callicon +1 210-504-8191
whatsAppIcon +1 210-504-8191
emailIcon info@koenig-solutions.com
koenig-logo
logo-30-years
Login
koenig-logo
+1 210-504-8191
+1 210-504-8191

MS-101: Microsoft 365 Mobility and Security Quiz Questions and Answers

Answer :
  • From the Security and Compliance admin centre, create a data loss prevention ( DLP ) policy.

Explanation :

A DLP policy contains a few basic things: Where to protect the content: locations such as Exchange Online, SharePoint Online, and OneDrive for Business sites, as well as Microsoft Teams chat and channel messages. When and how to protect the content by enforcing rules comprised of: Conditions the content must match before the rule is enforced. For example, a rule might be configured to look only for content containing Social Security numbers that's been shared with people outside your organization. Actions that you want the rule to take automatically when content matching the conditions is found. For example, a rule might be configured to block access to a document and send both the user and compliance officer an email notification. References: https://docs.microsoft.com/en-us/microsoft-365/compliance/data-loss-prevention-policies
Answer :
  • Mark items as a record

Explanation :

Organizations of all types require a records-management solution to manage regulatory, legal, and business-critical records across their corporate data. Records management in Microsoft 365 helps an organization manage their legal obligations, provides the ability to demonstrate compliance with regulations, and increases efficiency with regular disposition of items that are no longer required to be retained, no longer of value, or no longer required for business purposes. To declare documents and emails as records, you use retention labels that mark the content as a record or a regulatory record
Answer :
  • From Power Query Editor, transform the JSON data.

Explanation :

After you search the Office 365 audit log and download the search results to a CSV file, the file contains a column named AuditData, which contains additional information about each event. The data in this column is formatted as a JSON object, which contains multiple properties that are configured as property:value pairs separated by commas. You can use the JSON transform feature in the Power Query Editor in Excel to split each property in the JSON object in the AuditData column into multiple columns so that each property has its own column. This lets you sort and filter on one or more of these properties.
Answer :
  • From Windows PowerShell, enable the super user feature and assign the role to SecAdmin1

Explanation :

The super user feature of the Azure Rights Management service from Azure Information Protection ensures that authorized people and services can always read and inspect the data that Azure Rights Management protects for your organization. However, the super user feature is not enabled by default. The PowerShell cmdlet Enable-AadrmSuperUserFeature is used to manually enable the super user feature.
Answer :
  • Offboard the test devices

Explanation :

When onboarding Windows Defender ATP for the first time, you can choose to store your data in Microsoft Azure datacenters in the European Union, the United Kingdom, or the United States. Once configured, you cannot change the location where your data is stored.The only way to change the location is to offboard the test devices then onboard them again with the new location.
Answer :
  • Run the GenConnectorConfig.ps1 script.

Explanation :

If you want to use the server configuration tool for the RMS connector, to automate the configuration of registry settings on your on-premises servers, download and run the GenConnectorConfig.ps1 script. https://docs.microsoft.com/en-us/azure/information-protection/install-configure-rms-connector#installing-the-rms-connector
Answer :
  • Deploy an Azure ATP standalone sensor, and then configure port mirroring.

Explanation :

We cannot install additional software on the domain controllers. Azure ATP Standalone Sensor is a full agent installed on a dedicated server that can monitor traffic from multiple domain controllers. This is an alternative to those that do not wish to install an agent directly on a domain controller.
Answer :
  • Deploy a Microsoft Defender for Identity standalone sensor, and then configure port mirroring.

Explanation :

We cannot install additional software on the domain controllers. Azure ATP Standalone Sensor is a full agent installed on a dedicated server that can monitor traffic from multiple domain controllers. This is an alternative to those that do not wish to install an agent directly on a domain controller.
Answer :
  • Create an assessment based on the EU GDPR assessment template

Explanation :

https://docs.microsoft.com/en-us/compliance/regulatory/gdpr#data-protection-impact-assessment https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-manager-templates-list?view=o365-worldwide
Answer :
  • Yes

Explanation :

The Compliance administrator has read-only permissions and can manage alerts, can create and modify file policies, allow file governance actions, and view all the built-in reports under Data Management, but cannot access Security recommendations for cloud platforms.