Microsoft Azure

Endpoint Administrator

MD-102

Demonstrate your skills as an Endpoint Administrator with the MD-102 exam.

150 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 101–110 of 150

Q101

A company needs to ensure that users can only access applications from compliant devices. Which Azure feature should they implement?

  • A Conditional Access
  • B Role-Based Access Control
  • C Azure Key Vault
  • D Network Security Groups
Explanation Conditional Access policies control access based on device compliance, unlike the others.
Q102

What happens when you delete a user from Azure AD while they are associated with a Microsoft 365 license?

  • A All their data gets deleted immediately
  • B The license is automatically unassigned
  • C The user is suspended, not deleted
  • D Active Directory remains unchanged
Explanation The associated license is unassigned automatically, while the others are incorrect statements about the deletion process.
Q103

Which service is used to enforce policies across Azure resources?

  • A Azure Policy
  • B Azure Monitor
  • C Azure Advisor
  • D Azure Sentinel
Explanation Azure Policy allows enforcement of resource policies, while others provide monitoring and advisory functionalities.
Q104

A company needs to share a large data file securely with external clients. What is the best method using Azure services?

  • A Azure Blob Storage with Shared Access Signature
  • B Azure Files with VPN access
  • C Azure Table Storage with API keys
  • D Azure Queue Storage with connection strings
Explanation Azure Blob Storage with Shared Access Signature provides a secure method for sharing files, unlike the other methods which may not be optimized for file sharing.
Q105

You are configuring Multi-Factor Authentication (MFA) for users. What happens if a user fails to approve the MFA prompt during sign-in?

  • A User is locked out permanently
  • B User can attempt sign-in again
  • C User may access limited resources
  • D User is signed in as guest
Explanation If MFA approval fails, the user can attempt the sign-in process again, while the other options misrepresent the process outcomes.
Q106

Which service is used to manage mobile device applications in Azure?

  • A Microsoft Intune
  • B Azure DevOps
  • C Windows Virtual Desktop
  • D Azure Functions
Explanation Microsoft Intune is dedicated to application management, unlike the other options, which serve different purposes.
Q107

A company needs to restrict access to sensitive data in Azure. What should you configure?

  • A Azure Active Directory Groups
  • B Azure Blob Storage
  • C Network Security Group Rules
  • D Resource Locks
Explanation Azure Active Directory Groups are ideal for managing user permissions on sensitive data, unlike the other options, which handle different access scenarios.
Q108

You are configuring a conditional access policy. What happens if a user is outside the required network conditions?

  • A Access is always granted
  • B Access is conditionally granted
  • C Access is blocked by default
  • D User can bypass with MFA
Explanation Access is generally blocked unless specific exceptions are defined, making remote access contingent on other conditions.
Q109

A company needs to automate device compliance checks. Which Azure service should they use?

  • A Microsoft Endpoint Manager
  • B Azure DevOps
  • C Azure Functions
  • D Azure Logic Apps
Explanation Microsoft Endpoint Manager automates compliance checks; others do not focus on device management.
Q110

What happens when you enable Windows Autopilot for a device?

  • A User data is erased
  • B Device joins Azure AD
  • C Device becomes ineligible for MDM
  • D Windows updates are disabled
Explanation Windows Autopilot joins devices to Azure AD automatically; the other options are incorrect outcomes.