HOTSPOT (Drag and Drop is not supported)For each of the following statements, select Yes if the statement is true. Otherwise, select No.Note: Each correct selection is worth one point.Hot Area:
Answer(s): A
Box 1: YesYes - Microsoft Defender for Office 365 provides protection from phishing and malware attacks.Microsoft Defender for Office 365 (Plan 1 & 2) provides comprehensive, cloud-based protection against advanced, zero-day threats in emails, links, and collaboration tools like SharePoint and Teams. It uses AI- driven analysis to block phishing, ransomware, and malware, and includes features like Zero-hour Auto Purge (ZAP), attack simulation training, and detailed threat reporting.Box 2: YesYes - Microsoft Defender for Identity monitor identities in Active Directory domains.Microsoft Defender for Identity (MDI) is a cloud-based security solution that monitors on-premises Active Directory (AD) environments using sensors installed directly on domain controllers. It detects advanced threats, compromised identities, and malicious insider actions by analyzing user behavior, network traffic, and AD queries.Box 3: NoNo - Microsoft Defender for Vulnerability Management provides protection for software as a service (SaaS) applications.While Microsoft Defender for Vulnerability Management is a powerful tool, it does not directly provide protection for software as a service (SaaS) applications. Instead, its primary focus is on identifying and remediating vulnerabilities across endpoints (Windows, macOS, Linux, Android, iOS), network devices, and cloud workloads.Protection specifically for SaaS applications is provided by a different solution, Microsoft Defender for Cloud Apps.
https://learn.microsoft.com/en-us/defender-office-365/anti-malware-protection-about https://learn.microsoft.com/en-us/defender-for-identity/what-is https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability- management
HOTSPOT (Drag and Drop is not supported)Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1. The permissions for Site1 are configured as shown in the following exhibit.You create a new user named User1 in the subscription.Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.Hot Area:
Box: a site member ofUser1 is ______________ Site1.When a new user is added to the Microsoft 365 subscription, they will automatically have access to this SharePoint site with the specified permissions.Because the site is configured with the built-in group "Everyone except external users" granted Edit permissions, the following occurs:Automatic Group Membership: Every new internal user added to the tenant is automatically included in the "Everyone except external users" group.Inherited Permissions: Since this group already has Edit permissions on the site, the new user inherits those rights immediately upon account creation without requiring manual intervention from a site owner.Access Method: The user can access the site as soon as they have the URL; they do not need to be invited individually.
https://andrewwarland.wordpress.com/2025/05/13/allowing-everyone-except-external-users-to-access- private-group-based-sites
Your organization has a Microsoft 365 subscription.You create a security group named Group1 and assign a Microsoft 365 E3 license to the group.You discover that a user named User1 does NOT have access to the Microsoft 365 E3 features.You need to ensure that User1 can access all the Microsoft 365 E3 features.Which two actions can you perform? Each correct answer presents a complete solution.Note: Each correct selection is worth one point.
Answer(s): A,D
You can license a user with Microsoft 365 E3 either by adding them to a licensed security group or by direct assignment in the Microsoft 365 admin center. Group-based licensing automatically assigns licenses to members, which is ideal for automation, while direct assignment is better for individual, immediate, or one-off licensing needs.
https://learn.microsoft.com/en-us/microsoft-365/enterprise/assign-licenses-to-user-accounts
HOTSPOT (Drag and Drop is not supported)Select the answer that correctly completes the sentence.Hot Area:
Box: siteFrom the SharePoint admin center, you can create a __________.You can create a new SharePoint site directly from the SharePoint admin center by navigating to Active sites and selecting Create. Admins can choose to create either a Team site (for collaboration, connected to a Microsoft 365 group) or a Communication site (for broadcasting information).
https://learn.microsoft.com/en-us/sharepoint/create-site-collection
Box: manage a Teams Rooms deviceFrom the Microsoft Teams admin center, you can ________________.From the Microsoft Teams admin center, you can perform a variety of management and monitoring tasks for Teams Rooms devices. While the Teams Rooms Pro Management portal offers more advanced analytics and remediation, the Teams admin center provides essential administrative controls for both Windows and Android-based systems.Incorrect:* can assign a Teams license to a userYou manage and assign Microsoft Teams product licenses primarily through the Microsoft 365 admin center or via PowerShell, rather than the Microsoft Teams admin center.* deploy the Teams clientFrom the Microsoft Teams admin center, you cannot directly deploy the Teams desktop client itself. Instead, you use it to manage Teams apps and update policies.* prevent users from creating teamsPreventing users from creating Microsoft Teams is primarily managed by restricting the ability to create underlying Microsoft 365 Groups via PowerShell in the Entra ID (Azure AD) admin center, not directly in the Teams admin center UI.
https://techcommunity.microsoft.com/blog/microsoftteamsblog/one-place-to-manage-all-your-teams- devices/1527766
Your organization has a Microsoft 365 subscription.You discover that some users cannot sign in to Microsoft 365.You need to view the failed Microsoft 365 sign-in attempts.What should you use?
Answer(s): B
To view failed sign-in attempts for your Microsoft 365 users, you should use the Microsoft Entra admin center.While basic user information is available in the standard Microsoft 365 admin center, the Entra portal provides the detailed logs necessary for troubleshooting authentication failures.
https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-troubleshoot-sign-in-errors
Box: active the role.In Microsoft Entra Privileged Identity Management (PIM), an administrator has made you eligible for the User Administrator role. Before you can create a user account, you must _________ Once activated, the role remains active only for the duration set (e.g., 1 hour), after which it automatically deactivates. You can now proceed to create the user account in Microsoft Entra ID.To activate the User Administrator role in Microsoft Entra Privileged Identity Management (PIM) and create a user account, follow these steps in the Microsoft Entra admin center:Steps to Activate the Role1. Sign in to the Microsoft Entra admin center.2. Navigate to Identity Governance > Privileged Identity Management > My roles.3. Select Microsoft Entra roles to view your eligible roles.4. Find the User Administrator role and click Activate.5. Complete Activation Steps:Verify Identity: Click "Additional verification required" and complete the multifactor authentication (MFA) challenge, if prompted.Select Scope (Optional): If you only need to create users within a specific administrative unit, select that scope. Reason/Duration: Enter a business justification in the "Reason" box and set the required duration for the role.6. Click Activate.
https://learn.microsoft.com/en-us/entra/id-governance/privileged-identity-management/pim-how-to-activate-role
Your organization has a Microsoft 365 subscription that contains a Microsoft SharePoint site named Site1.You need to prevent users from sharing the content of Site1 to external users.What should you use?
To prevent users from sharing content with external users on a specific SharePoint site, you should use the SharePoint admin center.Steps to Restrict Sharing for a Specific SiteIf external sharing is enabled for your entire organization but you want to block it for one specific site, follow these steps:1. Sign in to the SharePoint admin center using an account with admin permissions.2. In the left-hand navigation pane, expand Sites and select Active sites.3. Select the site name you want to restrict to open its details panel.4. Navigate to the Settings tab and, under the External file sharing section, select More sharing settings.5. Change the sharing level to Only people in your organization.6. Select Save to apply the changes.
https://support.microsoft.com/en-us/office/turn-external-sharing-on-or-off-for-individual-sites-site-collections- fee958e6-92f5-4d8f-9c32-d7c05c8cdb8c
Share your comments for Microsoft AB-900 exam with other users:
q252: dns poisoning is the correct answer, not locator redirection. beaconing is detected from a host. this indicates that the system has been infected with malware, which could be the source of local dns poisoning. location redirection works by either embedding the redirection in the original websites code or having a user click on a url that has an embedded redirect. since users at a different office are not getting redirected, it isnt an embedded redirection on the original website and since the user is manually typing in the url and not clicking a link, it isnt a modified link.
helpful dump questions
question 423 eigrp uses metric
hello nice dumps
good resource for learning
very useful
physical tempering techniques
its giving best technical knowledge
please upload
great question with explanation thanks!!
does this exam have lab sections?
please upload the braindump for .net
i need this exam 1z0-1107-2. please.
very useful!
for this question - "which three type of basic patient or member information is displayed on the patient info component? (choose three.)", list of conditions is not displayed (it is displayed in patient card, not patient info). so should be thumbnail of chatter photo
q52 should be d. vm storage controller bandwidth represents the amount of data (in terms of bandwidth) that a vms storage controller is using to read and write data to the storage fabric.
nice questions
question # 208: failure logs is not an example of operational metadata.
good questions
thank you for the test materials!
its very helpful
good questons
i need the dumb of the hcip security v4.0 exam
upload the dump please
yes, iam looking this
please upload cima e2 managing performance dumps
wonderful questions
i used this site since 2000, still great to support my career
why is the answer to "which of the following is required by scrum?" all of the following stated below since most of them are not mandatory? sprint retrospective. members must be stand up at the daily scrum. sprint burndown chart. release planning.
great job. hope this helps out.
upload please. many thanks!
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your AB-900, please sign in or create a free account.