The MS-101: Microsoft 365 Mobility and Security certification exam is one of the two exams required to earn the credential of a Microsoft 365 Certified: Enterprise Administrator Expert, the other one being MS-100: Microsoft 365 Identity and Services. PassQuestion provides the latest MS-101 Practice Test Questions for your success in the first attempt with good grades. It offers you the best MS-101 Practice Test Questions which can help you to prepare MS-101 Microsoft 365 Mobility and Security exam smoothly and efficiently. If you want to have an understanding of different topics, then you need to use the best available MS-101 Practice Test Questions and this can help you in getting the MS-101 exam cleared with ease. 

Exam MS-101: Microsoft 365 Mobility and Security

Candidates for this exam are Microsoft 365 enterprise administrators who take part in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. They perform Microsoft 365 tenant management tasks for an enterprise, including its identities, security, compliance, and supporting technologies. Candidates have a working knowledge of Microsoft 365 workloads and should have been an administrator for at least Exchange, SharePoint, Teams, and Windows 10 deployment. Candidates also have a working knowledge of networking, server administration, and IT fundamentals such as DNS, Active Directory, and PowerShell.

Skills Measured

The English language version of this exam will be updated on August 3, 2022. 
Implement modern device services (40-45%)
Implement Microsoft 365 security and threat management (20-25%)
Manage Microsoft 365 governance and compliance (35-40%)

View Online Microsoft 365 Mobility and Security MS-101 Free Questions

You have a Microsoft 365 E5 subscription.
You define a retention label that has the following settings:
* Retention period 7 years
* Start the retention period bated on: When items were created
You need to prevent the removal of the label once the label K applied to a lie What should you select in the retention label settings?
A.Retain items even If users delete
B.Mark items as a record
C.Mark items as a regulatory record
D.Retain items forever
Answer: B

You have a Microsoft 365 tenant.
Company policy requires that all Windows 10 devices meet the following minimum requirements:
Require complex passwords.
Require the encryption of data storage devices.
Have Microsoft Defender Antivirus real-time protection enabled.
You need to prevent devices that do not meet the requirements from accessing resources in the tenant.
Which two components should you create? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
A.a configuration policy
B.a compliance policy
C.a security baseline profile
D.a conditional access policy
E.a configuration profile
Answer: B, D

You have a Microsoft 365 E5 subscription.
You need to identify which users accessed Microsoft Office 365 from anonymous IP addresses during the last seven days.
What should you do?
A.From the Cloud App Security admin center, select Users and accounts.
B.From the Microsoft 365 security center, view the Threat tracker.
C.From the Microsoft 365 admin center, view the Security & compliance report.
D.From the Azure Active Directory admin center, view the Risky sign-ins report.
Answer: A

You need to recommend a solution for the security administrator. The solution must meet the technical requirements.
What should you include in the recommendation?
A.Microsoft Azure Active Directory (Azure AD) Privileged Identity Management
B.Microsoft Azure Active Directory (Azure AD) Identity Protection
C.Microsoft Azure Active Directory (Azure AD) conditional access policies
D.Microsoft Azure Active Directory (Azure AD) authentication methods
Answer: B

You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com.
In the tenant, you create a user named User1.
You need to ensure that User1 can publish retention labels from the Security & Compliance admin center. The solution must use the principle of least privilege.
To which role group should you add User1?
A. Security Administrator
B. Records Management
C. Compliance Administrator
D. eDiscovery Manager
Answer: B

You have a Microsoft 365 subscription.
You plan to enable Microsoft Azure Information Protection.
You need to ensure that only the members of a group named PilotUsers can protect content.
What should you do?
A. Run the Add-AadrmRoleBasedAdministrator cmdlet.
B. Create an Azure Information Protection policy.
C. Configure the protection activation status for Azure Information Protection.
D. Run the Set-AadrmOnboardingControlPolicy cmdlet.
Answer: D

You have a Microsoft 365 subscription.
You recently configured a Microsoft SharePoint Online tenant in the subscription.
You plan to create an alert policy.
You need to ensure that an alert is generated only when malware is detected in more than five documents stored in SharePoint Online during a period of 10 minutes.
What should you do first?
A. Enable Microsoft Office 365 Cloud App Security.
B. Deploy Windows Defender Advanced Threat Protection (Windows Defender ATP)
C. Enable Microsoft Office 365 Analytics.
Answer: B

Your company has a Microsoft 365 tenant.
The company sells products online and processes credit card information.
You need to be notified if a file stored in Microsoft SharePoint Online contains credit card information. The file must be removed automatically from its current location until an administrator can review its contents.
What should you use?
A. a Security & Compliance data loss prevention (DLP) policy
B. a Microsoft Cloud App Security access policy
C. a Security & Compliance retention policy
D. a Microsoft Cloud App Security file policy
Answer: D