Microsoft Azure

Endpoint Administrator

MD-102

Demonstrate your skills as an Endpoint Administrator with the MD-102 exam.

150 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 71–80 of 150

Q71

A company needs to manage user identities in Azure. Which service should they use?

  • A Azure Active Directory
  • B Azure Key Vault
  • C Azure Security Center
  • D Azure Monitor
Explanation Azure Active Directory is designed for identity management; the others serve different purposes.
Q72

What happens when you assign a role to a user at the resource group level?

  • A User gets permissions for all resources
  • B User loses all permissions
  • C Only specified resources receive permissions
  • D Inherits permissions from underlying resources
Explanation Assigning a role at the resource group level grants permissions to all contained resources; other options misrepresent permissions behavior.
Q73

Which service is designed for endpoint management in Azure?

  • A Microsoft Intune
  • B Azure DevOps
  • C Azure Functions
  • D Azure Blob Storage
Explanation Microsoft Intune is specifically for managing endpoints, while others serve different purposes.
Q74

A company needs to implement conditional access for remote users. What should they configure?

  • A VPN connections
  • B Network Security Groups
  • C Azure AD Conditional Access
  • D Multi-Factor Authentication
Explanation Azure AD Conditional Access allows managing access based on conditions, unlike other options which do not control access policies directly.
Q75

What happens when a device is enrolled in Auto Enrollment?

  • A It gets automatically configured.
  • B It receives updates immediately.
  • C It does not apply security policies.
  • D It will fail to connect to Azure.
Explanation Devices enrolled in Auto Enrollment get auto-configured for policies, while other options do not reflect the enrollment's purpose.
Q76

Which Azure service allows for centralized policy enforcement across resources?

  • A Azure Policy
  • B Azure Monitor
  • C Azure Automation
  • D Azure Resource Manager
Explanation Azure Policy enforces rules and effects on resources, while others don't focus on policy enforcement.
Q77

A company needs to provide employees with secure remote access to applications. What should they implement?

  • A Azure File Sync
  • B Azure Bastion
  • C Azure Virtual Network
  • D Azure Front Door
Explanation Azure Bastion provides secure RDP/SSH without exposing VMs directly to the internet, while the others serve different purposes.
Q78

You are configuring user settings for Azure Active Directory (AAD). What will happen if you set a user as a guest?

  • A Full administrative rights granted
  • B Only limited access to resources
  • C Immediate removal from AAD
  • D User can send emails to all users
Explanation Guests have limited access to resources compared to regular users, which is typical for external users.
Q79

Which Azure service provides integrated identity and access management?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Virtual Machines
  • D Azure SQL Database
Explanation Azure Active Directory is designed for identity management; the others serve different purposes.
Q80

A company needs to secure its network to prevent unauthorized access to Azure resources. What should you implement?

  • A Azure Traffic Manager
  • B Network Security Groups
  • C Azure Logic Apps
  • D Azure Cosmos DB
Explanation Network Security Groups provide access control; the other options don't focus on network security.