HOTSPOT - How should you configure Group3? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Hot Area:
Agreed, Answers given are correct
Group Type = M365 Group as it does not specify that other groups are mail enabled which they would need to be.
Group Membership Criteria = needs to specify that the member must be a user account as per "Group3 must only contain user accounts"
"userType Equals Member" would add all users accounts, and only user accounts
Incorrect; security groups are not valid targets for publishing sensitivity labels. Only mail-enabled groups of any kind are allowed. Nowhere is it stated your security group will be mail enabled, so by default it will not be.
There are several reasons not to pick security group based on the prompt, but 'must contain only users' is the key I think. Because a security group could *potentially* contain devices, or even other groups if nesting is ever implemented (as has been planned forever), it seems like a less ideal choice with no real upside over O365 group.
Both are possible: Labels can be published to any specific user or email-enabled security group, distribution group, or Microsoft 365 group (which can have dynamic membership) in Azure AD.
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels?view=o365-worldwide
The answer is incorrect. Dynamic group membership is a premium feature of Azure AD and is configured in the Azure Active Directory Portal, not the Microsoft 365 Admin Center.
https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-dynamic-membership
----------------------------
The rest is my opinion, but is relevant to understanding the subject of the question.
The Group Type should be: "In Azure AD, Microsoft 365 group set as dynamic user type"
The dynamic membership rule should be something like: (user.department -eq "Compliance")
Why? Because members of this group can create and publish sensitivity labels.. It should be a limited group to control the pilot.
This is a really easy one to try in a lab -- 15 minutes or less.
As usual, it´s a bit confusing . . . The requirements states that Group3 should be used for pilot users, but using the dynamic group that adds all members will not accomplish this . . . even if I think that the given answer is correct.
Correct answers are 'Microsoft 365 Group' using Admin Center and 'Dynamic membership userType Equals Member'
Security Groups are not supported for 'Security label' assignments.
https://docs.microsoft.com/en-us/microsoft-365/compliance/encryption-sensitivity-labels?view=o365-worldwide#add-users-or-groups
"Any specific user or email-enabled security group, distribution group, or Microsoft 365 group (formerly Office 365 group) in Azure AD. The Microsoft 365 group can have static or dynamic membership. "
The answers are:
1) Office 365 Group in Microsoft 365 admin center.
2) Dynamic membership rule with an Advanced rule set to All users.
https://www.examtopics.com/discussions/microsoft/view/13329-exam-ms-500-topic-6-question-3-discussion/
I dont think that this is right. For the first part of the question it can be any mail enabled group. As per the requirement of environment, users that are locked in active directory should be prevented from sign in. So I would choose accountEnabled -eq true
Oh sorry, it has nothing to do with group for publishing labes, I believe the correct one is answer from PeterC
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.MS-500 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
PeterC
Highly Voted 4 years, 3 months agokiketxu
4 years, 3 months agoFala_Fel
3 years, 11 months agoWMG
3 years, 10 months agoAWpkl
2 years, 5 months agoBeitran
4 years, 3 months agoJonclark
Most Recent 2 years, 4 months agocalle_313
3 years, 7 months agogkp_br
3 years, 8 months agoSam_Gutterson
3 years, 10 months agoVic08
4 years, 1 month agoTimurKazan
4 years, 2 months agoTimurKazan
4 years, 2 months ago