ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-100 All Questions

View all questions & answers for the MS-100 exam
Go to Exam

Exam MS-100 topic 15 question 3 discussion

Actual exam question from Microsoft's MS-100
Question #: 3
Topic #: 15
[All MS-100 Questions]

You need to ensure that all the sales department users can authenticate successfully during Project1 and Project2.
Which authentication strategy should you implement for the pilot projects?

  • A. password hash synchronization and seamless SSO
  • B. pass-through authentication
  • C. password hash synchronization
  • D. pass-through authentication and seamless SSO
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
✑ Project1: During Project1, the mailboxes of 100 users in the sales department will be moved to Microsoft 365.
✑ Project2: After the successful completion of Project1, Microsoft Teams & Skype for Business will be enabled in Microsoft 365 for the sales department users.
✑ After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically.
✑ Fabrikam does NOT plan to implement identity federation.
✑ After the planned migration to Microsoft 365, all users must continue to authenticate to their mailbox and to SharePoint sites by using their UPN.
You need to enable password hash synchronization to enable the users to continue to authenticate to their mailbox and to SharePoint sites by using their UPN.
You need to enable SSO to enable all users to be signed in to on-premises and cloud-based applications automatically.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/choose-ad-authn
by ExamStudy68 at Jan. 13, 2020, 1:43 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
VTHAR
Highly Voted 4 years, 8 months ago
"Users must be able to authenticate to cloud services if Active Directory becomes unavailable." => That means PTA doesn't meet the requirement. PHS left. "After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically." => That means PHS alone is not the solution and must implement together with Seamless SSO. Therefore the answer is correct.
upvoted 25 times
...
Amir1909
Most Recent 1 year, 4 months ago
Correct
upvoted 1 times
...
Amir1909
1 year, 4 months ago
A is correct
upvoted 1 times
...
Startkabels
2 years, 7 months ago
Selected Answer: A
I go with the answer provided although the need for SSO during the pilot is questionable looking at the literal text. "AFTER MIGRATION users must CONTINUE to authenticate with SSO" > interpretation could be that thus it has to be SSO during pilot fase too. "AFTER MIGRATION users must authenticate with SSO" > interpretation could be that thus it doest not have to be SSO during pilot fase too. If text is so confusing read between the lines and ask yourself what the use of i pilot without SSO is when it goed in production with (untested) SSO.
upvoted 1 times
Startkabels
2 years, 7 months ago
Also I think that "no Identity federation" means not using ADFS to signin to M365 in this context
upvoted 1 times
...
...
DArnett
2 years, 9 months ago
This was on my exam on 9/27/22.
upvoted 2 times
...
MichaelJS
4 years, 6 months ago
I agree, the answer is correct. What I don't get is the statement "Fabrikam does NOT plan to implement identity federation.". Aren't PTA and maybe PHS a sort of "identity federation"?
upvoted 2 times
Turak64
3 years, 9 months ago
I'd take that as not using AD FS
upvoted 2 times
...
...
mkoprivnj
4 years, 6 months ago
A for sure!
upvoted 2 times
mkoprivnj
4 years, 6 months ago
VTHAR, well done!
upvoted 1 times
...
...
pkudude99
4 years, 9 months ago
Corrected link -- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/choose-ad-authn
upvoted 1 times
...
moh15
4 years, 9 months ago
Ans is correct
upvoted 1 times
...
ExamStudy68
5 years, 5 months ago
Why would this require the Seamless SSO element? Is not PHS enough?
upvoted 2 times
TFou0076
5 years, 5 months ago
They said "After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically."
upvoted 11 times
...
Sisko
5 years, 5 months ago
This requirement indicates you need the seamless SSO. "After the planned migration to Microsoft 365, all users must be signed in to on-premises and cloud-based applications automatically."
upvoted 9 times
donathon
4 years, 8 months ago
Fabrikam plans to create a group named UserLicenses that will manage the allocation of all Microsoft 365 bulk licenses. >> This also make pass-through authentication unsuitable.
upvoted 1 times
...
...
juliuscsir
5 years, 2 months ago
Kind of agree--the question states "Which authentication strategy should you implement FOR THE PILOT PROJECTS?" This leads me to think that 'password hash synchronization' (C) is the answer.
upvoted 1 times
JaBe
4 years, 12 months ago
That's debatable as using a different configuration for the pilot would defeat the purpose of a pilot altogether. Therefore I lean towards SSO here (although reluctantly)
upvoted 3 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel