FEFreeExamDumps.in

SC-300 Practice Questions — Page 5

Question 41

Open question ↗

You have an Azure AD tenant that contains a user named User1. User1 is assigned the User Administrator role.

You need to configure External collaboration settings for the tenant to meet the following requirements:

• Guest users must be prevented from querying staff email addresses.

• Guest users must be able to access the tenant only if they are invited by User1.

Which three settings should you configure? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Question 41

Question 42

Open question ↗

You have 2,500 users who are assigned Microsoft Office 365 Enterprise E3 licenses. The licenses are assigned to individual users.

From the Groups blade in the Azure Active Directory admin center, you assign Microsoft Office 365 Enterprise E5 licenses to a group that includes all users.

You needed to remove the Office 365 Enterprise E3 licenses from the users by using the least amount of administrative effort.

What should you use?

  • A.the Groups blade in the Azure Active Directory admin center
  • B.the Set-AzureAdUser cmdlet
  • C.the Identity Governance blade in the Azure Active Directory admin center
  • D.the Licenses blade in the Azure Active Directory admin center

Question 43

Open question ↗

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 E5 subscription.

You create a user named User1.

You need to ensure that User1 can update the status of Identity Secure Score improvement actions.

Solution: You assign the Security Operator role to User1.

Does this meet the goal?

  • A.Yes
  • B.No

Question 44

Open question ↗

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 E5 subscription.

You create a user named User1.

You need to ensure that User1 can update the status of Identity Secure Score improvement actions.

Solution: You assign the SharePoint Administrator role to User1.

Does this meet the goal?

  • A.Yes
  • B.No

Question 45

Open question ↗

You have an Azure AD tenant that contains a user named Admin1.

You need to ensure that Admin1 can perform only the following tasks:

• From the Microsoft 365 admin center, create and manage service requests.

• From the Microsoft 365 admin center, read and configure service health.

• From the Azure portal, create and manage support tickets.

The solution must minimize administrative effort.

What should you do?

  • A.Create an administrative unit and add Admin1.
  • B.Enable Azure AD Privileged Identity Management (PIM) for Admin1.
  • C.Assign Admin1 the Helpdesk Administrator role.
  • D.Create a custom role and assign the role to Admin1.

Question 46

Open question ↗

Your network contains an on-premises Active Directory Domain Services (AD DS) domain that syncs with Azure AD and contains the users shown in the following table.

In Azure AD Connect, Domain/OU Filtering is configured as shown in the following exhibit.

Azure AD Connect is configured as shown in the following exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question 46

Question 47

Open question ↗

You have 2,500 users who are assigned Microsoft Office 365 Enterprise E3 licenses. The licenses are assigned to individual users.

From the Groups blade in the Azure Active Directory admin center, you assign Microsoft Office 365 Enterprise E5 licenses to a group that includes all users.

You need to remove the Office 365 Enterprise E3 licenses from the users by using the least amount of administrative effort.

What should you use?

  • A.the Update-MgGroup cmdlet
  • B.the Licenses blade in the Azure Active Directory admin center
  • C.the Set-WindowsProductKey cmdlet
  • D.the Administrative units blade in the Azure Active Directory admin center

Question 48

Open question ↗

You have an Azure AD tenant that contains the users shown in the following table.

You need to compare the role permissions of each user. The solution must minimize administrative effort.

What should you use?

Question 48
  • A.the Microsoft 365 Defender portal
  • B.the Microsoft 365 admin center
  • C.the Microsoft Entra admin center
  • D.the Microsoft Purview compliance portal

Question 49

Open question ↗

You have a Microsoft Exchange organization that uses an SMTP address space of contoso.com.

Several users use their contoso.com email address for self-service sign-up to Azure AD.

You gain global administrator privileges to the Azure AD tenant that contains the self-signed users.

You need to prevent the users from creating user accounts in the contoso.com Azure AD tenant for self-service sign-up to Microsoft 365 services.

Which PowerShell cmdlet should you run?

  • A.Update-MgOrganization
  • B.Update-MgPolicyPermissionGrantPolicyExclude
  • C.Update-MgDomain
  • D.Update-MgDomainFederationConfiguration

Question 50

Open question ↗

You have an Azure AD tenant.

You need to configure the following External Identities features:

• B2B collaboration

• Monthly active users (MAU)-based pricing

Which two settings should you configure? To answer, select the settings in the answer area.

NOTE: Each correct selection is worth one point.

Question 50