Q1. You have an Office 365 tenant that uses an Enterprise E3 subscription. You activate Azure
Rights Management for the tenant.
You must test the service with the Development security group before you deploy Azure
Rights Management for all users.
You need to enable Azure Rights Management for only the Development security group. Which Windows PowerShell cmdlet should you run?
A. Enable-Aadrm
B. New-AadrmRightsDefinition
C. Enable-AadrmSuperUserFeature
D. Add-AadrmSuperUser
E. Set-AadrmOnboardingControlPolicy
Answer: E
Explanation:
The Set-AadrmOnboardingControlPolicy cmdlet sets the policy that controls user on-boarding for Azure Rights Management. This cmdlet supports a gradual deployment by controlling which users in your organization can protect content by using Azure Rights Management.
Example:
Restrict Azure RMS to users who are members of a specified group This command allows only users that are members of the security group with the specified object ID to protect content by using Azure Rights Management. The command applies to Windows clients and mobile devices.
Windows PowerShell
PS C:\> Set-AadrmOnboardingControlPolicy -UseRmsUserLicense $False -SecurityGroupObjectId "f
Reference: Set-AadrmOnboardingControlPolicy
https://msdn.microsoft.com/en-us/library/dn857521.aspx
Q2. A company uses Office 365 services. You implement the Windows Azure Active Directory Sync tool in the local environment.
An employee moves to a new department. All Office 365 services must display the new department information for the employee.
You need to update the employee's user account.
Where should you change the value of the department attribute for the employee?
A. The Active Directory management page in the Windows Azure Management Portal
B. The Users and groups page in the Office 365 admin center
C. The on-premises Active Directory
D. The Metaverse Designer
Answer: C
Q3. HOTSPOT
A company plans to synchronize users in an existing Active Directory organizational unit with Office 365.
You must configure the Azure Active Directory Synchronization (AAD Sync) tool with password sync.
You need to ensure that the service account has the minimum level of permissions required.
Which two permission levels should you assign to the account for each task? To answer, select the appropriate permission level from each list in the answer area.
Answer:
Q4. DRAG DROP
You have an Office 365 tenant. An organization is migrating from an Exchange organization to Office 365.
Users report that Outlook does not display the availability of other users for meetings. You must determine whether an Office 365 mailbox can access the scheduling availability of a user with an on-premises mailbox. You must also run a test to verify that an on-premises mailbox can access the scheduling availability of a user that has an Office 365 mailbox.
You need to conduct the tests.
What should you do? To answer, drag the appropriate test to run to the correct mailbox test scenario. Each test may be used once, more than once or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Q5. Your company deploys an Office 365 tenant.
You need to ensure that you can view service health and maintenance reports for the past seven days.
What are two possible ways to achieve this goal? Each correct answer presents a complete solution.
A. Run the Microsoft Online Services Diagnostics and Logging (MOSDAL) Support Kit.
B. View the service health current status page of the Office 365 admin center.
C. View the service settings page of the Office 365 admin center.
D. Subscribe to the Office 365 Service Health RSS Notifications feed.
Answer: B,D
Q6. HOTSPOT
An organization has over 10,000 users and uses a SQL-based Active Directory Federation
Services (AD FS) server farm.
You need to change the AD FS 2.0 service account password.
What should you do? Select the correct answer from each list in the answer area.
Answer:
Q7. You plan to deploy an Office 365 tenant to multiple offices around the country.
You need to modify the users and groups who are authorized to administer the Rights Management service.
Which Windows PowerShell cmdlet should you run?
A. Add-MsolGroupMember
B. Get-AadrmRoleBasedAdministrator
C. Remove-AadrmRoleBasedAdministrator
D. Enable-AadrmSuperUserFeature
Answer: A
Q8. DRAG DROP
You are the Office 365 administrator for your company. Your company uses Office 365 for collaboration.
You must reset the password for all of the employees in your company.
You need to ensure that all employees create a new password the next time they sign in to Office 365.
How should you complete the relevant Windows PowerShell command? To answer, drag the appropriate Windows PowerShell segment to the correct location or locations. Each Windows PowerShell segment may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer:
Q9. Your company has a hybrid deployment of Office 365. You need to create a group. The group must have the following characteristics:
Group properties are synchronized automatically.
Group members have the ability to control which users can send email messages to the group.
What should you do?
A. Create a distribution group and configure the Mail Flow Settings.
B. Create a dynamic distribution group.
C. Create a new role group.
D. Create a distribution group and configure the Membership Approval settings.
Answer: D
Explanation:
Message Approval
Use this section to set options for moderating the group. Moderators approve or reject messages sent to the group before they reach the group members. Messages sent to this group have to be approved by a moderator This check box isn't selected by default. If you select this check box, incoming messages are reviewed by the group moderators before delivery. Group moderators can approve or reject incoming messages.
Group moderators
To add group moderators, click Add. To remove a moderator, select the moderator, and then click Remove. If you have selected "Messages sent to this group have to be approved by a moderator" and you don't select a moderator, messages to the group are sent to the group owners for approval.
Senders who don't require message approval
To add people or groups that can bypass moderation for this group, click Add. To remove a person or a group, select the item, and then click Remove.
Select moderation notifications
Use this section to set how users are notified about message approval.
. Notify all senders when their messages aren't approved. This is the default setting. Notify all senders, inside and outside your organization, when their message isn't approved.
. Notify senders in your organization only when their messages aren't approved. When you select this option, only people or groups in your organization are notified when a message that they sent to the group isn't approved by a moderator.
. Don't notify anyone when a message isn't approved. When you select this option, notifications aren't sent to message senders whose messages aren't approved by the group moderators.
Reference: http://help.outlook.com/en-us/140/ms.exch.ecp.editdistributiongroup.aspx
Q10. DRAG DROP
A company deploys an Office 365 tenant. All employees use Lync Online.
You need to configure the network firewall to support Lync Online.
Which ports must you open? To answer, drag the appropriate port number to the correct feature or features. Each port number may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Answer: