Use VCE Exam Simulator to open VCE files
MS-700 Microsoft Practice Test Questions and Exam Dumps
Question No 1:
You work as a Systems Administrator for your company. The company has recently purchased a subscription to Microsoft 365. All users in your company have a Microsoft 365 E3 license. You are in the process of configuring Microsoft Teams. You need to configure Microsoft Teams to ensure that users within your company can collaborate with users in a partner company. You plan to create guest accounts for users in the partner company. Users with Guest accounts must not be able to invite other guests.
Only users in the partner company must be able to collaborate with your users by using Microsoft Teams. Which of the following should you configure?
A. The external sharing settings in the SharePoint Admin Center.
B. The external collaboration settings in Azure Active Directory.
C. The Anonymous users can join a meeting setting in the Teams Meeting Settings.
D. The Global Meeting Policy in the Teams Admin Center.
Correct answer: B
Explanation:
To allow collaboration between your users and a partner company’s users in Microsoft Teams, while ensuring that the partner company’s users have guest accounts and cannot invite other guests, the most appropriate configuration is the external collaboration settings in Azure Active Directory (Azure AD). Azure AD provides the control over how guest access works in your organization, including who can invite guests and what permissions they have.
Let’s break down the options:
A refers to external sharing settings in the SharePoint Admin Center, which govern sharing for SharePoint and OneDrive. These settings control how content in SharePoint or OneDrive is shared externally, including whether external users can view or edit documents. While SharePoint sharing is important for document collaboration, this does not control the guest access settings for Microsoft Teams. Therefore, A is not the best option for your scenario.
B talks about external collaboration settings in Azure Active Directory. This is where you control guest access across Microsoft 365 services, including Teams. In Azure AD, you can configure who can invite guests (e.g., you can limit it so that only specific administrators or users can invite guests, preventing guest users from inviting other guests). You can also define policies to restrict collaboration to specific domains, such as ensuring only users from the partner company can collaborate with your users. This directly addresses your need to restrict guest invitations and ensure only users from the partner company can collaborate via Microsoft Teams, making B the correct choice.
C refers to the Anonymous users can join a meeting setting in Teams Meeting Settings. This setting allows or prevents anonymous users (i.e., users without a Microsoft Teams account) from joining Teams meetings. While this is important for controlling meeting access, it doesn't directly impact guest access to Teams channels or whether guests can invite others. Therefore, C is not the solution to your scenario.
D mentions the Global Meeting Policy in the Teams Admin Center, which controls various aspects of meetings in Microsoft Teams, such as whether users can schedule meetings, record meetings, or use specific features during meetings. However, this setting does not manage the guest access policies or who can invite guests to Teams, which is the core of your requirement. Thus, D is not the correct answer for this specific use case.
Conclusion: To achieve the goal of allowing guest access while ensuring that only users from the partner company can collaborate and preventing guests from inviting others, you should configure the external collaboration settings in Azure Active Directory.
Correct answer: B
Question No 2:
What action should you take in the Microsoft Teams Admin Center to ensure that guest users cannot use their cameras during meetings while allowing company users to use their cameras?
A. Configure the External access settings in Org-wide settings.
B. Configure the Teams settings in Org-wide settings.
C. Configure the Guest access settings in Org-wide settings.
D. Configure the Audio & Video settings in the default Meeting Policy.
Correct answer: D
Explanation:
In Microsoft Teams, various settings are available to customize the experience for both internal and external users, including how users interact during meetings. In this scenario, your goal is to ensure that guest users cannot use their cameras during meetings, while allowing your company users to use their cameras freely. Let’s break down the options to determine which is the most suitable approach for achieving this.
Option A: Configure the External access settings in Org-wide settings.
The External access settings in Microsoft Teams allow you to configure how your organization communicates with users from other organizations. External access can control whether users in your organization can communicate with Teams users from other domains (federation) or Skype for Business users. However, this setting does not control camera access during meetings or collaboration. It mainly focuses on communication between different organizations, not individual features like camera settings. Hence, this option does not fulfill the requirement.
Option B: Configure the Teams settings in Org-wide settings.
The Teams settings in Org-wide settings control broader Teams functionality, such as whether teams are created, whether users can create new teams, and other organizational features within Microsoft Teams. While this is useful for general Teams configuration, it does not directly control the specific features such as camera usage during meetings. Therefore, this setting is not the right choice for controlling guest camera usage.
Option C: Configure the Guest access settings in Org-wide settings.
The Guest access settings in Microsoft Teams determine what features and permissions guest users can have when they are added to your organization’s teams. This includes settings such as whether guests can participate in meetings, use chat, or access specific team channels. While configuring guest access is necessary for allowing external users to join your teams, it does not directly control camera settings during meetings. You would need to adjust other settings (such as meeting policies) to control camera usage. So, this option does not meet the requirement either.
Option D: Configure the Audio & Video settings in the default Meeting Policy.
The Audio & Video settings in the Meeting Policy control what meeting features are available to users during Teams meetings. Specifically, you can configure whether users can use their microphones and cameras during meetings. Since your company’s security policy specifies that guest users should not be able to use their cameras during Microsoft Teams meetings, you would need to configure this setting within the default Meeting Policy to restrict camera usage for guest users while still allowing your company users to use theirs. In the Teams Admin Center, you can configure these Audio & Video settings by creating or editing meeting policies, ensuring that guest users are restricted from using their cameras, while company users have unrestricted access to camera functionality.
In conclusion, the most effective way to meet the security requirement—limiting camera access for guest users while allowing company users to use their cameras—is by modifying the Audio & Video settings in the default Meeting Policy. This is why Option D is the correct answer.
Question No 3:
You work as a Microsoft 365 Administrator for your company. All users have Microsoft 365 licenses. Users frequently collaborate by using private chats in Microsoft Teams.
You need to ensure that a single user is unable to permanently delete private chats. Which of the following should you configure?
A. The user’s Microsoft 365 license options in the Microsoft 365 Admin Center.
B. A meeting policy in Microsoft Teams.
C. A litigation hold on the user’s mailbox.
D. A Sensitivity Label in the Security & Compliance Admin Center.
Answer: C
Explanation:
In this scenario, the objective is to prevent a specific user from permanently deleting their private chats in Microsoft Teams. The most effective way to achieve this in a Microsoft 365 environment is to apply a litigation hold to the user's mailbox. Let’s break down the reasoning behind this solution and review the other options to clarify why they are not suitable.
Litigation Hold:
A litigation hold is a feature available in Microsoft 365 that preserves all mailbox content, including emails and Teams chat messages, even if the user tries to delete them. When a litigation hold is applied, the system holds onto all items that are part of the user’s mailbox (this includes Teams private chat messages, since Teams chat data is stored in the user's mailbox), and these items cannot be permanently deleted.
This hold is particularly useful in scenarios such as legal investigations or compliance monitoring, where it’s crucial to ensure that certain data remains available for auditing, eDiscovery, or other compliance-related processes. Once a litigation hold is in place, the user cannot permanently delete any items, including private chats, that fall within the scope of the hold, ensuring that the data is retained and can be accessed later if necessary.
Other Options:
A. The user’s Microsoft 365 license options in the Microsoft 365 Admin Center: Modifying the Microsoft 365 license options in the Admin Center does not directly affect a user's ability to delete private chats. While licenses determine access to specific services and features, this configuration does not provide control over the ability to permanently delete data, including chat messages in Microsoft Teams.
B. A meeting policy in Microsoft Teams: A meeting policy in Microsoft Teams controls various aspects of meetings, such as who can schedule a meeting, who can record meetings, or who can share content. However, it does not provide control over whether a user can delete private chats. Meeting policies are related specifically to meetings and do not apply to chat deletion behavior.
D. A Sensitivity Label in the Security & Compliance Admin Center: Sensitivity labels are used to classify and protect data based on its sensitivity level. They can enforce encryption, watermarking, and other protections to safeguard sensitive information. However, sensitivity labels do not prevent users from deleting chats. They are more focused on classification, protection, and governance rather than data retention or preventing deletion.
To prevent a user from permanently deleting private chats in Microsoft Teams, you should apply a litigation hold on the user's mailbox. This ensures that all Teams chat data, including private chats, is preserved and cannot be deleted by the user, meeting the compliance and retention requirements. Therefore, the correct answer is C.
Question No 4:
What action should you perform to ensure that the Research team is labelled as Confidential when viewed in the Microsoft Teams client?
A. Configure and publish a Sensitivity Label in the Security & Compliance admin center.
B. Configure and publish a Retention Label in the Security & Compliance admin center.
C. Configure a Teams policy in the Microsoft Teams admin center.
D. Configure the Meeting Settings in the Microsoft Teams admin center.
Correct Answer: A
Explanation:
To ensure that the Research team in Microsoft Teams is labeled as Confidential, you need to apply a Sensitivity Label. Sensitivity labels in Microsoft 365 are used to classify and protect data based on its sensitivity. They can be applied to different types of data, including documents, emails, and Teams teams. Sensitivity labels are typically used to enforce protection settings, like encryption, watermarking, and access control, depending on the label applied. This approach is appropriate for scenarios where the classification of information, such as "Confidential," needs to be visible to the users and enforced in the system.
A. Configure and publish a Sensitivity Label in the Security & Compliance admin center
Sensitivity labels are the correct mechanism to classify teams and data in Microsoft 365. In this case, to label the Research team as Confidential, you would configure a sensitivity label in the Microsoft 365 Compliance Center (formerly known as the Security & Compliance center) and then apply it to the team. Once configured, the label will appear in the Teams client interface, clearly marking the team as confidential. Users will also be able to see this classification, and the label can enforce policies like encryption, data loss prevention (DLP), and more. This is the correct and recommended method to meet your requirement. Therefore, A is the correct answer.
B. Configure and publish a Retention Label in the Security & Compliance admin center
Retention labels are used for data retention policies, which determine how long data is retained before it is deleted or archived. Retention labels are not used for classifying the sensitivity of content, but rather for managing how long it is kept. Although retention labels can be important for legal or compliance reasons, they do not serve the purpose of marking content as confidential in the way that sensitivity labels do. Therefore, B is not the correct answer.
C. Configure a Teams policy in the Microsoft Teams admin center
While Teams policies are important for controlling various settings within Teams, such as messaging, meeting options, and app permissions, they are not used for classifying the sensitivity of a team. Teams policies control the features and functionality available to users within Microsoft Teams but do not apply sensitivity labels or confidentiality markers. Therefore, C is not the correct answer.
D. Configure the Meeting Settings in the Microsoft Teams admin center
Meeting settings in the Teams admin center govern how meetings are conducted within Microsoft Teams, such as who can present, who can join meetings, and other meeting-related settings. These settings are unrelated to applying a confidentiality label to a team. Therefore, D is not the correct answer.
To summarize, the correct action to label the Research team as Confidential is to configure and publish a Sensitivity Label in the Security & Compliance admin center. This label will appear in the Teams client and ensure that the team is appropriately classified as confidential. Therefore, A is the correct answer.
Question No 5:
You work as a Systems Administrator for your company. The company has departments named Sales, Accounts, Research, and Production.
The company has a subscription to Microsoft 365. All users in your company have a Microsoft 365 E5 license.
You have configured a Team for each of the departments.
Currently, users in any department can use Microsoft Teams to communicate with users from any other department.
You need to configure the environment to ensure that users in the Research team can only communicate with other users in the Research team by using Microsoft Teams. What should you do?
A. Configure a Teams Meeting policy.
B. Configure Information Barrier policies.
C. Configure an App Protection policy.
D. Configure Conference Bridges.
Correct answer: B
Explanation:
To restrict communication between departments in Microsoft Teams, Information Barrier policies are the appropriate solution. Information Barriers (IB) allow administrators to define policies that prevent certain users from communicating with others. These policies can be used to block chats, calls, and other communication in Teams between users from different groups, such as different departments.
By configuring an Information Barrier policy, you can ensure that users in the Research team can only communicate with other members of the Research team and cannot interact with members of other teams, like Sales, Accounts, or Production. This solution works because Information Barriers are specifically designed to enforce separation between groups of users, making it ideal for preventing communication between departments.
Now, let’s examine the other options:
Option A (Configure a Teams Meeting policy) is not relevant in this context. Teams Meeting policies control the settings and capabilities within scheduled meetings (such as who can present or who can join a meeting), but they do not restrict or prevent communication between different teams or groups.
Option C (Configure an App Protection policy) is used to manage the protection of company data on mobile devices. App Protection policies help secure apps and data in a bring-your-own-device (BYOD) environment but do not specifically restrict communications between teams or users in Microsoft Teams.
Option D (Configure Conference Bridges) is used to configure settings for calling and meeting services in Teams, specifically for users who dial into meetings via a phone number. Conference Bridges are used to manage dial-in settings for meetings and are not a tool for restricting communication between users or teams.
In summary, Information Barrier policies are the best option for ensuring that users in the Research team can only communicate with other users in the same team within Microsoft Teams, effectively achieving the goal of limiting inter-departmental communication.
Question No 6:
What action should you perform to be notified if a user creates a new Team using the "Create a Team" option in the Microsoft Teams client?
A. Configure the External Collaboration settings in the Azure Active Directory admin center.
B. Configure a supervision policy in the Security & Compliance admin center.
C. Configure an eDiscovery Case in the Security & Compliance admin center.
D. Configure an alert policy in the Security & Compliance admin center.
Correct Answer: D
Explanation:
In this scenario, the goal is to receive notifications when a user creates a new Team in Microsoft Teams. This requires setting up a mechanism that can detect such actions and trigger notifications. Let's break down each option and see which one best suits the need for monitoring Team creation.
Option A: Configure the External Collaboration settings in the Azure Active Directory admin center
The External Collaboration settings in Azure Active Directory control how external users can collaborate within your organization’s environment. This includes allowing or blocking guest access to Teams and other Microsoft 365 services. However, this setting does not deal with monitoring or alerting on actions such as creating new Teams within your organization. Therefore, A is not the correct answer for the requirement to be notified when a new Team is created.
Option B: Configure a supervision policy in the Security & Compliance admin center
A supervision policy in the Security & Compliance admin center is typically used to ensure compliance with corporate communication policies. It allows you to monitor communications within Teams (e.g., messages, channels) for compliance purposes. However, supervision policies are not designed to monitor administrative actions like the creation of new Teams. Therefore, while useful for monitoring internal conversations, B does not meet the specific need for monitoring Team creation.
Option C: Configure an eDiscovery Case in the Security & Compliance admin center
An eDiscovery Case is used for legal purposes, allowing you to preserve and search data across Microsoft 365 services in response to legal inquiries or investigations. While eDiscovery can track data and communications, it is not designed to alert you about administrative actions like creating new Teams. Thus, C is not applicable for the goal of receiving notifications about Team creation.
Option D: Configure an alert policy in the Security & Compliance admin center
This is the correct choice. Alert policies in the Security & Compliance admin center allow you to set up notifications for specific activities within your Microsoft 365 environment, such as the creation of new Teams. These policies are highly flexible and can be customized to trigger alerts for specific events, including Team creation actions. You can create a custom alert policy that monitors the Microsoft Teams service for events like Team creation, and then configure the system to send notifications to designated administrators. Therefore, D is the correct action to take to ensure you are notified when a new Team is created.
In summary, alert policies in the Security & Compliance admin center are the most suitable way to receive notifications about the creation of new Teams in Microsoft Teams. This allows you to efficiently monitor and respond to administrative actions in your organization’s Microsoft 365 environment. Therefore, the correct answer is D.
Question No 7:
What action should you perform to generate the debug logs for Microsoft Teams on User1's computer?
A. Press the following key combination: Ctrl+Alt+Shift+1.
B. Right-click on the Teams icon and select Get Logs.
C. Use Windows Event Viewer and browse to the Application Log.
D. Run a Usage report in the Teams admin center.
Correct Answer: A
Explanation:
When troubleshooting issues with the Microsoft Teams client, generating debug logs is an important step to identify the root cause. Let’s go through each option to determine which one directly leads to generating the required debug logs on User1's computer.
Option A: Press the following key combination: Ctrl+Alt+Shift+1
This key combination is a shortcut for generating the debug logs in Microsoft Teams. When pressed, it initiates the creation of log files, which are useful for diagnosing issues with the Teams desktop client. The logs generated contain detailed information about Teams' operation, which can be reviewed to help troubleshoot any problems the user is experiencing. Therefore, A is correct because it directly generates the debug logs from the Teams client.
Option B: Right-click on the Teams icon and select Get Logs
While right-clicking on the Teams icon can provide options for managing Teams settings and troubleshooting, the specific option to Get Logs does not exist in this context. Instead, logs are generated through the key combination (Ctrl+Alt+Shift+1), not via the Teams icon context menu. Therefore, B is incorrect.
Option C: Use Windows Event Viewer and browse to the Application Log
The Windows Event Viewer is used for monitoring system-level events, including application errors, security logs, and system logs. While it may show some relevant information for system-wide issues, it does not provide the level of detail needed for Microsoft Teams-specific debugging. Microsoft Teams debug logs are much more granular and focused on the Teams application itself, and the Event Viewer does not have the specific Teams client logs that are required for this issue. Therefore, C is incorrect.
Option D: Run a Usage report in the Teams admin center
A Usage report in the Teams admin center provides insights into how Microsoft Teams is being used within an organization, including data like active users, call and meeting usage, and overall adoption metrics. However, this does not generate debug logs or provide specific troubleshooting information about user-side issues such as crashes or errors. The Usage report is more about usage metrics, not troubleshooting. Therefore, D is incorrect.
The correct method for generating debug logs for Microsoft Teams on a user's desktop is to use the key combination Ctrl+Alt+Shift+1, which creates detailed logs that can be used to diagnose issues with the Teams client. This is the most direct and effective method for generating the necessary logs.
So, the correct answer is: A.
Question No 8:
What action should you take to assign the manager the minimum required permissions to view Microsoft Teams usage reports while adhering to the principle of least privilege?
A. Assign the Teams Communications Administrator role to the manager.
B. Assign the Security Administrator role to the manager.
C. Assign the Reports Reader role to the manager.
D. Assign the Compliance Manager role to the manager.
Answer: C
Explanation:
In this case, the task is to assign the manager the minimum permissions necessary to view the Microsoft Teams usage reports, in accordance with the principle of least privilege. This means providing only the access required to complete the task and nothing more.
Option C, assigning the Reports Reader role to the manager, is the best solution. The Reports Reader role in Microsoft 365 is specifically designed to give users read-only access to the usage reports, including Microsoft Teams reports. This role allows users to view usage statistics and analytics without giving them permissions to make any changes to the system. The Reports Reader role provides the precise level of access required for the manager to view the Teams usage reports, adhering to the principle of least privilege.
Now, let’s analyze the other options:
Option A, assigning the Teams Communications Administrator role, is not the most appropriate choice. The Teams Communications Administrator role grants a broad set of permissions, including the ability to configure and manage Teams settings and policies. This role is much more powerful than what is needed for simply viewing usage reports, which would violate the principle of least privilege by granting unnecessary permissions.
Option B, assigning the Security Administrator role, also provides more permissions than necessary. The Security Administrator role allows users to manage security and compliance features across Microsoft 365 services, which is beyond the scope of simply viewing Microsoft Teams usage reports. This would grant the manager far more control than needed, making it an over-permissioned solution.
Option D, assigning the Compliance Manager role, would also give unnecessary permissions. The Compliance Manager role provides access to features for compliance management, which includes a wide range of responsibilities such as managing data loss prevention (DLP) policies, compliance assessments, and auditing. This role is more suitable for compliance tasks and would exceed the permissions necessary for viewing Teams usage reports.
In conclusion, Option C is the best choice because it grants the Reports Reader role, which specifically allows the manager to view Microsoft Teams usage reports without giving any additional, unnecessary permissions. This ensures compliance with the principle of least privilege, as the manager will have just the right level of access to perform their task.
Question No 9:
You work as a Systems Administrator for your company. The company has a subscription to Microsoft 365. All users in your company have a Microsoft 365 E5 license.All users in the company use Microsoft Teams for collaboration.
Users report that a team has been deleted in Microsoft Teams. The team was available yesterday.You need to restore the deleted team.Which tool should you use?
A. The Microsoft Teams admin center
B. The Microsoft Teams client app
C. The Azure Active Directory admin center
D. The Exchange Online admin center
Correct answer: A
Explanation:
When a team is deleted in Microsoft Teams, it is not immediately and permanently removed; instead, it is sent to a "soft deleted" state, allowing administrators to restore the team within a certain time period. As an administrator, you have the ability to restore a deleted team using the appropriate tool.
The Microsoft Teams Admin Center: The Microsoft Teams admin center is the primary administrative interface for managing Teams settings and configurations. It includes functionality for managing teams, users, policies, and settings related to Microsoft Teams. In the case of a deleted team, the Teams admin center provides the ability to restore it, provided the team was deleted within the retention period (typically 30 days). From this console, administrators can view the deleted teams and restore them back to their original state, which makes this the correct tool for restoring a deleted team.
The Microsoft Teams Client App: The Microsoft Teams client app is designed for end users to communicate, collaborate, and manage their personal settings within Teams. However, this app does not have administrative capabilities such as restoring a deleted team. Users can view and interact with teams, but they cannot perform administrative tasks like restoring deleted teams. Therefore, this is not the right tool for restoring a deleted team.
The Azure Active Directory Admin Center: While the Azure Active Directory (AAD) admin center is an essential tool for managing identity and access in Microsoft 365, it does not directly manage Microsoft Teams and its contents. It does allow administrators to manage users and groups, but it does not offer functionality to restore deleted Teams. The deletion of a team is an action within Teams, not in Azure AD. Hence, the AAD admin center is not the correct tool to restore a deleted team.
The Exchange Online Admin Center: The Exchange Online admin center is specifically used for managing email, mailboxes, and related settings within Microsoft 365. While it plays an important role in managing communications and messaging, it does not interact with Microsoft Teams in a way that would allow the restoration of deleted teams. Therefore, this is also not the correct tool for this task.
In conclusion, the correct tool for restoring a deleted team in Microsoft Teams is the Microsoft Teams admin center (option A). This tool is specifically designed for managing teams, including restoring deleted teams within the retention window.
Question No 10:
Your company has a subscription to Microsoft 365. All users in your company have a Microsoft 365 E5 license. All users use Microsoft Teams for collaboration. An Office 365 group contains 300 users, including 50 guest accounts. A Microsoft Team has been created from the group. You need to ensure that the group contains only members and guest accounts that require access to the group. Any members or guest accounts that are either inactive or no longer require access to the group should be removed.
The solution must ensure that group membership is validated every month. Which of the following should you configure?
A. A Conditional Access policy
B. A Supervision policy
C. An Access Review
D. A Teams policy
Answer: C
Explanation:
To meet the requirement of validating group membership and ensuring that only active and authorized members and guests have access to the group, the best solution is to configure an Access Review. Here's why:
Access Reviews in Microsoft 365 are a tool that allows you to review group memberships, application access, and role assignments at regular intervals. This helps ensure that only the necessary members and guests maintain access to resources. An access review can be set up to automatically trigger and notify administrators or designated reviewers to check if members or guest accounts still require access to the group. It also helps to remove inactive or unneeded accounts, which is exactly what the scenario requires
Conditional Access policies (A) are typically used to enforce security measures such as device compliance, location, or authentication methods. While important for securing access to apps, Conditional Access does not directly help with the task of validating and removing users from a specific group.
A Supervision policy (B) is used to monitor and review communications within Microsoft Teams or other Microsoft 365 services, typically for compliance or legal purposes. It does not handle membership validation or removal of users from a group.
A Teams policy (D) controls settings related to Microsoft Teams functionality, such as permissions, app usage, and meeting settings. However, it does not provide a mechanism for reviewing or managing group membership based on user activity or relevance.
Therefore, an Access Review is the most appropriate solution because it directly addresses the need to regularly validate group membership and remove unnecessary or inactive accounts from the group, ensuring that access is maintained only for the relevant individuals.
Top Training Courses
SY0-701
CompTIA Security+
$14.99
AZ-104
Microsoft Azure Administrator
$14.99
200-301
Cisco Certified Network Associate (CCNA)
$14.99
AWS Certified Solutions Architect - Associate SAA-C03
AWS Certified Solutions Architect - Associate SAA-C03
$14.99
AZ-305
Designing Microsoft Azure Infrastructure Solutions
$14.99
PL-300
Microsoft Power BI Data Analyst
$14.99
350-401
Implementing Cisco Enterprise Network Core Technologies (ENCOR)
$14.99
AZ-900
Microsoft Azure Fundamentals
$14.99
CS0-003
CompTIA CySA+ (CS0-003)
$14.99
CISSP
Certified Information Systems Security Professional
$14.99
