Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. Microsoft
  3. AB-900

Microsoft AB-900 Exam (page: 2)
Microsoft 365 Copilot and Agent Administration Fundamentals
Updated on: 24-Mar-2026

Viewing Page 2 of 7
AB-900 PDF 43 Questions

HOTSPOT

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

Note: Each correct selection is worth one point.

Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Box 1: Yes
Yes - Microsoft Defender for Office 365 provides protection from phishing and malware attacks.

Microsoft Defender for Office 365 (Plan 1 & 2) provides comprehensive, cloud-based protection against advanced, zero-day threats in emails, links, and collaboration tools like SharePoint and Teams. It uses AI- driven analysis to block phishing, ransomware, and malware, and includes features like Zero-hour Auto Purge (ZAP), attack simulation training, and detailed threat reporting.

Box 2: Yes
Yes - Microsoft Defender for Identity monitor identities in Active Directory domains.

Microsoft Defender for Identity (MDI) is a cloud-based security solution that monitors on-premises Active Directory (AD) environments using sensors installed directly on domain controllers. It detects advanced threats, compromised identities, and malicious insider actions by analyzing user behavior, network traffic, and AD queries.

Box 3: No
No - Microsoft Defender for Vulnerability Management provides protection for software as a service (SaaS) applications.

While Microsoft Defender for Vulnerability Management is a powerful tool, it does not directly provide protection for software as a service (SaaS) applications. Instead, its primary focus is on identifying and remediating vulnerabilities across endpoints (Windows, macOS, Linux, Android, iOS), network devices, and cloud workloads.

Protection specifically for SaaS applications is provided by a different solution, Microsoft Defender for Cloud Apps.


Reference:

https://learn.microsoft.com/en-us/defender-office-365/anti-malware-protection-about https://learn.microsoft.com/en-us/defender-for-identity/what-is https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability-management



HOTSPOT

Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1. The permissions for Site1 are configured as shown in the following exhibit.



You create a new user named User1 in the subscription.

Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.

Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Box: a site member of
User1 is ______________ Site1.

When a new user is added to the Microsoft 365 subscription, they will automatically have access to this SharePoint site with the specified permissions.

Because the site is configured with the built-in group "Everyone except external users" granted Edit permissions, the following occurs:
Automatic Group Membership: Every new internal user added to the tenant is automatically included in the "Everyone except external users" group.

Inherited Permissions: Since this group already has Edit permissions on the site, the new user inherits those rights immediately upon account creation without requiring manual intervention from a site owner.

Access Method: The user can access the site as soon as they have the URL; they do not need to be invited individually.


Reference:

https://andrewwarland.wordpress.com/2025/05/13/allowing-everyone-except-external-users-to-access-private- group-based-sites



Your organization has a Microsoft 365 subscription.

You create a security group named Group1 and assign a Microsoft 365 E3 license to the group.

You discover that a user named User1 does NOT have access to the Microsoft 365 E3 features.

You need to ensure that User1 can access all the Microsoft 365 E3 features.

Which two actions can you perform? Each correct answer presents a complete solution.

Note: Each correct selection is worth one point.

  1. Add User1 to Group1.
  2. Assign a Conditional Access policy to Group1.
  3. Assign a Conditional Access policy to User1.
  4. Assign a license to User1.

Answer(s): A,D

Explanation:

You can license a user with Microsoft 365 E3 either by adding them to a licensed security group or by direct assignment in the Microsoft 365 admin center. Group-based licensing automatically assigns licenses to members, which is ideal for automation, while direct assignment is better for individual, immediate, or one-off licensing needs.


Reference:

https://learn.microsoft.com/en-us/microsoft-365/enterprise/assign-licenses-to-user-accounts



HOTSPOT

Select the answer that correctly completes the sentence.

Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Box: site
From the SharePoint admin center, you can create a __________.

You can create a new SharePoint site directly from the SharePoint admin center by navigating to Active sites and selecting Create. Admins can choose to create either a Team site (for collaboration, connected to a Microsoft 365 group) or a Communication site (for broadcasting information).


Reference:

https://learn.microsoft.com/en-us/sharepoint/create-site-collection



HOTSPOT

Select the answer that correctly completes the sentence.

Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



Box: manage a Teams Rooms device
From the Microsoft Teams admin center, you can ________________.

From the Microsoft Teams admin center, you can perform a variety of management and monitoring tasks for Teams Rooms devices. While the Teams Rooms Pro Management portal offers more advanced analytics and remediation, the Teams admin center provides essential administrative controls for both Windows and Android-based systems.

Incorrect:
* can assign a Teams license to a user
You manage and assign Microsoft Teams product licenses primarily through the Microsoft 365 admin center or via PowerShell, rather than the Microsoft Teams admin center.

* deploy the Teams client
From the Microsoft Teams admin center, you cannot directly deploy the Teams desktop client itself. Instead, you use it to manage Teams apps and update policies.

* prevent users from creating teams
Preventing users from creating Microsoft Teams is primarily managed by restricting the ability to create underlying Microsoft 365 Groups via PowerShell in the Entra ID (Azure AD) admin center, not directly in the Teams admin center UI.


Reference:

https://techcommunity.microsoft.com/blog/microsoftteamsblog/one-place-to-manage-all-your-teams- devices/1527766



Your organization has a Microsoft 365 subscription.

You need to investigate security incidents and alerts raised from the Windows 11 devices in your organization.

What should you use?

  1. Microsoft Entra ID Protection
  2. Microsoft Defender for Identity
  3. Microsoft Purview Insider Risk Management
  4. Microsoft Defender for Endpoint

Answer(s): D

Explanation:

Microsoft Defender for Endpoint in Microsoft 365 allows security teams to investigate, analyze, and remediate security incidents on Windows 11 devices via the Microsoft Defender portal (security.microsoft.com). It provides a unified experience to view device timelines, threat intelligence, and alerts, enabling automatic or manual response to threats like malware and phishing.


Reference:

https://learn.microsoft.com/en-us/defender-xdr/investigate-incidents



You have a Microsoft SharePoint site as shown in the following exhibit.



You need to view the settings of SLabel1.

What should you use?

  1. the Microsoft Defender portal
  2. the SharePoint admin center
  3. the Microsoft 365 admin center
  4. the Microsoft Purview portal

Answer(s): D

Explanation:

To examine or modify the settings of a specific sensitivity label, you must use the Microsoft Purview portal.
While you can see which labels are applied to sites or files within the SharePoint admin center or document libraries, the actual configuration, definition, and security settings for the sensitivity label itself are managed exclusively in the Microsoft Purview portal.
Where to go:
Navigate to: Microsoft Purview portal
Go to: Solutions > Information Protection
Select: Labels (or "Sensitivity labels")


Reference:

https://learn.microsoft.com/en-us/purview/sensitivity-labels-teams-groups-sites



Your organization has a Microsoft 365 subscription.

All users have Microsoft 365 Copilot licenses.

You need to identify where sensitive content is being used during Copilot interactions, analyze the content usage patterns, and provide recommendations on applying the appropriate protections.

What should you use?

  1. Microsoft Viva Insights
  2. the Microsoft Purview DSPM for AI solution
  3. Microsoft Security Copilot
  4. the Microsoft Purview Insider Risk Management solution

Answer(s): B

Explanation:

To locate sensitive content used by Microsoft 365 Copilot, analyze its usage patterns, and receive actionable protection recommendations, you should use Microsoft Purview, specifically the Data Security Posture Management (DSPM) for AI dashboard.
The Primary Tool: DSPM for AI
The Data Security Posture Management (DSPM) for AI (available within the Microsoft Purview portal) is the central hub for managing AI-related data risks. It is specifically designed to provide visibility into how Copilot and other AI applications interact with your organizational data.
Locating Sensitive Content: The dashboard identifies and surfaces sensitive data (using sensitivity labels and sensitive information types) that Copilot could potentially access or use in its prompts and responses.
Analyzing Usage Patterns: It provides insights and reports on AI activity, allowing you to see which users are interacting with Copilot, what type of content is being referenced, and whether those interactions involve sensitive data.
Actionable Recommendations: DSPM for AI provides "one-click" policy recommendations. These guided workflows help you apply the appropriate protections directly from the insights discovered, such as:
Protecting items with sensitivity labels from Copilot processing.
Detecting risky AI interactions (such as prompt injection or unauthorized access).
Implementing Data Loss Prevention (DLP) rules.


Reference:

https://learn.microsoft.com/en-us/purview/ai-m365-copilot-considerations



Viewing Page 2 of 7



Share your comments for Microsoft AB-900 exam with other users:

Michelle 6/23/2023 4:08:00 AM

can you please upload it back?
Anonymous


Ajay 10/3/2023 12:17:00 PM

could you please re-upload this exam? thanks a lot!
Anonymous


him 9/30/2023 2:38:00 AM

great about shared quiz
Anonymous


San 11/14/2023 12:46:00 AM

goood helping
Anonymous


Wang 6/9/2022 10:05:00 PM

pay attention to questions. they are very tricky. i waould say about 80 to 85% of the questions are in this exam dump.
UNITED STATES


Mary 5/16/2023 4:50:00 AM

wish you would allow more free questions
Anonymous


thomas 9/12/2023 4:28:00 AM

great simulation
Anonymous


Sandhya 12/9/2023 12:57:00 AM

very g inood
Anonymous


Agathenta 12/16/2023 1:36:00 PM

q35 should be a
Anonymous


MD. SAIFUL ISLAM 6/22/2023 5:21:00 AM

sap c_ts450_2021
Anonymous


Satya 7/24/2023 3:18:00 AM

nice questions
UNITED STATES


sk 5/13/2023 2:10:00 AM

ecellent materil for unserstanding
INDIA


Gerard 6/29/2023 11:14:00 AM

good so far
Anonymous


Limbo 10/9/2023 3:08:00 AM

this is way too informative
BOTSWANA


Tejasree 8/26/2023 1:46:00 AM

very helpfull
UNITED STATES


Yolostar Again 10/12/2023 3:02:00 PM

q.189 - answers are incorrect.
Anonymous


Shikha Bakra 9/10/2023 5:16:00 PM

awesome job in getting these questions
AUSTRALIA


Kevin 10/20/2023 2:01:00 AM

i cant find aws certified practitioner clf-c01 exam in aws website but i found aws certified practitioner clf-c02 exam. can everyone please verify the difference between the two clf-c01 and clf-c02? thank you
UNITED STATES


D Mario 6/19/2023 10:38:00 PM

grazie mille. i got a satisfactory mark in my exam test today because of this exam dumps. sorry for my english.
ITALY


Bharat Kumar Saraf 10/31/2023 4:36:00 AM

some of the answers are incorrect. need to be reviewed.
HONG KONG


JP 7/13/2023 12:21:00 PM

so far so good
Anonymous


Kiky V 8/8/2023 6:32:00 PM

i am really liking it
Anonymous


trying 7/28/2023 12:37:00 PM

thanks good stuff
UNITED STATES


exampei 10/4/2023 2:40:00 PM

need dump c_tadm_23
Anonymous


Eman Sawalha 6/10/2023 6:18:00 AM

next time i will write a full review
GREECE


johnpaul 11/15/2023 7:55:00 AM

first time using this site
ROMANIA


omiornil@gmail.com 7/25/2023 9:36:00 AM

please sent me oracle 1z0-1105-22 pdf
BANGLADESH


John 8/29/2023 8:59:00 PM

very helpful
Anonymous


Kvana 9/28/2023 12:08:00 PM

good info about oml
UNITED STATES


Checo Lee 7/3/2023 5:45:00 PM

very useful to practice
UNITED STATES


dixitdnoh@gmail.com 8/27/2023 2:58:00 PM

this website is very helpful.
UNITED STATES


Sanjay 8/14/2023 8:07:00 AM

good content
INDIA


Blessious Phiri 8/12/2023 2:19:00 PM

so challenging
Anonymous


PAYAL 10/17/2023 7:14:00 AM

17 should be d ,for morequery its scale out
Anonymous