HOTSPOT (Drag and Drop is not supported)For each of the following statements, select Yes if the statement is true. Otherwise, select No.Note: Each correct selection is worth one point.Hot Area:
Answer(s): A
Box 1: YesYes - Microsoft Defender for Office 365 provides protection from phishing and malware attacks.Microsoft Defender for Office 365 (Plan 1 & 2) provides comprehensive, cloud-based protection against advanced, zero-day threats in emails, links, and collaboration tools like SharePoint and Teams. It uses AI- driven analysis to block phishing, ransomware, and malware, and includes features like Zero-hour Auto Purge (ZAP), attack simulation training, and detailed threat reporting.Box 2: YesYes - Microsoft Defender for Identity monitor identities in Active Directory domains.Microsoft Defender for Identity (MDI) is a cloud-based security solution that monitors on-premises Active Directory (AD) environments using sensors installed directly on domain controllers. It detects advanced threats, compromised identities, and malicious insider actions by analyzing user behavior, network traffic, and AD queries.Box 3: NoNo - Microsoft Defender for Vulnerability Management provides protection for software as a service (SaaS) applications.While Microsoft Defender for Vulnerability Management is a powerful tool, it does not directly provide protection for software as a service (SaaS) applications. Instead, its primary focus is on identifying and remediating vulnerabilities across endpoints (Windows, macOS, Linux, Android, iOS), network devices, and cloud workloads.Protection specifically for SaaS applications is provided by a different solution, Microsoft Defender for Cloud Apps.
https://learn.microsoft.com/en-us/defender-office-365/anti-malware-protection-about https://learn.microsoft.com/en-us/defender-for-identity/what-is https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability- management
HOTSPOT (Drag and Drop is not supported)Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1. The permissions for Site1 are configured as shown in the following exhibit.You create a new user named User1 in the subscription.Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.Hot Area:
Box: a site member ofUser1 is ______________ Site1.When a new user is added to the Microsoft 365 subscription, they will automatically have access to this SharePoint site with the specified permissions.Because the site is configured with the built-in group "Everyone except external users" granted Edit permissions, the following occurs:Automatic Group Membership: Every new internal user added to the tenant is automatically included in the "Everyone except external users" group.Inherited Permissions: Since this group already has Edit permissions on the site, the new user inherits those rights immediately upon account creation without requiring manual intervention from a site owner.Access Method: The user can access the site as soon as they have the URL; they do not need to be invited individually.
https://andrewwarland.wordpress.com/2025/05/13/allowing-everyone-except-external-users-to-access- private-group-based-sites
Your organization has a Microsoft 365 subscription.You create a security group named Group1 and assign a Microsoft 365 E3 license to the group.You discover that a user named User1 does NOT have access to the Microsoft 365 E3 features.You need to ensure that User1 can access all the Microsoft 365 E3 features.Which two actions can you perform? Each correct answer presents a complete solution.Note: Each correct selection is worth one point.
Answer(s): A,D
You can license a user with Microsoft 365 E3 either by adding them to a licensed security group or by direct assignment in the Microsoft 365 admin center. Group-based licensing automatically assigns licenses to members, which is ideal for automation, while direct assignment is better for individual, immediate, or one-off licensing needs.
https://learn.microsoft.com/en-us/microsoft-365/enterprise/assign-licenses-to-user-accounts
HOTSPOT (Drag and Drop is not supported)Select the answer that correctly completes the sentence.Hot Area:
Box: siteFrom the SharePoint admin center, you can create a __________.You can create a new SharePoint site directly from the SharePoint admin center by navigating to Active sites and selecting Create. Admins can choose to create either a Team site (for collaboration, connected to a Microsoft 365 group) or a Communication site (for broadcasting information).
https://learn.microsoft.com/en-us/sharepoint/create-site-collection
Box: manage a Teams Rooms deviceFrom the Microsoft Teams admin center, you can ________________.From the Microsoft Teams admin center, you can perform a variety of management and monitoring tasks for Teams Rooms devices. While the Teams Rooms Pro Management portal offers more advanced analytics and remediation, the Teams admin center provides essential administrative controls for both Windows and Android-based systems.Incorrect:* can assign a Teams license to a userYou manage and assign Microsoft Teams product licenses primarily through the Microsoft 365 admin center or via PowerShell, rather than the Microsoft Teams admin center.* deploy the Teams clientFrom the Microsoft Teams admin center, you cannot directly deploy the Teams desktop client itself. Instead, you use it to manage Teams apps and update policies.* prevent users from creating teamsPreventing users from creating Microsoft Teams is primarily managed by restricting the ability to create underlying Microsoft 365 Groups via PowerShell in the Entra ID (Azure AD) admin center, not directly in the Teams admin center UI.
https://techcommunity.microsoft.com/blog/microsoftteamsblog/one-place-to-manage-all-your-teams- devices/1527766
Your organization has a Microsoft 365 subscription.You discover that some users cannot sign in to Microsoft 365.You need to view the failed Microsoft 365 sign-in attempts.What should you use?
Answer(s): B
To view failed sign-in attempts for your Microsoft 365 users, you should use the Microsoft Entra admin center.While basic user information is available in the standard Microsoft 365 admin center, the Entra portal provides the detailed logs necessary for troubleshooting authentication failures.
https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-troubleshoot-sign-in-errors
Box: active the role.In Microsoft Entra Privileged Identity Management (PIM), an administrator has made you eligible for the User Administrator role. Before you can create a user account, you must _________ Once activated, the role remains active only for the duration set (e.g., 1 hour), after which it automatically deactivates. You can now proceed to create the user account in Microsoft Entra ID.To activate the User Administrator role in Microsoft Entra Privileged Identity Management (PIM) and create a user account, follow these steps in the Microsoft Entra admin center:Steps to Activate the Role1. Sign in to the Microsoft Entra admin center.2. Navigate to Identity Governance > Privileged Identity Management > My roles.3. Select Microsoft Entra roles to view your eligible roles.4. Find the User Administrator role and click Activate.5. Complete Activation Steps:Verify Identity: Click "Additional verification required" and complete the multifactor authentication (MFA) challenge, if prompted.Select Scope (Optional): If you only need to create users within a specific administrative unit, select that scope. Reason/Duration: Enter a business justification in the "Reason" box and set the required duration for the role.6. Click Activate.
https://learn.microsoft.com/en-us/entra/id-governance/privileged-identity-management/pim-how-to-activate-role
Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1.You need to prevent users from sharing the content of Site1 to external users.What should you use?
To prevent users from sharing content with external users on a specific SharePoint site, you should use the SharePoint admin center.Steps to Restrict Sharing for a Specific SiteIf external sharing is enabled for your entire organization but you want to block it for one specific site, follow these steps:1. Sign in to the SharePoint admin center using an account with admin permissions.2. In the left-hand navigation pane, expand Sites and select Active sites.3. Select the site name you want to restrict to open its details panel.4. Navigate to the Settings tab and, under the External file sharing section, select More sharing settings.5. Change the sharing level to Only people in your organization.6. Select Save to apply the changes.
https://support.microsoft.com/en-us/office/turn-external-sharing-on-or-off-for-individual-sites-site-collections- fee958e6-92f5-4d8f-9c32-d7c05c8cdb8c
Share your comments for Microsoft AB-900 exam with other users:
great questions
its realy good
oracle 1z0-1059-22 dumps
please share me the pdf..
q50: which two functions can be used by an end user when pivoting an interactive report? the correct answer is a, c because we do not have rank in the function pivoting you can check in the apex app
best to practice
so far it is good
please provide me the dump
i failed the cisa exam today. but i have found all the questions that were on the exam to be on this site.
in question 272 the right answer states that an autonomous acces point is "configured and managed by the wlc" but this is not what i have learned in my ccna course. is this a mistake? i understand that lightweight aps are managed by wlc while autonomous work as standalones on the wlan.
it was helpful
good question
really nice
please i need dumps for isc2 cybersecuity
ans is coldline i think
very helpful
can you please provide dumps so that it helps me more
thank you for providing me with the updated question and answers. this version has all the questions from the exam. i just saw them in my exam this morning. i passed my exam today.
how i can see exam questions?
can you please upload please?
question 75: option c is correct answer
please add this exam
please upoad
has anyone recently attended safe 6.0 certification? is it the samq question from here.
expository experience
52 should be b&c. controller failure has nothing to do with this type of issue. degraded state tells us its a raid issue, and if the os is missing then the bootable device isnt found. the only other consideration could be data loss but thats somewhat broad whereas b&c show understanding of the specific issues the question is asking about.
great help!!!
very useful tools
looks a good platform to prepare az-104
want to pass the exam
good resource
question 11 : d
only the free dumps will be enough for pass, or have to purchase the premium one. please suggest.
good questions. thanks.
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your AB-900, please sign in or create a free account.