070-346試験無料問題集「Microsoft Managing Office 365 Identities and Requirements 認定」

ページ: 1 / 23
トータル 357 問
完全版を入手する
Note: This question is part of a series of questions that present the same scenario. Each question in the series holds a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Partner organizations report that they are receiving spam that appears to be from ADatum employees.
You need to ensure that partner organizations can verify the authenticity of email from adatum.com.
Solution: You create and configure a DLP U.S. PII Data policy.
Does the solution meet the goal?

You company uses Microsoft Exchange Online for all mailboxes.
Users report connectivity issues when they attempt to access their mailbox by using Microsoft Outlook 2016.
You need to identify the following:
* Whether port 443 is allowed between the corporate network and Office 365
* Whether the number of network hops from the corporate network to Office 365 is less than 25
* Whether the network latency between the corporate network and Office 365 is less than 275 milliseconds.
Which tool should you use?

The legal department in your organization creates standardized disclaimers for all of their email messages. The disclaimers explain that any transmissions that are received in error should be reported back to the sender. You track any confidential documents that are attached to email messages.
Your security team reports that an employee may have mistakenly sent an email message that contained confidential information.
You need to identify whether the email message included the disclaimer and whether it contained confidential information.
Which two options should you configure? To answer, select the appropriate objects in the answer area.
正解:

Explanation

DLP stands for DataLossPrevention. A DLP policy is used to define exactly what constitutes a confidential email. For example: any email that has a credit card number of bank account number would be deemed to be confidential.
The DLP policy matches for sent mail report is used to display which emails contained content that matched a condition defined in a DLP policy. The DLP policy matches for sent mail report can be downloaded as a table that lists every single email that matched a DLP policy. This would identify in this question if the email did actually contain confidential information.
To identify whether the email message included the disclaimer, we need to view the "rule matches for sent mail" report. The disclaimer is added to an email by a transport rule. The rule defines which emails should have the disclaimer appended. A common example of this is all email sent to recipients outside the organization. By viewing the rule matches for sent mail, we can verify if the email in this question did match a rule and therefore did have the disclaimer appended.
A company has an Office 365 tenant.
You must retrieve mailbox diagnostic data.
You need to provide a report with this data for all users.
Which report solution should you choose?

解説: (GoShiken メンバーにのみ表示されます)
You manage Active Directory Domain Services (AD DS) for a company. You assign Office 365 licenses to all users. You implement Microsoft Azure Active Directory (Azure AD) Connect.
Your company terminates an employee.
You need to ensure that the terminated employee can no longer access any Office 365 rescues.
Which Windows PowerShell cmdlet should you run?

解説: (GoShiken メンバーにのみ表示されます)
Your company uses Microsoft SharePoint Online for collaboration. A document library is configured as shown in the following table.

You need to enable the coauthoring of documents in the library.
What should you do?

解説: (GoShiken メンバーにのみ表示されます)
An organization uses Exchange Online.
You enable mailbox audit logging for all mailboxes.
User1 reports that her mailbox has been accessed by someone else.
You need to determine whether someone other than the mailbox owner has accessed the mailbox.
What should you do?

解説: (GoShiken メンバーにのみ表示されます)
You need to configure the environment to process all tweets for the marketing department.
What should you configure?

解説: (GoShiken メンバーにのみ表示されます)
You need to configure the single sign-on environment for Contoso.
Which certificate type and DNS entry should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
正解:

Explanation
Box 1: self-signed SSL
Box 2: sts.contoso.com
The token-signing certificate must contain a private key that chains to a trusted root in the FS. AD FS creates a self-signed certificate by default.
It is recommend that the self-signed token-signing certificate generated by AD FS is used.
Microsoft best practices recommends that you use the host name, STS (secure token service). ie.
sts.domain.com.
References:
https://www.digicert.com/csr-creation-microsoft-office-365.htm
https://support.office.com/en-us/article/Plan-for-third-party-SSL-certificates-for-Office-365-b48cdf63-07e0-4cda
A company has an Office 365 tenant that has an Enterprise E1 subscription.
You plan to test a new deployment by using 50 tenant user accounts.
You need to ensure that the passwords for the test user accounts do not expire.
Which Windows PowerShell cmdlet should you run?

解説: (GoShiken メンバーにのみ表示されます)
An organization migrates to Office 365.
The Office 365 administrator must be notified when Office 365 maintenance activities are planned.
You need to configure the administrator's computer to receive the notifications.
What should you configure?

解説: (GoShiken メンバーにのみ表示されます)
A company has an Office 365 tenant. You plan to use Office 365 to manage the DNS settings for a custom domain. You purchase the domain through a third-party provider.
You create a custom website. You must host the website through a third-party provider at the IPv6 address
2001:4860:4801:1:5:4d. You need to configure the correct DNS settings.
What should you do? To answer, drag the appropriate DNS record to the correct DNS target. Each record may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
正解:

Explanation

Change your domain's name server (NS) records
When you get to the last step of the domains setup wizard in Office 365, you have one task remaining. To set up your domain with Office 365 services, like email, you change your domain's name server (or NS) records at your domain registrar to point to the Office 365 primary and secondary name servers.
Use (A) DNS record for the web site.
You have an Office 365 tenant that uses an Enterprise E3 subscription. You have two servers in a perimeter network that have the Active Directory Federation Services (AD FS) proxy role service installed. A federation server farm is located behind a firewall.
You need to ensure that the AD FS proxies can communicate with the federation server farm.
Which two name resolution strategies can you use? Each correct answer presents a complete solution.

解説: (GoShiken メンバーにのみ表示されます)
You have an Office 365 tenant that uses an Enterprise E3 subscription. You activate Azure Rights Management for the tenant.
You need to deploy Azure Rights Management for all users.
Which Windows PowerShell cmdlet should you run?

解説: (GoShiken メンバーにのみ表示されます)
Your company has an Office 365 subscription. You need to add the label "External" to the subject line of each email message received by your organization from an external sender.
What should you do?

解説: (GoShiken メンバーにのみ表示されます)
A company plans to deploy an Office 365 tenant. You have two servers named FS1 and FS2 that have the Federation Service Proxy role service installed.
You must deploy Active Directory Federation Services (AD FS) on Windows Server 2012.
You need to configure name resolution for FS1 and FS2.
What should you do?

解説: (GoShiken メンバーにのみ表示されます)
ページ: 1 / 23
トータル 357 問