Microsoft Azure

Endpoint Administrator

MD-102

Demonstrate your skills as an Endpoint Administrator with the MD-102 exam.

150 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 81–90 of 150

Q81

You are configuring a Windows 10 device using Intune. What happens when you assign a device compliance policy but the device does not meet the requirements?

  • A User access is revoked immediately
  • B Device is marked as non-compliant
  • C Intune removes all data
  • D Nothing happens until a reboot
Explanation The device is marked as non-compliant; the other options misrepresent Intune's compliance handling.
Q82

Which Azure service provides disk encryption for VMs?

  • A Azure Disk Encryption
  • B Azure Backup
  • C Azure Security Center
  • D Azure Site Recovery
Explanation Azure Disk Encryption specifically encrypts VM disks, while the others serve different purposes.
Q83

A company needs to manage endpoints with conditional access policies. Which Azure service should they use?

  • A Microsoft Intune
  • B Azure AD Conditional Access
  • C Azure Information Protection
  • D Azure Security Center
Explanation Azure AD Conditional Access manages policies, while Intune focuses on mobile device management.
Q84

What happens when you delete an Azure Policy definition?

  • A All assignments are also deleted.
  • B The policy definition is moved to trash.
  • C Existing assignments remain effective.
  • D Non-compliance starts to incur costs.
Explanation Deleting a policy definition does not affect existing assignments, which remain effective.
Q85

Which service allows managing access to applications in Azure?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure Logic Apps
Explanation Azure Active Directory manages user access, while others focus on storage or application processing.
Q86

A company needs to enforce Multi-Factor Authentication (MFA) on its web applications. What is the recommended approach?

  • A Disable all user accounts
  • B Use Azure AD Conditional Access
  • C Implement Network Security Groups
  • D Require user password resets
Explanation Azure AD Conditional Access allows MFA enforcement, while the others do not relate to MFA management.
Q87

What happens when a user attempts to access a resource without proper role assignment in Azure?

  • A Access is allowed automatically
  • B Access is denied
  • C Access is throttled
  • D User gains temporary access
Explanation Access without proper role assignment is denied for security purposes.
Q88

A company needs to manage user access to Azure resources based on their job role. Which Azure service should they use?

  • A Azure Active Directory
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure Virtual Machines
Explanation Azure Active Directory provides role-based access control, unlike the other options which do not manage user access.
Q89

You are configuring a group policy for your Azure AD domain. What limitation should you be aware of?

  • A Limited to 200 policies
  • B Cannot apply to external users
  • C Requires Azure Government subscription
  • D Only applies during business hours
Explanation Group policies do not apply to external users; other options presented are incorrect limitations.
Q90

What happens when you enroll a device in Microsoft Intune?

  • A Device loses all local data
  • B User gains full admin rights
  • C Configuration profiles may be applied
  • D Device automatically joins Azure AD
Explanation Configuration profiles are applied to enrolled devices, while other options assume incorrect implications of enrollment.