MS-100 Microsoft 365 Identity and Services

monitor application access

Practice Test

Which of the following tools can be used to monitor application access in Microsoft 365?

  • A) Azure AD Connect
  • B) Azure AD Identity Protection
  • C) Azure AD Privileged Identity Management
  • D) Microsoft Cloud App Security
  • E) None of the above

Answer: D) Microsoft Cloud App Security

Explanation: Microsoft Cloud App Security provides comprehensive visibility into application usage and access within Microsoft 365, allowing organizations to monitor and protect their cloud resources.

True or False: Conditional Access policies can be used to monitor and control access to specific applications in Microsoft

Answer: True

Explanation: Conditional Access policies can be configured to enforce access controls based on various factors, such as user location, device compliance, and application sensitivity.

Which of the following reports can be used to monitor user activity within Microsoft 365?

  • A) Azure AD Sign-Ins report
  • B) Azure AD Risky Sign-Ins report
  • C) Office 365 Secure Score report
  • D) All of the above

Answer: D) All of the above

Explanation: Azure AD Sign-Ins report, Azure AD Risky Sign-Ins report, and Office 365 Secure Score report can all provide valuable insights into user activity and security risks within Microsoft

What is the purpose of Azure AD Conditional Access policies?

  • A) To monitor application access
  • B) To enforce access controls
  • C) To audit user activity
  • D) To manage roles and permissions

Answer: B) To enforce access controls

Explanation: Azure AD Conditional Access policies are used to enforce specific access controls based on predefined conditions, such as user location, device compliance, and application sensitivity.

Select the correct statement about Azure AD Identity Protection:

  • A) It can only monitor user authentication events.
  • B) It provides real-time detection and remediation of identity-based risks.
  • C) It is a standalone product separate from Microsoft
  • D) It is only available to Azure AD Premium P2 subscribers.

Answer: B) It provides real-time detection and remediation of identity-based risks.

Explanation: Azure AD Identity Protection offers advanced capabilities for monitoring and mitigating identity-related risks in real-time, helping organizations to enhance their security posture.

Which of the following Azure AD roles can be granted permission to monitor application access in Microsoft 365?

  • A) Global Administrator
  • B) Application Administrator
  • C) Helpdesk Administrator
  • D) Security Administrator

Answer: D) Security Administrator

Explanation: Security Administrators in Azure AD have the necessary permissions to monitor application access and configure security policies within the organization.

True or False: Microsoft Cloud App Security can provide visibility into non-Microsoft cloud applications.

Answer: True

Explanation: Microsoft Cloud App Security supports a wide range of cloud applications, not just those within the Microsoft ecosystem, allowing organizations to gain insights into their entire cloud usage.

Which of the following authentication methods can be monitored using Azure AD Conditional Access policies?

  • A) Multi-Factor Authentication
  • B) Single Sign-On
  • C) Password Hash Sync
  • D) All of the above

Answer: D) All of the above

Explanation: Azure AD Conditional Access policies can be used to monitor and enforce access controls for various authentication methods, including Multi-Factor Authentication, Single Sign-On, and Password Hash Sync.

What is the primary purpose of monitoring application access in Microsoft 365?

  • A) To track user productivity
  • B) To detect and mitigate security threats
  • C) To optimize application performance
  • D) To restrict user access

Answer: B) To detect and mitigate security threats

Explanation: Monitoring application access helps organizations identify potential security risks, unauthorized access attempts, and anomalous behaviors within their cloud environment, allowing them to take proactive measures to protect their data and resources.

Which of the following features is NOT included in Microsoft Cloud App Security?

  • A) Cloud Discovery
  • B) Cloud App Catalog
  • C) Data Loss Prevention
  • D) Dynamic Conditional Access

Answer: D) Dynamic Conditional Access

Explanation: While Microsoft Cloud App Security offers advanced capabilities for discovering, monitoring, and securing cloud applications, Dynamic Conditional Access is a feature of Azure AD that enables real-time access controls based on user and device conditions.

Interview Questions

How can you monitor application access in Microsoft 365?

You can monitor application access in Microsoft 365 by using Azure Active Directory’s sign-in logs and audit logs. These tools provide detailed information about who has accessed which applications and when.

What does Azure Active Directory’s auditing feature show?

Azure Active Directory’s auditing feature provides vital information concerning user and group management, managed application activity, directory activities, and security and recommendations.

What is Microsoft 365’s Cloud App Security?

Microsoft 365’s Cloud App Security is a feature that provides insights into your cloud applications’ usage patterns and the information they store. It also provides sophisticated analytics to identify and combat cyber threats.

Which feature should you use to restrict access to a Microsoft 365 application based on location?

To restrict access to a Microsoft 365 application based on location, you should use Conditional Access policies.

What is the purpose of a Conditional Access policy in Microsoft Azure?

A Conditional Access policy in Microsoft Azure allows you to create and enforce rules that define access conditions to applications within the network. The policy can be used to restrict access based on factors like user role, location, device status, etc.

What kind of information can you find in the Azure Active Directory sign-in logs?

The Azure Active Directory sign-in logs provide information on who attempted to sign in, the application they were trying to access, the timestamps of the sign-in attempt, whether it was successful, and the IP address from which the attempt was made.

How can you use Azure AD to manage Application Access?

Azure AD allows you to manage application access using features like conditional access policies, app roles, and provisioning. It also keeps a comprehensive log of activities related to application access.

How can you enforce multi-factor authentication for a specific application in Azure AD?

You can enforce multi-factor authentication for a specific application in Azure AD using Conditional Access. In the policy, you can require that all users or a group of users pass multi-factor authentication before accessing the specified application.

What is the main function of the Privileged Identity Management tool in Azure?

The Privileged Identity Management (PIM) tool in Azure helps monitor and control access rights within an organization. It provides just-in-time privileged access to Azure AD and Azure resources, enforces on-demand, time-bound access to resources and increases visibility into administrative activities.

How do you monitor Privileged Identity Management (PIM) activity in Azure AD?

You can monitor PIM activity in Azure AD through PIM audit logs. The audit logs show all the activities performed within PIM, such as activating a role, adding or removing a role assignment, and performing a privileged operation.

What are risk events in Azure AD Identity Protection?

Risk events in Azure AD Identity Protection are suspicious activities that trigger an automatic response or alert. Examples of risk events include impossible travel distance, unfamiliar sign-in properties, and malicious IP addresses.

How can Microsoft 365’s Cloud App Security help in identifying and addressing threats?

Microsoft 365’s Cloud App Security can help in identifying and addressing threats through anomaly detection policies, app discovery reports, data control policies, and by investigating risky or unusual activities.

How often do Azure AD sign-in logs retain the data?

Azure AD sign-in logs retain data for 30 days.

How can Azure AD’s Conditional Access help control how authorized users can access your applications?

Azure AD’s Conditional Access can help control how authorized users can access your applications by setting up policies that enforce certain conditions before access is granted. These conditions can be set based on IP address, sign-in risk, device platform and more.

Does Microsoft 365’s Cloud App Security support third-party applications?

Yes, Microsoft 365’s Cloud App Security supports and provides insights and control over a wide range of third-party applications, not just Microsoft apps.

Related Post

MS-100 Microsoft 365 Identity and Services

plan conditional access policies

extutorials.com
MS-100 Microsoft 365 Identity and Services

manage roles in Microsoft 365 admin center

extutorials.com
MS-100 Microsoft 365 Identity and Services

choose between Azure AD Connect and Azure AD Connect cloud sync

extutorials.com

Leave a Reply

Your email address will not be published. Required fields are marked *

You Missed

AZ-900 Microsoft Azure Fundamentals

Describe Azure Resource Manager and Azure Resource Manager templates (ARM templates)

AZ-900 Microsoft Azure Fundamentals

Describe virtual networking, including the purpose of Azure Virtual Networks, Azure virtual subnets, peering, Azure DNS, Azure VPN Gateway, and Azure ExpressRoute

AZ-900 Microsoft Azure Fundamentals

Describe the purpose of Azure Arc

AZ-900 Microsoft Azure Fundamentals

Identify appropriate use cases for each cloud service (IaaS, PaaS, SaaS)