ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-101 All Questions

View all questions & answers for the MS-101 exam
Go to Exam

Exam MS-101 topic 2 question 63 discussion

Actual exam question from Microsoft's MS-101
Question #: 63
Topic #: 2
[All MS-101 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Azure Active Directory admin center, you create a trusted location and a conditional access policy.
Does this meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
References:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Conditional-Access-in-SharePoint-Online-and-OneDrive-for/ba-p/46678
by a0977185 at Dec. 23, 2019, 10:51 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zzuk01
Highly Voted 5 years, 5 months ago
Answer is A, you create a Conditional Access policy from the Azure Active directory admin centre
upvoted 41 times
...
Sonia33
Highly Voted 5 years ago
It's A, you use a conditional access policy after defining your trusted location. At the Cloud apps tab, you select only Sharepoint Online. So the statement is correct, YES.
upvoted 9 times
...
VTHAR
Most Recent 4 years, 8 months ago
Answer is A.YES it does meet the goal. Conditional Access policy and Named Location (Trusted location) can make SPO only accessible from on-perm network. This is the last of a series of questions in which all prior answers are B. NO. This last one meets the goal.
upvoted 4 times
PJR
4 years, 5 months ago
This is a very sneaky question as immediately people think it must be a CA policy thats needed; however in the SharePoint Online admin center there is a section called Access Control where you can specify the network locations able to access SharePoint Online sites from. More info here - https://docs.microsoft.com/en-us/sharepoint/control-access-based-on-network-location So you could achieve this using that and not a CA policy - HOWEVER I still think the Answer is as VTHAR has pointed out, this is the 4th Q in a series and with these types of questions there are always 3 wrong answers and 1 correct. Plus this question is also shown on this site (Q13) https://www.itexams.com/exam/MS-101#:~:text=You%20need%20to%20prevent%20users,and%20a%20conditional%20access%20policy and shows A as being correct.
upvoted 1 times
itmp
4 years, 4 months ago
why are we talking about other ways to achieve this ? Does this meet the goal? - yes. Nothing "sneaky" about the question/answer.
upvoted 5 times
...
...
...
TaSpanja
4 years, 11 months ago
this works and you can do it from azure ad, intune and device management all 3 have the options available, i work with these on a daily basis and we do these kinds of policies all the time.
upvoted 3 times
...
ginsahec
5 years, 1 month ago
The correct answer is A,you can see it at this link: Q29 https://www.examtopics.com/exams/microsoft/ms-100/view/22/
upvoted 2 times
...
diggity801
5 years, 3 months ago
I think the most correct answer is B because if you use CA to block Sharepoint Online, it not only block sites, but also blocks teams and planner and myanalytics and newsfeed. Both answers technically can block users based on location but answer A also blocks all of the dependency apps, not just a SharePoint site.
upvoted 3 times
diggity801
5 years, 3 months ago
This is the text CA policies show you when you choose SharePoint online to block: "Selecting SharePoint Online will also affect apps such as Microsoft Teams, Planner, Delve, MyAnalytics, and Newsfeed."
upvoted 1 times
diggity801
5 years, 3 months ago
But CA does technically met the requirement so who knows what they want.
upvoted 2 times
...
...
...
CARO54
5 years, 3 months ago
I think it 's A
upvoted 2 times
...
SCT
5 years, 4 months ago
Answer is No, This solution applies to users accessing Azure Active Directory, not to users accessing SharePoint Online. Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
upvoted 1 times
hitten_za
5 years, 3 months ago
Don't agree with you here. In the CA policy you specify SharePoint Online as the Cloud App and you set your Location under Conditions. In doing so you're specifying that you must be in a Safe Location in order to gain access to SharePoint Online, so A would be correct.
upvoted 18 times
...
...
a0977185
5 years, 6 months ago
Why not Answer A?
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel