[Jan-2022] MS-500 Exam Questions and Valid MS-500 Dumps PDF
MS-500 Brain Dump: A Study Guide with Tips & Tricks for passing Exam
After that, you should understand which resources to adopt during preparation. Therefore, check some of the following options which are available to candidate for the Microsoft MS-500 exam:
- Practice tests. The practice is the key to success. Developing your skills on sample tests is the one thing you can do to increase your chances. On the Internet, you can even find free sample tests to help you better understand the structure of the MS-500 exam, and be at your best on the real test by practicing them in almost the real exam environment and defining your weak areas. However, use only actual and authentic preparation tools, as well as the most updated tests even if they come at a small price.
- Official resources. The Microsoft official site is a good way to learn more about the MS-500 exam. There are many training methods or resources available on its platform. Microsoft provides tons of materials to prepare for the exam such as outline, study materials, types of questions possibly faced, and the established rules to follow when writing a test, to mention a few. You can even enroll in the training courses and study with a certified instructor, if you choose Course MS-500T00-A: Microsoft 365 Security Administration. It is a four-day paid course for learners experienced with Windows 10 devices and Microsoft 365, as well as a basic understanding of Microsoft Azure and computer networks. All 12 modules consist of lectures and labs, through which students will learn how to administer access in Microsoft 365 and manage Azure Identity Protection and implement Azure AD Connect. This course is an excellent way to gain confident skills and expertise with identity, information and threat protection, data governance, and security management.Besides, to become certified or just to broaden your horizons, Microsoft offers a completely free online course - Self-paced online training. Through short lessons, anyone interested in developing better skills in using Microsoft 365 services to protect identity, access, and enterprise information. And the check test in each module will help the candidate track his/her progress, and identify the study areas that should be improved.As a part of the route towards your expertise in IT safety skills, this website is a good point to start. And each course offered will allow you to gain theoretical and hands-on experience necessary to pass the Microsoft MS-500 exam with flying colors.
- Books and exam guides. Hands-on experience is essential, but you can greatly increase your chances of passing the exam with the help of books and tutorials, which can be found on Amazon.
- ‘Microsoft 365 Security Administration: MS-500 Exam Guide: Plan and implement security and compliance strategies for Microsoft 365 and hybrid environments 1st Edition’ by Peter Rising. The book is intended for IT professionals, administrators wishing to build a career in Security Administration and earn the Microsoft associate-level badge. The author of this book, Peter Rising, with 25 years of experience in IT, has passed numerous Microsoft certification exams, including Microsoft 365: Security Administrator Associate. On this basis, this guide can be seen as a valuable resource of the current information, valuable tips, real-world questions, and scenarios. As a result, you will learn how to employ and manage threat protection and will get to grips with the administration and configuration of Microsoft 365 for a flawless passing of the MS-500 exam.
- ‘Exam Ref MS-500 Microsoft 365 Security Administration with Practice Test’ by Fisher Ed and Chamberlain Nate - is the official study guide direct from Microsoft, the creator of Microsoft certification exams. It is designed for candidates with professional IT experience to enhance their productivity and help embed the acquired skills into their workflow. The book is divided into chapters that fully correspond to the subject area of the MS-500 exam and cover all of its objectives – learn how to implement and manage information, identify, access, and threat protection, as well as to perform all features in Microsoft 365.
Microsoft MS-500 and Important Details
Considering the fact that this is an associate-level certification test, it is not required but optional to have some prior experience working in the Microsoft 365 sector and some background knowledge of Microsoft 365 workloads. To better understand the exam content, you may have some experience with threat, information, and identity protection, as well as the skills in data governance and security management.
Besides knowing how to use the Microsoft 365 and hybrid environments, it is important for a potential candidate to be familiar with compliance and security solutions and the ways of implementing, managing, and monitoring them. All of these details are covered in the exam topics, so you need to be ready that your skills in securing the Microsoft 365 enterprise environments, enforcing data governance, responding to threats, as well as performing investigations will also be evaluated. If there is a need, you can start getting acquainted with the Microsoft 365 track by first taking the MS-900 test.
For more info visit:
Microsoft MS-500 Exam Reference
NEW QUESTION 59
You have a Microsoft 365 subscription that uses a default name of litwareinc.com.
You configure the Sharing settings in Microsoft OneDrive as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/onedrive/manage-sharing
NEW QUESTION 60
You plan to configure an access review to meet the security requirements for the workload administrators. You create an access review policy and specify the scope and a group.
Which other settings should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 61
Your company has a Microsoft 365 subscription, a Microsoft Azure subscription, and an Azure Active Directory (Azure AD) tenant named contoso.com.
The company has the offices shown in the following table.
The tenant contains the users shown in the following table.
You create the Microsoft Cloud App Security policy shown in the following exhibit.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 62
You have a Microsoft 365 subscription that uses a default domain name of contoso.com.
Microsoft Azure Active Directory (Azure AD) contains the users shown in the following table.
Microsoft Intune has two devices enrolled as shown in the following table:
Both devices have three apps named App1, App2, and App3 installed.
You create an app protection policy named ProtectionPolicy1 that has the following settings:
* Protected apps: App1
* Exempt apps: App2
* Windows Information Protection mode: Block
You apply ProtectionPolicy1 to Group1 and Group3. You exclude Group2 from ProtectionPolicy1.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION 63
You have a Microsoft 365 subscription.
You identify the following data loss prevention (DLP) requirements:
* Send notifications to users if they attempt to send attachments that contain EU social security numbers
* Prevent any email messages that contain credit card numbers from being sent outside your organization
* Block the external sharing of Microsoft OneDrive content that contains EU passport numbers
* Send administrators email alerts if any rule matches occur.
What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 64
You need to ensure that administrators can publish a label that adds a footer to email messages and documents.
To complete this task, sign in to the Microsoft Office 365 portal.
Answer:
Explanation:
See explanation below.
Explanation
You need to configure a Sensitivity label.
* Go to the Security & Compliance Admin Center.
* Navigate to Classification >
* Click on + Create a label to create a new label.
* Give the label a name and description then click
* Leave the Encryption option as
* On the Content Marking page, tick the checkbox
* Click the Customize Text link and add the footer text and click Save (for the question, it doesn't matter what text you add).
* Click Next.
* Leave the Auto-labeling for Office apps off and click Next.
* Click the Submit button to save your changes.
* The label is now ready to be published. Click the Done button to exit the page and create the label.
NEW QUESTION 65
You have a Microsoft 365 subscription.
You create an Advanced Threat Protection (ATP) safe attachments policy.
You need to configure the retention duration for the attachments in quarantine.
Which type of threat management policy should you create?
- A. Anti-spam
- B. DKIM
- C. ATP anti-phishing
- D. Anti-malware
Answer: A
Explanation:
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/manage-quarantined-messages- and-files#BKMK_ModQuarantineTime
NEW QUESTION 66
You need to implement Windows Defender ATP to meet the security requirements. What should you do?
- A. Download and install the Microsoft Monitoring Agent
- B. Create the ForceDefenderPassiveMode registry setting
- C. Run WindowsDefenderATPOnboardingScript.cmd
- D. Configure port mirroring
Answer: A
Explanation:
Topic 1, Litware, Inc
Overview
Litware, Inc. is a financial company that has 1,000 users in its main office in Chicago and 100 users in a branch office in San Francisco.
Existing Environment
Internal Network Infrastructure
The network contains a single domain forest. The forest functional level is Windows Server 2016.
Users are subject to sign-in hour restrictions as defined in Active Directory.
The network has the IP address range shown in the following table.
The offices connect by using Multiprotocol Label Switching (MPLS).
The following operating systems are used on the network:
* Windows Server 2016
* Windows 10 Enterprise
* Windows 8.1 Enterprise
The internal network contains the systems shown in the following table.
Litware uses a third-party email system.
Cloud Infrastructure
Litware recently purchased Microsoft 365 subscription licenses for all users.
Microsoft Azure Active Directory (Azure AD) Connect is installed and uses the default authentication settings.
User accounts are not yet synced to Azure AD.
You have the Microsoft 365 users and groups shown in the following table.
Planned Changes
Litware plans to implement the following changes:
* Migrate the email system to Microsoft Exchange Online
* Implement Azure AD Privileged Identity Management
Security Requirements
Litware identities the following security requirements:
* Create a group named Group2 that will include all the Azure AD user accounts. Group2 will be used to provide limited access to Windows Analytics
* Create a group named Group3 that will be used to apply Azure Information Protection policies to pilot users. Group3 must only contain user accounts
* Use Azure Advanced Threat Protection (ATP) to detect any security threats that target the forest
* Prevent users locked out of Active Directory from signing in to Azure AD and Active Directory
* Implement a permanent eligible assignment of the Compliance administrator role for User1
* Integrate Windows Defender and Windows Defender ATP on domain-joined servers
* Prevent access to Azure resources for the guest user accounts by default
* Ensure that all domain-joined computers are registered to Azure AD
Multi-factor authentication (MFA) Requirements
Security features of Microsoft Office 365 and Azure will be tested by using pilot Azure user accounts.
You identify the following requirements for testing MFA.
* Pilot users must use MFA unless they are signing in from the internal network of the Chicago office.
MFA must NOT be used on the Chicago office internal network.
* If an authentication attempt is suspicious, MFA must be used, regardless of the user location
* Any disruption of legitimate authentication attempts must be minimized General Requirements Litware want to minimize the deployment of additional servers and services in the Active Directory forest.
NEW QUESTION 67
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an on-premises Active Directory domain named contoso.com.
You install and run Azure AD Connect on a server named Server1 that runs Windows Server.
You need to view Azure AD Connect events.
You use the Application event log on Server1.
Does that meet the goal?
- A. No
- B. Yes
Answer: B
Explanation:
Explanation/Reference:
References:
https://support.pingidentity.com/s/article/PingOne-How-to-troubleshoot-an-AD-Connect-Instance
NEW QUESTION 68
Note: This question is part of series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 E5 subscription that is associated to a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
You use Active Directory Federation Services (AD FS) to federate on-premises Active Directory and the tenant.
Azure AD Connect has the following settings:
* Source Anchor: objectGUID
* Password Hash Synchronization: Disabled
* Password writeback: Disabled
* Directory extension attribute sync: Disabled
* Azure AD app and attribute filtering: Disabled
* Exchange hybrid deployment: Disabled
* User writeback: Disabled
You need to ensure that you can use leaked credentials detection in Azure AD Identity Protection.
Solution: You modify the Azure AD app and attribute filtering settings.
Does that meet the goal?
- A. No
- B. Yes
Answer: A
NEW QUESTION 69
You have a Microsoft 365 E5 subscription.
You plan to create a conditional access policy named Policy1.
You need to be able to use the sign-in risk level condition in Policy1.
What should you do first?
- A. From the Azure Active Directory admin center, configure the Diagnostics settings.
- B. Onboard Azure Active Directory (Azure AD) Identity Protection.
- C. Connect Microsoft Endpoint Manager and Microsoft Defender for Endpoint.
- D. From the Endpoint Management admin center, create a device compliance policy.
Answer: B
Explanation:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-risk
NEW QUESTION 70
Your company has 500 computers.
You plan to protect the computers by using Windows Defender Advanced Threat Protection (Windows Defender ATP). Twenty of the computers belong to company executives.
You need to recommend a remediation solution that meets the following requirements:
* Windows Defender ATP administrators must manually approve all remediation for the executives
* Remediation must occur automatically for all other users
What should you recommend doing from Windows Defender Security Center?
- A. Configure two alert notification rules
- B. Download an offboarding package for the computers of the 20 executives
- C. Create two machine groups
- D. Configure 20 system exclusions on automation allowed/block lists
Answer: C
Explanation:
Explanation/Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-atp/machine-groups- windows-defender-advanced-threat-protection
NEW QUESTION 71
You need to create a policy that identifies content in Microsoft OneDrive that contains credit card numbers.
To complete this task, sign in to the Microsoft 365 portal.
Answer:
Explanation:
See explanation below.
Explanation
You need to configure auto-labeling in 'simulation' mode. In the policy, you can select the 'Credit Card' sensitive info type.
* In the Microsoft 365 compliance center, navigate to sensitivity labels:
Solutions > Information protection
* Select the Auto-labeling (preview)
* Select + Create policy.
* For the page Choose info you want this label applied to: Select one of the templates, such as Financial or Privacy. You can refine your search by using the Show options for dropdown. Or, select Custom policy if the templates don't meet your requirements. Select
* For the page Name your auto-labeling policy: Provide a unique name, and optionally a description to help identify the automatically applied label, locations, and conditions that identify the content to label.
* For the page Choose locations where you want to apply the label: Select OneDrive. Then select Next.
* For the Define policy settings Find content that contains to define rules that identify content to label across all your selected locations. The rules use conditions that include sensitive information types and sharing options. For sensitive information types, you can select both built-in and custom sensitive information types.
* Then select Next.
* For the Set up rules to define what content is labeled page: Select + Create rule and then select Next.
* On the Create rule page, name and define your rule, using sensitive information types and then select Save.
* Click Next.
* For the Choose a label to auto-apply page: Select + Choose a label, select a label from the Choose a sensitivity label pane, and then select Next.
* For the Decide if you want to run policy simulation now or later page: Select Run policy in simulation mode if you're ready to run the auto-labeling policy now, in simulation mode. Otherwise, select Leave policy turned off. Select Next.
* For the Summary page: Review the configuration of your auto-labeling policy and make any changes
* that needed, and complete the wizard.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-wo
NEW QUESTION 72
How should you configure Azure AD Connect? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 73
あなたの会社はMicrosoft AzureのAdvanced Threat Protection(ATP)を使用しています。
Sensor1という名前のAzure ATPセンサーに対する更新の遅延展開を有効にします。
Azure ATPクラウドサービスが更新されてからSensor1が更新されるまでの期間
- A. 24時間
- B. 12時間
- C. 7日
- D. 48時間
- E. 1時間
Answer: A
Explanation:
説明/参照:
Explanation:
注:遅延期間は24時間でした。 ATPリリース2.62では、24時間の遅延期間が延長されました
72時間まで。
NEW QUESTION 74
You have a Microsoft 365 E5 subscription.
All computers run Windows 10 and are onboarded to Windows Defender Advanced Threat Protection (Windows Defender ATP).
You create a Windows Defender machine group named MachineGroupl.
You need to enable delegation for the security settings of the computers in MachineGroupl.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Explanation:
Explanation
NEW QUESTION 75
You are evaluating which devices are compliant in Intune.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation
NEW QUESTION 76
You have a Microsoft 365 subscription.
You create and run a content search from the Security & Compliance admin center.
You need to download the results of the content search.
What should you obtain first?
- A. a password
- B. a pin
- C. an export key
- D. a certificate
Answer: C
Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/office365/securitycompliance/export-search-results
NEW QUESTION 77
You have the Microsoft conditions shown in the following table.
You have the Azure Information Protection labels shown in the following table.
You have the Azure Information Protection policies shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Answer:
Explanation:
Explanation
NEW QUESTION 78
Your company has a Microsoft 365 subscription that includes a user named User1.
You suspect that User1 sent email messages to a competitor detailing company secrets.
You need to recommend a solution to ensure that you can review any email messages sent by User1 to the competitor, including sent items that were deleted.
What should you include in the recommendation?
- A. Enable In-Place Archiving for the mailbox of User1
- B. From the Security & Compliance, perform a content search of the mailbox of User1
- C. Configure message delivery restrictions for the mailbox of User1
- D. Place a Litigation Hold on the mailbox of User1
Answer: D
NEW QUESTION 79
You have a Microsoft 365 E5 subscription.
You implement Advanced Threat Protection (ATP) safe attachments policies for all users.
User reports that email messages containing attachments take longer than expected to be received.
You need to reduce the amount of time it takes to receive email messages that contain attachments. The solution must ensure that all attachments are scanned for malware. Attachments that have malware must be blocked.
What should you do from ATP?
- A. Add a condition
- B. Set the action to Dynamic Delivery
- C. Add an exception
- D. Set the action to Block
Answer: B
Explanation:
Explanation/Reference:
Reference:
https://docs.microsoft.com/en-us/office365/securitycompliance/dynamic-delivery-and-previewing
NEW QUESTION 80
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
Username and password
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username:
admin@[email protected]
Microsoft 365 Password: #HSP.ug?$p6un
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The following information is for technical support only:
Lab instance: 11122308








You need to create an eDiscovery case that places a hold on the mailbox of a user named Allan Deyoung. The hold must retain email messages that have a subject containing the word merger or the word Contoso.
To complete this task, sign in to the Microsoft 365 admin center.
Answer:
Explanation:
See explanation below.
Explanation
1. Navigate to eDiscovery in the Security & Compliance Center, and then click Create a case.
2. On the New Case page, give the case a name, type an optional description, and then click Save. The case name must be unique in your organization.
The new case is displayed in the list of cases on the page. You can hover the cursor over a case name to display information about the case, including the status of the case (Active or Closed), the description of the case (that was created in the previous step), and when the case was changed last and who changed it.
To create a hold for an eDiscovery case:
1. In the Security & Compliance Center, click to display the list of cases in your organization.
2. Click Open next to the case that you want to create the holds in.
3. On the Home page for the case, click the Hold tab.
4. On the Hold page, click Create.
5. On the Name your hold page, give the hold a name. The name of the hold must be unique in your organization.
6. (Optional) In the Description box, add a description of the hold.
7. Click Next.
8. Choose the content locations that you want to place on hold. You can place mailboxes, sites, and public folders on hold.
* Exchange email - Click Choose users, groups, or teams and then click Choose users, groups, or
* teams again. to specify mailboxes to place on hold. Use the search box to find user mailboxes and distribution groups (to place a hold on the mailboxes of group members) to place on hold. You can also place a hold on the associated mailbox for a Microsoft Team, a Yammer Group, or an Office 365 Group.
Select the user, group, team check box, click Choose, and then click Done.
Note
When you click Choose users, groups, or teams to specify mailboxes to place on hold, the mailbox picker that's displayed is empty. This is by design to enhance performance. To add people to this list, type a name (a minimum of 3 characters) in the search box.
9. After configuring a query-based hold, click
10. Review your settings, and then click
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/ediscovery-cases?view=o365-worldwide#step-4-pla
NEW QUESTION 81
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall testtime.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality(e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfullyperform it, you will earn credit for that task.
Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately toensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
Username and password
Use the following login credentials as needed:
To enter your username, place your cursor in the Sign in box and click on the username below.
To enter your password, place your cursor in the Enter password box and click on the password below.
Microsoft 365 Username:
admin@[email protected]
Microsoft 365 Password:&=Q8v@2qGzYz
If the Microsoft 365 portal does not load successfully in the browser, press CTRL-K to reload the portal in a new browser tab.
The followinginformation is for technical support only:
Lab instance:11032396
You need to ensure that a user named Lee Gu can manage all the settings for Exchange Online. The solution must use the principle of least privilege.
To complete this task, sign in to theMicrosoft Office 365 admin center.
Answer:
Explanation:
See explanation below.
In the Exchange Administration Center (EAC), navigate toPermissions>Admin Roles.
Select the group:Organization Managementand then click onEdit.
In theMemberssection, click onAdd.
Select the users, USGs, or other role groups you want to add to the role group, click onAdd, and then click onOK.
Click onSaveto save the changes to the role group.
Reference:
https://help.bittitan.com/hc/en-us/articles/115008104507-How-do-I-assign-the-elevated-admin-role-Organizatio
https://docs.microsoft.com/en-us/exchange/permissions-exo/permissions-exo
NEW QUESTION 82
......
MS-500 Exam Questions: Free PDF Download Recently Updated Questions: https://www.practicevce.com/Microsoft/MS-500-practice-exam-dumps.html
MS-500 Certification Exam Dumps with 231 Practice Test Questions: https://drive.google.com/open?id=15TYJcA7fYrsq75nc2l2SNdPKStPRUJUk