to a specific user who is involved in a lawsuit. The hold must preserve Exchange Online email, SharePoint sites, and Teams chat messages. Which Microsoft Purview solution should they use?

A.eDiscovery (Standard)
B.Data Lifecycle Management (retention policies)
C.Communication Compliance
D.Audit log
AnswerA

Correct. eDiscovery cases allow placing holds on content from Exchange, SharePoint, OneDrive, and Teams for a specific user or query.

Why this answer

eDiscovery (Standard) is the correct solution because it allows legal teams to place a hold on a specific user's data across Exchange Online, SharePoint, and Teams. This hold preserves all content, including email, documents, and chat messages, ensuring that data cannot be altered or deleted during litigation. eDiscovery (Standard) is designed for legal holds and integrates with Microsoft Purview to manage custodians and preserve data.

Exam trap

The trap here is that candidates often confuse retention policies (which manage data lifecycle) with legal holds (which preserve data for litigation), leading them to choose Data Lifecycle Management instead of eDiscovery.

How to eliminate wrong answers

Option B (Data Lifecycle Management retention policies) is wrong because retention policies are used for managing data retention and deletion based on time or rules, not for placing a legal hold on a specific user's data in response to a lawsuit. Option C (Communication Compliance) is wrong because it is designed to monitor and detect policy violations in communications (e.g., harassment or insider trading), not to preserve data for legal holds. Option D (Audit log) is wrong because audit logs record user and admin activities for security investigations, but they do not place holds on data or preserve content for litigation.

585
MCQmedium

A global sales team uses Microsoft Teams for communication. They need to automate business workflows such as sending approval requests when a new lead is created in Dynamics 365. Which Microsoft 365 service should they integrate with Teams?

A.Power Apps
B.Power Automate
C.Power BI
D.Power Virtual Agents
AnswerB

Power Automate allows you to create automated workflows that integrate Dynamics 365 with Teams for approvals.

Why this answer

Power Automate (Option B) is the correct service because it is designed specifically for automating business workflows across Microsoft 365 and third-party services. When a new lead is created in Dynamics 365, a Power Automate flow can trigger an approval request in Teams, enabling seamless process automation without custom code.

Exam trap

The trap here is that candidates may confuse Power Automate with Power Apps, mistakenly thinking that building a custom app is necessary for workflow automation, whereas Power Automate is the dedicated service for no-code/low-code process automation.

How to eliminate wrong answers

Option A is wrong because Power Apps is a low-code platform for building custom applications, not for automating workflows or sending approval requests. Option C is wrong because Power BI is a business analytics tool for data visualization and reporting, not for workflow automation. Option D is wrong because Power Virtual Agents is a chatbot service for creating conversational AI agents, not for triggering automated approval workflows.

586
MCQhard

An organization uses Microsoft Teams for collaboration. The security team wants to ensure that external guests cannot download files shared in Teams channels. Compliance requirements also demand that all communication in Teams be encrypted at rest and in transit. Which built-in Teams capabilities address these requirements?

A.Sensitivity labels applied to the Teams site
B.Microsoft Purview Data Loss Prevention policies
C.Microsoft Entra Conditional Access policies
D.Teams information barriers and default encryption
AnswerD

Information barriers block guest downloads; default encryption covers at rest and in transit.

Why this answer

Option D is correct because Teams information barriers can be configured to restrict external guest actions, such as preventing file downloads, while default encryption (Microsoft 365 uses BitLocker for disk-level encryption and TLS 1.2+ for data in transit) ensures all communication is encrypted at rest and in transit. These are built-in capabilities that directly address both the guest download restriction and encryption compliance requirements without additional licensing or complex configuration.

Exam trap

The trap here is that candidates often confuse information barriers with DLP or Conditional Access, but information barriers are the specific built-in Teams capability that can restrict guest download actions, while DLP and Conditional Access serve different purposes (data leak prevention and access control, respectively).

How to eliminate wrong answers

Option A is wrong because sensitivity labels applied to a Teams site control access and protection settings (e.g., encryption, visual markings) but do not have a specific setting to block external guests from downloading files shared in channels; they focus on classification and protection of content, not guest download permissions. Option B is wrong because Microsoft Purview Data Loss Prevention (DLP) policies monitor and prevent accidental sharing of sensitive data (e.g., credit card numbers) but cannot restrict guest download actions; DLP policies are about detecting and blocking data leaks, not controlling user permissions like download capability. Option C is wrong because Microsoft Entra Conditional Access policies enforce access controls based on conditions (e.g., device compliance, location) but do not directly prevent external guests from downloading files; they manage authentication and access, not file-level download restrictions within Teams.

587
MCQhard

Refer to the exhibit. A security analyst runs this KQL query in Microsoft Sentinel to investigate a user's deleted files. The query returns no results even though the user has deleted files. Which of the following is the most likely reason?

A.The query filters by Result column which doesn't exist.
B.The query should use 'where Operation == "FileDeleted"' but the operation is 'DeleteFile'.
C.The UserId field should be replaced with UserPrincipalName.
D.The Microsoft 365 connector is not configured in Sentinel.
AnswerD

Without the connector, Microsoft 365 audit logs are not ingested into Sentinel.

Why this answer

Option C is correct because Sentinel queries the workspace's own AuditLogs table, which may not contain Microsoft 365 audit logs unless the Microsoft 365 connector is configured. Option A is wrong because the query does not filter by Result. Option B is wrong because the query uses correct syntax.

Option D is wrong because the query is not incorrectly formatted.

588
MCQhard

A sales team uses SharePoint Online to store contract templates. When a new contract is added to a specific library, a notification should be sent to a Microsoft Teams channel with a direct link to the document. Additionally, the contract owner must receive a custom approval request via email before the document is shared externally. Which Microsoft 365 services must be combined to achieve this?

A.Microsoft Power Automate and Microsoft Teams
B.Microsoft Teams and Microsoft Power Apps
C.Microsoft Forms and Microsoft Teams
D.Microsoft Power BI and Microsoft Teams
AnswerA

Correct. Power Automate enables the workflow (triggered by SharePoint, actions to Teams and email), and Teams receives the notification.

Why this answer

Option A is correct because Microsoft Power Automate can trigger a flow when a new contract is added to a SharePoint Online library, sending a notification with a direct link to a Microsoft Teams channel. Additionally, Power Automate can initiate a custom approval request via email to the contract owner before external sharing is allowed. This combination directly addresses both requirements without needing additional services.

Exam trap

The trap here is that candidates may assume Microsoft Teams alone can handle notifications and approvals, but Teams lacks native workflow automation for SharePoint events, requiring Power Automate as the orchestration layer.

How to eliminate wrong answers

Option B is wrong because Microsoft Power Apps is a low-code platform for building custom apps, not for automating workflows or sending notifications and approvals; it lacks the built-in triggers and actions for SharePoint events and Teams messaging. Option C is wrong because Microsoft Forms is used for creating surveys and quizzes, not for triggering notifications or approval workflows based on SharePoint document events. Option D is wrong because Microsoft Power BI is a business analytics tool for data visualization and reporting, not for workflow automation or real-time notifications.

589
MCQeasy

A company uses a cloud storage service that automatically increases its storage capacity without any manual intervention as new files are added. This behavior is an example of which cloud computing characteristic?

A.On-demand self-service
B.Broad network access
C.Resource pooling
D.Rapid elasticity
AnswerD

Rapid elasticity enables resources to scale automatically in response to demand, which is exactly what the storage service does.

Why this answer

The scenario describes storage capacity automatically increasing as new files are added, which is the essence of rapid elasticity. This cloud characteristic allows resources to scale out and in automatically, often to the point where the user perceives unlimited capacity, without requiring manual provisioning or intervention.

Exam trap

The trap here is that candidates often confuse 'resource pooling' (the multi-tenant sharing of resources) with 'rapid elasticity' (the ability to scale resources up/down automatically), because both involve dynamic allocation, but pooling is about sharing among tenants while elasticity is about scaling for a single tenant's demand.

How to eliminate wrong answers

Option A is wrong because on-demand self-service refers to a user's ability to provision computing resources (e.g., spinning up a VM) through a web portal or API without human interaction with the provider, not the automatic scaling of capacity. Option B is wrong because broad network access describes the ability to access cloud services over standard network protocols (e.g., HTTPS, SSH) from a wide variety of devices (laptops, phones, tablets), not the dynamic adjustment of storage. Option C is wrong because resource pooling means the provider's computing resources are pooled to serve multiple customers using a multi-tenant model, with physical and virtual resources dynamically assigned and reassigned according to demand; it does not describe the automatic increase in capacity for a single customer's storage.

590
MCQhard

A multinational organization with 5,000 users currently has Microsoft 365 E3 licenses. They must comply with a regulation that requires all Exchange Online mailbox data to be retained for 7 years (including deleted items) and the ability to place all mailboxes on litigation hold. They also need to automatically detect and label sensitive content such as passport numbers. What is the minimum licensing addition to meet all these requirements?

A.Microsoft 365 E5 Compliance add-on
B.Microsoft 365 E5 Security add-on
C.Upgrade all users to Microsoft 365 E5
D.Exchange Online Archiving add-on
AnswerA

This add-on includes advanced compliance features: unlimited archiving, retention labels and policies (7-year retention), litigation hold, and auto-labeling with trainable classifiers for sensitive data.

Why this answer

The Microsoft 365 E5 Compliance add-on provides the required capabilities: litigation hold and a 7-year retention policy for Exchange Online mailboxes via Microsoft Purview, plus automatic detection and labeling of sensitive content like passport numbers using sensitivity labels and data loss prevention (DLP) policies. The E3 base license lacks these advanced compliance features, making the E5 Compliance add-on the minimum addition.

Exam trap

The trap here is that candidates often confuse the E5 Security add-on with the E5 Compliance add-on, assuming security features cover compliance needs, but Microsoft separates these into distinct add-ons with different capabilities.

How to eliminate wrong answers

Option B is wrong because the Microsoft 365 E5 Security add-on focuses on security features like Microsoft Defender for Office 365 and identity protection, not on compliance retention, litigation hold, or automatic sensitive content labeling. Option C is wrong because upgrading all users to Microsoft 365 E5 is unnecessary and more expensive; the E5 Compliance add-on provides the exact required features without the full E5 suite. Option D is wrong because Exchange Online Archiving add-on only provides additional mailbox storage and basic retention policies, but it does not include litigation hold, 7-year retention for deleted items, or automatic sensitive content labeling.

591
Multi-Selecteasy

Which TWO Microsoft 365 apps are primarily used for real-time communication and collaboration?

Select 2 answers
A.Microsoft Teams
B.Microsoft Planner
C.Microsoft Forms
D.OneNote
E.Microsoft Viva Engage
AnswersA, E

Teams is a hub for real-time chat, meetings, and collaboration.

Why this answer

Microsoft Teams is primarily designed for real-time communication and collaboration, offering features such as instant messaging, voice and video calls, and persistent chat channels. It integrates deeply with Microsoft 365 to enable synchronous teamwork, making it the core hub for real-time interactions.

Exam trap

The trap here is that candidates may confuse productivity tools (like Planner or OneNote) with communication apps, or mistakenly think Viva Engage (formerly Yammer) is not a real-time collaboration tool, but it is indeed used for enterprise social networking and real-time conversations across the organization.

592
MCQeasy

Refer to the exhibit. A Contoso user tries to send an email containing a credit card number to an external recipient. What will happen?

A.The email is blocked and the user receives a notification.
B.The credit card number is removed and the email is sent.
C.The email is sent and an alert is generated for admin.
D.The email is delivered to the external recipient but placed in quarantine.
AnswerA

The policy blocks access and displays a message.

Why this answer

Option A is correct because the DLP policy enforces blocking of credit card numbers. Option B is wrong because the policy is enforced, not just audit. Option C is wrong because it blocks, not removes.

Option D is wrong because it blocks, not quarantines.

593
MCQeasy

A marketing team needs to create a visually compelling newsletter that can be distributed via email and viewed in a browser. Which Microsoft 365 app should they use?

A.Microsoft Publisher
B.Microsoft PowerPoint
C.Microsoft Word
D.Microsoft Sway
AnswerD

Sway is designed for creating interactive newsletters and reports that can be shared via a link.

Why this answer

Microsoft Sway is the correct choice because it is specifically designed for creating interactive, web-based newsletters and presentations that can be easily shared via a link and viewed in any browser. Unlike traditional desktop publishing tools, Sway uses a responsive design canvas that automatically adapts to different screen sizes, making it ideal for email distribution and browser viewing without requiring recipients to download attachments.

Exam trap

The trap here is that candidates often confuse Microsoft Publisher (a desktop publishing tool) with Sway because both can create visually rich content, but Publisher lacks the web-first, responsive, and browser-based sharing capabilities that the question explicitly requires.

How to eliminate wrong answers

Option A is wrong because Microsoft Publisher is a desktop publishing application focused on print layouts (e.g., brochures, flyers) and does not natively support web-based distribution or responsive browser viewing without manual conversion. Option B is wrong because Microsoft PowerPoint is optimized for slide-based presentations and lacks the fluid, scrollable storytelling format and built-in web publishing features that Sway offers for newsletters. Option C is wrong because Microsoft Word is a word processor designed for documents and print, and while it can be saved as HTML, it does not provide a responsive, interactive web layout or easy browser-based sharing without attachments.

594
MCQmedium

A department head asks which Microsoft 365 option should be used to allow customers to book appointments online based on staff availability. Microsoft 365 app or service is the best fit?

A.Microsoft Planner
B.Microsoft Purview Audit
C.Microsoft Bookings
D.Microsoft Forms
AnswerC

Bookings provides online appointment scheduling and calendar integration.

Why this answer

Microsoft Bookings is the correct choice because it is a Microsoft 365 app specifically designed to allow customers to book appointments online based on staff availability. It integrates with Exchange Online to synchronize staff calendars, manage time slots, and send automated confirmations, making it the ideal solution for scheduling customer-facing appointments.

Exam trap

The trap here is that candidates may confuse Microsoft Bookings with Microsoft Forms, thinking Forms can handle scheduling, but Forms lacks calendar integration and real-time availability checks, which are core to Bookings.

How to eliminate wrong answers

Option A is wrong because Microsoft Planner is a task management tool for organizing team work and projects, not for scheduling customer appointments. Option B is wrong because Microsoft Purview Audit is a compliance and auditing service that logs user and admin activities, not a booking or scheduling tool. Option D is wrong because Microsoft Forms is used to create surveys, quizzes, and polls, not for managing staff availability or customer bookings.

595
MCQmedium

A training department needs to create interactive learning modules that include content pages, quizzes, and surveys. They also need to track completion and results for each learner. Which Microsoft 365 app should they use as the primary authoring tool for the quizzes and surveys?

A.Microsoft Stream
B.Microsoft Forms
C.Microsoft Sway
D.Microsoft Viva Learning
AnswerB

Forms allows creation of quizzes with automatic scoring, surveys, and integrates with SharePoint for embedding in learning modules.

Why this answer

Microsoft Forms is the correct primary authoring tool because it is specifically designed for creating quizzes, surveys, and polls with automatic grading, branching logic, and result tracking. It integrates seamlessly with Microsoft Lists and Power Automate to record completion and results per learner, making it ideal for interactive learning modules.

Exam trap

The trap here is that candidates may confuse Microsoft Forms with Microsoft Sway because both can create interactive content, but Sway lacks quiz/survey functionality and result tracking, which Forms provides natively.

How to eliminate wrong answers

Option A is wrong because Microsoft Stream is a video hosting and sharing platform, not an authoring tool for quizzes or surveys; it lacks native quiz creation and result tracking capabilities. Option C is wrong because Microsoft Sway is a digital storytelling and presentation tool for creating interactive reports and newsletters, but it does not support quiz creation, grading, or survey result tracking. Option D is wrong because Microsoft Viva Learning is a learning hub that aggregates content from various sources (e.g., LinkedIn Learning, SharePoint) but is not an authoring tool; it cannot create quizzes or surveys itself.

596
MCQeasy

While preparing a Microsoft 365 adoption plan, a consultant is asked to add and remove capacity quickly when demand changes. Cloud concept or benefit best matches this requirement?

A.Rapid elasticity
B.Microsoft Planner
C.Data Loss Prevention (DLP)
D.Sensitivity labels
AnswerA

Rapid elasticity is the cloud characteristic that allows resources to scale quickly in response to demand.

Why this answer

Rapid elasticity is a core cloud computing concept defined by NIST (SP 800-145) that allows resources to be provisioned and released elastically, often automatically, to scale rapidly outward and inward commensurate with demand. In Microsoft 365, this means the consultant can quickly add or remove user licenses, storage, or service capacity via the admin center or PowerShell without manual hardware provisioning, directly matching the requirement to adjust capacity on demand.

Exam trap

The trap here is that candidates confuse a specific Microsoft 365 tool (like Planner) with a fundamental cloud characteristic (rapid elasticity), because the question asks for a 'cloud concept or benefit' but lists product names as distractors, testing whether you can distinguish between abstract cloud attributes and concrete service features.

How to eliminate wrong answers

Option B is wrong because Microsoft Planner is a task management and planning tool within Microsoft 365, not a cloud concept or benefit related to scaling capacity. Option C is wrong because Data Loss Prevention (DLP) is a security feature that helps protect sensitive data from being shared inappropriately, not a mechanism for adding or removing capacity. Option D is wrong because sensitivity labels are classification and protection controls for data (e.g., encrypting or marking documents), unrelated to the elastic scaling of cloud resources.

597
MCQmedium

A financial services company uses a public cloud provider for its development and testing environments, but keeps its production data and applications on-premises due to strict regulatory requirements. Which cloud deployment model is the company using?

A.Hybrid cloud
B.Public cloud
C.Private cloud
D.Community cloud
AnswerA

Correct. The company uses both public cloud (dev/test) and on-premises (production), which is the definition of hybrid cloud.

Why this answer

The company uses a hybrid cloud model because it combines on-premises infrastructure (private cloud) for production workloads with a public cloud provider for development and testing. This allows the organization to meet strict regulatory requirements for data residency and security while leveraging the scalability and cost benefits of the public cloud for non-sensitive workloads.

Exam trap

The trap here is that candidates may confuse 'hybrid cloud' with 'public cloud' because the company uses a public provider, but the key distinction is the combination of on-premises and public resources, not exclusive use of one.

How to eliminate wrong answers

Option B (Public cloud) is wrong because the company keeps production data and applications on-premises, not entirely in the public cloud; a pure public cloud model would have all workloads hosted by a third-party provider. Option C (Private cloud) is wrong because the company uses a public cloud provider for development and testing, which is not part of a solely private cloud deployment. Option D (Community cloud) is wrong because the infrastructure is not shared among multiple organizations with common concerns (e.g., regulatory compliance); instead, it is a mix of private and public resources tailored to a single organization.

598
Multi-Selecteasy

Which TWO Microsoft 365 apps can be used to create and edit documents collaboratively in real time? (Select exactly 2.)

Select 2 answers
A.Microsoft Teams
B.Outlook on the web
C.Access for the web
D.Word for the web
E.OneNote for the web
AnswersD, E

Word for the web allows real-time co-authoring.

Why this answer

Word for the web and OneNote for the web are both part of the Microsoft 365 web apps suite that support real-time co-authoring. They leverage the Office Online Server infrastructure and the Fluid Framework to allow multiple users to edit the same document simultaneously, with changes syncing via WebSocket connections and operational transforms.

Exam trap

The trap here is that candidates often confuse Microsoft Teams as a document editing app because it allows file sharing and preview, but it does not natively provide the real-time collaborative editing capability; that is a feature of the web versions of Office apps like Word and OneNote.

599
MCQeasy

An organization needs to automatically delete Microsoft Teams chat messages after 90 days to comply with a data minimization policy. Which Microsoft Purview feature should they use?

A.Data Loss Prevention (DLP)
B.Retention policies
C.Communication Compliance
D.Information Barriers
AnswerB

Retention policies allow you to define how long content is retained and when it is automatically deleted.

Why this answer

Retention policies in Microsoft Purview are designed to either retain data for a specified period, delete it after that period, or both. For Microsoft Teams chat messages, a retention policy can be configured to automatically delete messages after 90 days, directly supporting a data minimization policy. This is the correct feature because it provides time-based deletion for compliance requirements.

Exam trap

The trap here is that candidates often confuse retention policies (which manage data lifecycle and deletion) with Data Loss Prevention (DLP), assuming DLP can also delete data after a period, but DLP only blocks or alerts on data in motion, not on scheduled deletion.

How to eliminate wrong answers

Option A is wrong because Data Loss Prevention (DLP) policies are used to detect and prevent the accidental sharing of sensitive information (e.g., credit card numbers) through rules and actions like blocking or warning users, not for scheduling automatic deletion of messages after a set time. Option C is wrong because Communication Compliance is designed to monitor communications for policy violations (e.g., harassment, insider trading) by analyzing messages and flagging them for review, not for enforcing retention or deletion schedules. Option D is wrong because Information Barriers are used to restrict communication and collaboration between specific groups (e.g., to prevent conflicts of interest), not to manage data lifecycle or deletion timelines.

600
MCQmedium

A tenant administrator is advising a department that wants to web/mobile Office apps, business email, Teams, OneDrive, and SharePoint, but not desktop Office apps. Microsoft 365 licensing, admin, or support concept is most relevant?

A.Microsoft Stream
B.Microsoft Whiteboard
C.Microsoft Forms
D.Microsoft 365 Business Basic
AnswerD

Business Basic provides core cloud services and web/mobile apps without desktop Office apps.

Why this answer

Business Basic provides core cloud services and web/mobile apps without desktop Office apps.

Exam trap

Candidates might be tempted by other Microsoft 365 plans if they don't carefully note the 'not desktop Office apps' constraint.

Page 7

Page 8 of 14

Page 9