HOTSPOT (Drag and Drop is not supported)For each of the following statements, select Yes if the statement is true. Otherwise, select No.Note: Each correct selection is worth one point.Hot Area:
Answer(s): A
Box 1: YesYes - Microsoft Defender for Office 365 provides protection from phishing and malware attacks.Microsoft Defender for Office 365 (Plan 1 & 2) provides comprehensive, cloud-based protection against advanced, zero-day threats in emails, links, and collaboration tools like SharePoint and Teams. It uses AI- driven analysis to block phishing, ransomware, and malware, and includes features like Zero-hour Auto Purge (ZAP), attack simulation training, and detailed threat reporting.Box 2: YesYes - Microsoft Defender for Identity monitor identities in Active Directory domains.Microsoft Defender for Identity (MDI) is a cloud-based security solution that monitors on-premises Active Directory (AD) environments using sensors installed directly on domain controllers. It detects advanced threats, compromised identities, and malicious insider actions by analyzing user behavior, network traffic, and AD queries.Box 3: NoNo - Microsoft Defender for Vulnerability Management provides protection for software as a service (SaaS) applications.While Microsoft Defender for Vulnerability Management is a powerful tool, it does not directly provide protection for software as a service (SaaS) applications. Instead, its primary focus is on identifying and remediating vulnerabilities across endpoints (Windows, macOS, Linux, Android, iOS), network devices, and cloud workloads.Protection specifically for SaaS applications is provided by a different solution, Microsoft Defender for Cloud Apps.
https://learn.microsoft.com/en-us/defender-office-365/anti-malware-protection-about https://learn.microsoft.com/en-us/defender-for-identity/what-is https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability- management
HOTSPOT (Drag and Drop is not supported)Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1. The permissions for Site1 are configured as shown in the following exhibit.You create a new user named User1 in the subscription.Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.Hot Area:
Box: a site member ofUser1 is ______________ Site1.When a new user is added to the Microsoft 365 subscription, they will automatically have access to this SharePoint site with the specified permissions.Because the site is configured with the built-in group "Everyone except external users" granted Edit permissions, the following occurs:Automatic Group Membership: Every new internal user added to the tenant is automatically included in the "Everyone except external users" group.Inherited Permissions: Since this group already has Edit permissions on the site, the new user inherits those rights immediately upon account creation without requiring manual intervention from a site owner.Access Method: The user can access the site as soon as they have the URL; they do not need to be invited individually.
https://andrewwarland.wordpress.com/2025/05/13/allowing-everyone-except-external-users-to-access- private-group-based-sites
Your organization has a Microsoft 365 subscription.You create a security group named Group1 and assign a Microsoft 365 E3 license to the group.You discover that a user named User1 does NOT have access to the Microsoft 365 E3 features.You need to ensure that User1 can access all the Microsoft 365 E3 features.Which two actions can you perform? Each correct answer presents a complete solution.Note: Each correct selection is worth one point.
Answer(s): A,D
You can license a user with Microsoft 365 E3 either by adding them to a licensed security group or by direct assignment in the Microsoft 365 admin center. Group-based licensing automatically assigns licenses to members, which is ideal for automation, while direct assignment is better for individual, immediate, or one-off licensing needs.
https://learn.microsoft.com/en-us/microsoft-365/enterprise/assign-licenses-to-user-accounts
HOTSPOT (Drag and Drop is not supported)Select the answer that correctly completes the sentence.Hot Area:
Box: siteFrom the SharePoint admin center, you can create a __________.You can create a new SharePoint site directly from the SharePoint admin center by navigating to Active sites and selecting Create. Admins can choose to create either a Team site (for collaboration, connected to a Microsoft 365 group) or a Communication site (for broadcasting information).
https://learn.microsoft.com/en-us/sharepoint/create-site-collection
Box: manage a Teams Rooms deviceFrom the Microsoft Teams admin center, you can ________________.From the Microsoft Teams admin center, you can perform a variety of management and monitoring tasks for Teams Rooms devices. While the Teams Rooms Pro Management portal offers more advanced analytics and remediation, the Teams admin center provides essential administrative controls for both Windows and Android-based systems.Incorrect:* can assign a Teams license to a userYou manage and assign Microsoft Teams product licenses primarily through the Microsoft 365 admin center or via PowerShell, rather than the Microsoft Teams admin center.* deploy the Teams clientFrom the Microsoft Teams admin center, you cannot directly deploy the Teams desktop client itself. Instead, you use it to manage Teams apps and update policies.* prevent users from creating teamsPreventing users from creating Microsoft Teams is primarily managed by restricting the ability to create underlying Microsoft 365 Groups via PowerShell in the Entra ID (Azure AD) admin center, not directly in the Teams admin center UI.
https://techcommunity.microsoft.com/blog/microsoftteamsblog/one-place-to-manage-all-your-teams- devices/1527766
Your organization has a Microsoft 365 subscription.You discover that some users cannot sign in to Microsoft 365.You need to view the failed Microsoft 365 sign-in attempts.What should you use?
Answer(s): B
To view failed sign-in attempts for your Microsoft 365 users, you should use the Microsoft Entra admin center.While basic user information is available in the standard Microsoft 365 admin center, the Entra portal provides the detailed logs necessary for troubleshooting authentication failures.
https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-troubleshoot-sign-in-errors
Box: active the role.In Microsoft Entra Privileged Identity Management (PIM), an administrator has made you eligible for the User Administrator role. Before you can create a user account, you must _________ Once activated, the role remains active only for the duration set (e.g., 1 hour), after which it automatically deactivates. You can now proceed to create the user account in Microsoft Entra ID.To activate the User Administrator role in Microsoft Entra Privileged Identity Management (PIM) and create a user account, follow these steps in the Microsoft Entra admin center:Steps to Activate the Role1. Sign in to the Microsoft Entra admin center.2. Navigate to Identity Governance > Privileged Identity Management > My roles.3. Select Microsoft Entra roles to view your eligible roles.4. Find the User Administrator role and click Activate.5. Complete Activation Steps:Verify Identity: Click "Additional verification required" and complete the multifactor authentication (MFA) challenge, if prompted.Select Scope (Optional): If you only need to create users within a specific administrative unit, select that scope. Reason/Duration: Enter a business justification in the "Reason" box and set the required duration for the role.6. Click Activate.
https://learn.microsoft.com/en-us/entra/id-governance/privileged-identity-management/pim-how-to-activate-role
Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1.You need to prevent users from sharing the content of Site1 to external users.What should you use?
To prevent users from sharing content with external users on a specific SharePoint site, you should use the SharePoint admin center.Steps to Restrict Sharing for a Specific SiteIf external sharing is enabled for your entire organization but you want to block it for one specific site, follow these steps:1. Sign in to the SharePoint admin center using an account with admin permissions.2. In the left-hand navigation pane, expand Sites and select Active sites.3. Select the site name you want to restrict to open its details panel.4. Navigate to the Settings tab and, under the External file sharing section, select More sharing settings.5. Change the sharing level to Only people in your organization.6. Select Save to apply the changes.
https://support.microsoft.com/en-us/office/turn-external-sharing-on-or-off-for-individual-sites-site-collections- fee958e6-92f5-4d8f-9c32-d7c05c8cdb8c
Share your comments for Microsoft AB-900 exam with other users:
the explanation are really helpful
just passed my exam yesterday on my first attempt. these dumps were extremely helpful in passing first time. the questions were very, very similar to these questions!
cosmos db is paas not saas
what is the percentage of common questions in gcp exam compared to 197 dump questions? are they 100% matching with real gcp exam?
not able to see questions
by far one of the best sites for free questions. i have pass 2 exams with the help of this website.
excellent question bank.
it really helped
excelent material
the new versoin of this exam which i downloaded has all the latest questions from the exam. i only saw 3 new questions in the exam which was not in this dump.
question 8 - can cloudtrail be used for storing jobs? based on aws - aws cloudtrail is used for governance, compliance and investigating api usage across all of our aws accounts. every action that is taken by a user or script is an api call so this is logged to [aws] cloudtrail. something seems incorrect here.
question 13 tda - c01 answer : quick table calculation -> percentage of total , compute using table down
pls share teh dump
question 44 answer is user risk
please post the questions for preparation
thanks for the questions
please reopen it now ..its really urgent
these practice exam questions were exactly what i needed. the variety of questions and the realistic exam-like environment they created helped me assess my strengths and weaknesses. i felt more confident and well-prepared on exam day, and i owe it to this exam dumps!
thank u it very instructuf
its helpful?
is this dump still valid???
question 205 answer is b
question 39, should be answer b, directions stated is being sudneted from /21 to a /23. a /23 has 512 ips so 510 hosts. and can make 4 subnets out of the /21
beautiful test engine software and very helpful. questions are same as in the real exam. i passed my paper.
the questions are exactly the same in real exam. just make sure not to answer all them correct or else they suspect you are cheating.
question: 78 the right answer i think is d not a
very helpful
i am writing this exam tomorrow and have dumps
can i have the icdl excel exam
please upload it
hye when will post again the past year question for this h13-311_v3 part since i have to for my test tommorow…thank you very much
on question 22, option b-once per session is also valid.
this website is very helpful
its my first time exam
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your AB-900, please sign in or create a free account.