ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam
Go to Exam

Exam MS-102 topic 1 question 107 discussion

Actual exam question from Microsoft's MS-102
Question #: 107
Topic #: 1
[All MS-102 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft Entra admin center, you assign SecAdmin1 the Security Administrator role.
Does this meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Greatone1 at Sept. 3, 2023, 7:30 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
aleksdj
Highly Voted 1 year ago
Selected Answer: A
The question is misunderstood and therefore 50% are wrong! Correct Answer is YES You should read the question like this: "You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies WHICH APPLY TO Microsoft Teams, SharePoint, and OneDrive" It doesn`t say you have to be able to manage Teams, SP or Onedrive with an Security Administrator role, the clue is that the settings and policies are made within the Defender Portal.
upvoted 28 times
...
tzzz1986
Highly Voted 1 year, 3 months ago
Selected Answer: B
Security administrator role does not seem to have accesss in Teams, Sharepoint. Reference: https://learn.microsoft.com/en-us/azure/active-directory/roles/permissions-reference#security-administrator
upvoted 9 times
Alscoran
1 year, 2 months ago
Its not asking for rights to the other products. Its asking for access to Defender settings that protect those products. I say A.
upvoted 9 times
...
sergioandreslq
1 year, 1 month ago
Security administrator grant access to defender portan and configure policies. but this role doesn't grant permission as admin to Teams, SPO and OneDrive.
upvoted 1 times
sergioandreslq
1 year, 1 month ago
and the requirement is: "SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies" In this case with this role, the user can manage defender policies for those workloads, the security administrator has access to settings associated to security in different workloads. there are other questions that assign to the SecAdmin1 roles: sharepoint admin, Teams admin, Exchange Admin. However, the only role that can manage security settings for all the workloads at the same time is Security administrator. the other roles assigned are for specific workload, however, the question is what is the role that can manager Teams, Sharepoint, And OneDrive at the same time?
upvoted 5 times
...
...
[Removed]
1 year, 1 month ago
He is correct. Reference: https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/scc-permissions?view=o365-worldwide
upvoted 1 times
...
...
jedboy88
Most Recent 5 months, 1 week ago
Selected Answer: B
While the Security Administrator role provides broad permissions for managing security-related features, it does not specifically grant the necessary permissions to manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
upvoted 1 times
...
mikl
7 months, 2 weeks ago
Selected Answer: A
A. Yes Assigning SecAdmin1 the Security Administrator role from the Microsoft Entra admin center does meet the goal. The Security Administrator role includes permissions to manage security policies and settings across Microsoft 365 services, which would cover Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
upvoted 1 times
...
TheMCT
10 months, 4 weeks ago
Selected Answer: A
Can read security information and reports, and manage configuration in Microsoft Entra ID and Office 365.
upvoted 2 times
...
BLion
1 year ago
Selected Answer: A
Answer A is correct
upvoted 3 times
...
Memdroid
1 year ago
Selected Answer: A
A is correct
upvoted 2 times
...
2dwarf
1 year ago
Selected Answer: A
A Can manage policies
upvoted 2 times
...
ckanoz
1 year, 1 month ago
Correct answer is A. The question is not asking if the role has permissions to administer Teams, Sharepoint or Exchange. The questions is asking if the role can make Security policies FOR, Teams, Sharepoint or Exchange.
upvoted 2 times
...
TP447
1 year, 1 month ago
This is correct - the question isnt asking about managing Teams, SPO etc directly but in fact, managing Defender settings & policies for those workloads - "You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for". Security Administrator would have the rights to create and manage policies for these workloads.
upvoted 3 times
...
NrdAlrt
1 year, 1 month ago
Selected Answer: A
Pretty specific that they say Microsoft Defender Policies, not managing the services themselves. Additionally, I find it unfathomable that a SecOps admin would need full admin access to all these services to manage the security portion. I can see myself as an O365 admin saying to a guy on security team: "Here, I know you're a security guy that is already skeptical of Microsoft as it is, but I have to give you full unfettered access to the service configuration layer just so you can manage defender settings for these workloads. That's cool right?" No way. It's A or Microsoft has lost their mind.
upvoted 4 times
NrdAlrt
1 year, 1 month ago
Or perhaps... possibly more like... there's a 3rd answer here. Like reader something or another. But that doesn't make sense either. Again that's way too convoluted, even for MS, to make sense.
upvoted 1 times
...
TP447
1 year, 1 month ago
I agree here.
upvoted 1 times
...
...
60ed5c2
1 year, 1 month ago
If I am following the comments correctly - people are saying A because the question is asking if the security administrator role gives you the ability to set policies within defender for Teams, SP, and OneDrive and because a security administrator role has full access to defender - the answer would be yes. My counter point is there are not policies specifically for Teams, Sharepoint, or Onedrive within Defender. So how could the question mean that? My answer would be B - No - security administrator gives you the ability to manage Defender, but it does not give you the ability to manage policies for Teams, SP, and OD.
upvoted 2 times
...
EEMS700
1 year, 2 months ago
Selected Answer: A
For me it´s A
upvoted 2 times
...
PhoenixMan
1 year, 2 months ago
I think the right answer is A https://learn.microsoft.com/en-us/microsoft-365/security/defender/m365d-permissions?view=o365-worldwide
upvoted 1 times
...
jt2214
1 year, 2 months ago
Selected Answer: A
I agree with Darekmso based on https://www.examtopics.com/discussions/microsoft/view/76446-exam-ms-101-topic-2-question-50-discussion/
upvoted 3 times
...
Darekmso
1 year, 2 months ago
Selected Answer: A
https://www.examtopics.com/discussions/microsoft/view/76446-exam-ms-101-topic-2-question-50-discussion/
upvoted 2 times
...
Paul_white
1 year, 2 months ago
ANSWER FOR ME IS A
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel