FREE Microsoft Identity and Access Administrator Dumps Questions and Answers

Question 1

To achieve the monitoring criteria, you must configure the detection of many staged attacks.
What should you do?

Accepted Answer

Add Azure Sentinel data connectors.

Answer

Create a workbook.

Answer

Customize the Azure Sentinel rule logic.

Answer

Add an Azure Sentinel playbook.

Question 2

For users who connect from the Boston office, you must establish the MFA settings. Both the access requirements and the authentication criteria must be satisfied by the solution.
What should you configure?

Accepted Answer

Named locations that have a public IP address range correct

Answer

Trusted IPs that have a private IP address range

Answer

Trusted IPs that have a public IP address range

Answer

Named locations that have a private IP address range

Question 3

The authentication criteria for credentials that have been disclosed must be met.
What should you do?

Accepted Answer

Enable password hash synchronization in Azure AD Connect.correct

Answer

Configure Azure AD Password Protection.

Answer

Enable federation with PingFederate in Azure AD Connect.

Answer

Configure an authentication method policy in Azure A

Question 4

Your Microsoft Exchange organization makes use of the contoso.com SMTP address space.
Several users use their contoso.com email address for self-service sign-up to Azure Active Directory (Azure AD).
You gain global administrator privileges to the Azure AD tenant that contains the self-signed users.
You need to prevent the users from creating user accounts in the contoso.com Azure AD tenant for self-service sign-up to Microsoft 365 services

Which PowerShell cmdlet should you run?

Accepted Answer

Set-MsolCompanySettingscorrect

Answer

Set-MsolCompanySettings

Answer

Update-MsolfederateDomain

Answer

Set-Mso1DomaininFederationSettings

Question 5

Azure AD Identity Protection is turned on for the Azure Active Directory (Azure AD) tenant conto.so.com. Implementing a sign-in risk remediation policy is necessary without restricting access.
What should you do first?

Accepted Answer

Implement multi-factor authentication (MFA) for all users.correct

Answer

Enforce Azure AD Password Protection.

Answer

Configure access reviews in Azure A

Answer

Configure self-service password reset (SSPR) for all users.

Question 6

‥ You have an Azure Active Directory (Azure AD) tenant.
‥ For the tenant, Users can register applications if set to No.
‥ A user named Admin1 must deploy a new cloud app named App1.
‥ You need to ensure that Admin1 can register App1 in Azure AD. The solution must use the principle of least privilege.

Which role should you assign to Admin1?

Accepted Answer

Application developer in Azure AD.

Answer

App Configuration Data Owner for Subscription1.

Answer

Cloud application administrator in Azure AD.

Answer

Managed Application Contributor for Subscription1.

Question 7

An Azure Active Directory (Azure AD) tenant with the name contoso.com is connected to the Active Directory forest contoso.com on your network using Azure AD Connect. Users who have the extensionAttribute15 property set to NoSync must not be synchronized.

What should you do in Azure AD Connect?

Accepted Answer

Create an inbound synchronization rule for the Active Directory Domain Services connector.

Answer

Configure a Full Import run profile.

Answer

Create an inbound synchronization rule for the Windows Azure Active Directory connector.

Answer

Configure an Export run profile.