Time limited admin roles, protecting passwords, and Managing users through groups

Question 1

Your organization has a Microsoft 365 tenant. The security requirements have changed and any admins who manage Microsoft 365 must be limited in their administrative actions for three hours at a time. Global administrators must be exempt from this requirement Your organization's current configuration of Azure AD Privileged Identity Management is shown below. What changes do you need to make to meet the new security requirements?

Question 2

Your organization has a Microsoft 365 tenant. User accounts are synced from your organization's human resources system to Azure AD. Your organization has five departments that each have their own Microsoft SharePoint Online site. Every user must be granted access to their own department's site. No users should be able to access a site that is not their own respective department's site. Your manager has asked you to configure the security of the SharePoint sites. He's given you the following requirements: Users should be automatically added to the security group corresponding to their department. All group owners must verify their group membership only contains their department's users once a month. How do you configure Microsoft 365 to meet the security requirements?

Question 3

Your organization has a Microsoft 365 tenant with the following users. 📷 The Microsoft 365 tenant contains the following dynamic groups. 📷 Which users are members of ADGroup1 and ADGroup2?

Question 4

You have an Azure AD tenant named GitBit.org that contains the following users. 📷 User1 is a global administrator User2 is a user administrator You configure the following group naming policies: The word internal is added to the list of blocked words. You set GitBit- as a prefix. Check the box next to each true statement below.

Time limited admin roles, protecting passwords, and Managing users through groups

Questions for this test