Microsoft Azure

Microsoft 365 Administrator

MS-102
Popular

Validate your expertise in Microsoft 365 with the MS-102 exam.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 131–140 of 147

Q131

A company needs to restrict access to Azure resources based on user location. What should they implement?

  • A Role-Based Access Control
  • B Network Security Groups
  • C Conditional Access Policies
  • D Azure Firewall
Explanation Conditional Access Policies enforce access restrictions based on location, unlike the other options which focus on permissions or network controls.
Q132

You are configuring a backup for an Azure VM. What happens if you set a backup frequency of daily and retention of 7 days?

  • A Backups will save for 30 days
  • B Only 7 backups stored at once
  • C Backups will delete after 14 days
  • D All backups remain indefinitely
Explanation With daily backups and a retention of 7 days, only the last 7 backups are kept, others are deleted. Only options A and C misinterpret retention settings.
Q133

Which service would you use for automating the deployment of Azure resources?

  • A Azure DevOps
  • B Azure Logic Apps
  • C Azure Resource Manager
  • D Azure Functions
Explanation Azure Resource Manager provides infrastructure as code capabilities, while others focus on different functionalities.
Q134

A company needs to ensure that only specific users can access documents in SharePoint. What should they configure?

  • A Item-level permissions
  • B Site Collections
  • C External Sharing Settings
  • D Version History
Explanation Item-level permissions allow for granular security on documents, while others don't control specific user access.
Q135

You are configuring a virtual network in Azure. What happens when you enable DDoS Protection?

  • A Increased latency for all traffic
  • B Monitoring and protection against attacks
  • C VNet becomes publicly accessible
  • D All traffic is redirected to a gateway
Explanation Enabling DDoS Protection provides monitoring and safeguards against denial-of-service attacks, unlike the other options.
Q136

Which service is used for automating cloud resource management in Azure?

  • A Azure Automation
  • B Azure Monitor
  • C Azure Functions
  • D Azure Resource Manager
Explanation Azure Automation simplifies cloud resource management through automation, while the others serve different functions.
Q137

A company needs to secure an application that uses multi-factor authentication (MFA) for user access. What should you implement?

  • A Conditional Access Policies
  • B Role-Based Access Control
  • C Privileged Identity Management
  • D Application Proxy
Explanation Conditional Access Policies can enforce MFA as a requirement for user access, while the others focus on different security aspects.
Q138

You are configuring a self-service password reset (SSPR) for your Azure Active Directory. What happens if a user incorrectly answers security questions three times?

  • A Account locked out for 30 minutes
  • B User is prompted to call IT
  • C SSPR process resets automatically
  • D User cannot use SSPR again
Explanation The account gets locked out temporarily for security reasons, while the other options do not reflect the actual behavior.
Q139

Which service can be used to automate the deployment of resources in Azure?

  • A Azure Resource Manager
  • B Microsoft Teams
  • C Azure AD
  • D Microsoft Endpoint Manager
Explanation Azure Resource Manager automates resource deployment; the others are not provisioning tools.
Q140

A company needs to ensure secure access to company resources based on the user's location. What should they configure?

  • A Conditional Access Policies
  • B Network Security Groups
  • C Virtual Private Network
  • D Role-Based Access Control
Explanation Conditional Access Policies control based on user location; the others are unrelated to user location security.