HOTSPOT (Drag and Drop is not supported)For each of the following statements, select Yes if the statement is true. Otherwise, select No.Note: Each correct selection is worth one point.Hot Area:
Answer(s): A
Box 1: YesYes - Microsoft Defender for Office 365 provides protection from phishing and malware attacks.Microsoft Defender for Office 365 (Plan 1 & 2) provides comprehensive, cloud-based protection against advanced, zero-day threats in emails, links, and collaboration tools like SharePoint and Teams. It uses AI- driven analysis to block phishing, ransomware, and malware, and includes features like Zero-hour Auto Purge (ZAP), attack simulation training, and detailed threat reporting.Box 2: YesYes - Microsoft Defender for Identity monitor identities in Active Directory domains.Microsoft Defender for Identity (MDI) is a cloud-based security solution that monitors on-premises Active Directory (AD) environments using sensors installed directly on domain controllers. It detects advanced threats, compromised identities, and malicious insider actions by analyzing user behavior, network traffic, and AD queries.Box 3: NoNo - Microsoft Defender for Vulnerability Management provides protection for software as a service (SaaS) applications.While Microsoft Defender for Vulnerability Management is a powerful tool, it does not directly provide protection for software as a service (SaaS) applications. Instead, its primary focus is on identifying and remediating vulnerabilities across endpoints (Windows, macOS, Linux, Android, iOS), network devices, and cloud workloads.Protection specifically for SaaS applications is provided by a different solution, Microsoft Defender for Cloud Apps.
https://learn.microsoft.com/en-us/defender-office-365/anti-malware-protection-about https://learn.microsoft.com/en-us/defender-for-identity/what-is https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability- management
HOTSPOT (Drag and Drop is not supported)Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1. The permissions for Site1 are configured as shown in the following exhibit.You create a new user named User1 in the subscription.Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.Hot Area:
Box: a site member ofUser1 is ______________ Site1.When a new user is added to the Microsoft 365 subscription, they will automatically have access to this SharePoint site with the specified permissions.Because the site is configured with the built-in group "Everyone except external users" granted Edit permissions, the following occurs:Automatic Group Membership: Every new internal user added to the tenant is automatically included in the "Everyone except external users" group.Inherited Permissions: Since this group already has Edit permissions on the site, the new user inherits those rights immediately upon account creation without requiring manual intervention from a site owner.Access Method: The user can access the site as soon as they have the URL; they do not need to be invited individually.
https://andrewwarland.wordpress.com/2025/05/13/allowing-everyone-except-external-users-to-access- private-group-based-sites
Your organization has a Microsoft 365 subscription.You create a security group named Group1 and assign a Microsoft 365 E3 license to the group.You discover that a user named User1 does NOT have access to the Microsoft 365 E3 features.You need to ensure that User1 can access all the Microsoft 365 E3 features.Which two actions can you perform? Each correct answer presents a complete solution.Note: Each correct selection is worth one point.
Answer(s): A,D
You can license a user with Microsoft 365 E3 either by adding them to a licensed security group or by direct assignment in the Microsoft 365 admin center. Group-based licensing automatically assigns licenses to members, which is ideal for automation, while direct assignment is better for individual, immediate, or one-off licensing needs.
https://learn.microsoft.com/en-us/microsoft-365/enterprise/assign-licenses-to-user-accounts
HOTSPOT (Drag and Drop is not supported)Select the answer that correctly completes the sentence.Hot Area:
Box: siteFrom the SharePoint admin center, you can create a __________.You can create a new SharePoint site directly from the SharePoint admin center by navigating to Active sites and selecting Create. Admins can choose to create either a Team site (for collaboration, connected to a Microsoft 365 group) or a Communication site (for broadcasting information).
https://learn.microsoft.com/en-us/sharepoint/create-site-collection
Box: manage a Teams Rooms deviceFrom the Microsoft Teams admin center, you can ________________.From the Microsoft Teams admin center, you can perform a variety of management and monitoring tasks for Teams Rooms devices. While the Teams Rooms Pro Management portal offers more advanced analytics and remediation, the Teams admin center provides essential administrative controls for both Windows and Android-based systems.Incorrect:* can assign a Teams license to a userYou manage and assign Microsoft Teams product licenses primarily through the Microsoft 365 admin center or via PowerShell, rather than the Microsoft Teams admin center.* deploy the Teams clientFrom the Microsoft Teams admin center, you cannot directly deploy the Teams desktop client itself. Instead, you use it to manage Teams apps and update policies.* prevent users from creating teamsPreventing users from creating Microsoft Teams is primarily managed by restricting the ability to create underlying Microsoft 365 Groups via PowerShell in the Entra ID (Azure AD) admin center, not directly in the Teams admin center UI.
https://techcommunity.microsoft.com/blog/microsoftteamsblog/one-place-to-manage-all-your-teams- devices/1527766
Your organization has a Microsoft 365 subscription.You discover that some users cannot sign in to Microsoft 365.You need to view the failed Microsoft 365 sign-in attempts.What should you use?
Answer(s): B
To view failed sign-in attempts for your Microsoft 365 users, you should use the Microsoft Entra admin center.While basic user information is available in the standard Microsoft 365 admin center, the Entra portal provides the detailed logs necessary for troubleshooting authentication failures.
https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-troubleshoot-sign-in-errors
Box: active the role.In Microsoft Entra Privileged Identity Management (PIM), an administrator has made you eligible for the User Administrator role. Before you can create a user account, you must _________ Once activated, the role remains active only for the duration set (e.g., 1 hour), after which it automatically deactivates. You can now proceed to create the user account in Microsoft Entra ID.To activate the User Administrator role in Microsoft Entra Privileged Identity Management (PIM) and create a user account, follow these steps in the Microsoft Entra admin center:Steps to Activate the Role1. Sign in to the Microsoft Entra admin center.2. Navigate to Identity Governance > Privileged Identity Management > My roles.3. Select Microsoft Entra roles to view your eligible roles.4. Find the User Administrator role and click Activate.5. Complete Activation Steps:Verify Identity: Click "Additional verification required" and complete the multifactor authentication (MFA) challenge, if prompted.Select Scope (Optional): If you only need to create users within a specific administrative unit, select that scope. Reason/Duration: Enter a business justification in the "Reason" box and set the required duration for the role.6. Click Activate.
https://learn.microsoft.com/en-us/entra/id-governance/privileged-identity-management/pim-how-to-activate-role
Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1.You need to prevent users from sharing the content of Site1 to external users.What should you use?
To prevent users from sharing content with external users on a specific SharePoint site, you should use the SharePoint admin center.Steps to Restrict Sharing for a Specific SiteIf external sharing is enabled for your entire organization but you want to block it for one specific site, follow these steps:1. Sign in to the SharePoint admin center using an account with admin permissions.2. In the left-hand navigation pane, expand Sites and select Active sites.3. Select the site name you want to restrict to open its details panel.4. Navigate to the Settings tab and, under the External file sharing section, select More sharing settings.5. Change the sharing level to Only people in your organization.6. Select Save to apply the changes.
https://support.microsoft.com/en-us/office/turn-external-sharing-on-or-off-for-individual-sites-site-collections- fee958e6-92f5-4d8f-9c32-d7c05c8cdb8c
Share your comments for Microsoft AB-900 exam with other users:
just paid and downlaod the 2 exams using the 50% sale discount. so far i was able to download the pdf and the test engine. all looks good.
i think it should be a,c. option d goes against the principle of building anything custom unless there are no work arounds available
very legible
is this exam accurate or helpful?
please upload dump, i have exam in 2 days
this is useful
question 232 answer should be perimeter not netowrk layer. wrong answer selected
nice questions
hi team, could you please provide this dump ?
very helpful to clear the exam and understand the concept.
i think it is great that you are helping people when they need it. thanks.
cannot evaluate yet
a laptops wireless antenna is most likely located in the bezel of the lid
good examplae to learn basic
this is useful information
looks usefull
question 81 should be c.
question 18 : response isnt a ?
plaese add questions
is dumps still valid ?
thanks for this
please upload questions
please upload the question dump for professional machinelearning
question 4 answer is c. this site shows the correct answer as b. "adopt a consumption model" is clearly a cost optimization design principle. looks like im done using this site to study!!!
number 52 answer is d
just started preparing for my exam , and this site is so much help
question 35 is incorrect, the correct answer is c, it even states so: explanation: when a vm is infected with ransomware, you should not restore the vm to the infected vm. this is because the ransomware will still be present on the vm, and it will encrypt the files again. you should also not restore the vm to any vm within the companys subscription. this is because the ransomware could spread to other vms in the subscription. the best way to restore a vm that is infected with ransomware is to restore it to a new azure vm. this will ensure that the ransomware is not present on the new vm.
i would like to take psm1 exam.
cbd and pdb are key to the database
the purchase and download process is very much streamlined. the xengine application is very nice and user-friendly but there is always room for improvement.
please upload p_sapea_2023
anyone use this? the question dont seem to follow other formats and terminology i have been studying im getting worried
good questions
hello are these questions valid for ms-102
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your AB-900, please sign in or create a free account.