ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MD-100 All Questions

View all questions & answers for the MD-100 exam
Go to Exam

Exam MD-100 topic 1 question 7 discussion

Actual exam question from Microsoft's MD-100
Question #: 7
Topic #: 1
[All MD-100 Questions]

Your company has an on-premises network that contains an Active Directory domain. The domain is synced to Microsoft Azure Active Directory (Azure AD). All computers in the domain run Windows 10 Enterprise.
You have a computer named Computer1 that has a folder named Folder1.
You must provide users in group named Group1 with the ability to view the list of files in Folder1. Your solution must ensure that the principle of least privilege is maintained.
What should you do?

  • A. Assign the Full control permissions for the Folder1 folder to Group1.
  • B. Assign the Read permissions for the Folder1 folder to Group1.
  • C. Assign the List folder permissions for the Folder1 folder to Group1.
  • D. Assign the Take ownership permissions for the Folder1 folder to Group1.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by mikl at Oct. 4, 2021, 7:16 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
JO_Spencer
Highly Voted 3 years, 7 months ago
Read access would allow them to not only see the list of files but also see the contents of the file. This would break the least privelege requirement
upvoted 6 times
...
Buruguduystunstugudunstuy
Most Recent 2 years, 2 months ago
Selected Answer: C
The correct answer is Answer C - Assign the List folder permissions for the Folder1 folder to Group1. Assigning the List folder permissions for the Folder1 folder to Group1 would allow the members of Group1 to see the list of files in the folder, but they would not be able to open, modify, or delete the files. This solution would maintain the principle of least privilege, as it only grants the minimum necessary permissions required for the task.
upvoted 2 times
Buruguduystunstugudunstuy
2 years, 2 months ago
INCORRECT: Assigning Full control permissions (Answer A) would give Group1 more permissions than necessary and could potentially lead to accidental or intentional modification or deletion of files. Assigning only Read permissions (Answer B) would allow Group1 to VIEW the contents of the files in addition to the list of files, which is not required in this scenario. Assigning Take ownership permissions (Answer D) would allow Group1 to take ownership of the folder, which is not required for the task and could potentially lead to unintended consequences.
upvoted 1 times
...
...
Manimala_Rags
2 years, 2 months ago
B is correct
upvoted 1 times
...
ITNoob22
3 years, 1 month ago
Selected Answer: C
I believe you need to apply the special permission to list folder contents. The read permission in this case is overkill.
upvoted 2 times
...
PChi
3 years, 2 months ago
Answer is C. List folder (contents). Can use link or in general search, ntfs permissions list. https://blog.foldersecurityviewer.com/understanding-ntfs-permissions/#:~:text=List%20of%20NTFS%20file%20permissions%3A%20%20%20Permission,a%20file%20...%20%202%20more%20rows%20
upvoted 2 times
...
Tommo
3 years, 2 months ago
Selected Answer: B
B is correct.
upvoted 1 times
Tommo
3 years, 2 months ago
I was mistaken with List Folder Permissions and List Folder Contents. The actual answer here is C. To list the Folder Contents.
upvoted 2 times
...
...
azevedowba
3 years, 2 months ago
Selected Answer: B
correct b
upvoted 1 times
...
alexleonzio
3 years, 3 months ago
Selected Answer: C
c is correct
upvoted 3 times
...
Liver111
3 years, 4 months ago
C - cos list folder contents - That is what they want to do. If they want to read then it will be read so they can read the files.
upvoted 3 times
...
hexel
3 years, 5 months ago
You will need special permissions for this case. List folder / read data is needed here because you can't apply only List folder contents.
upvoted 2 times
...
Saiko2208
3 years, 6 months ago
I think this is B as well. I'm not sure how it would be C
upvoted 2 times
...
Goofer
3 years, 7 months ago
Read permission - Permits viewing and listing of files and subfolders
upvoted 3 times
...
mikl
3 years, 7 months ago
I would go with answer B. Anyone care to explain why this is C?
upvoted 2 times
wscn000
3 years, 7 months ago
IMO B is correct because List folder permissions will give user permission to execute files which is not a least privilege practise.
upvoted 2 times
neobahamutk
3 years, 3 months ago
It´s C: The permission List in folders do not permit execution to files in it. Tested it in Win 10.
upvoted 5 times
...
...
ulranmal
3 years, 6 months ago
correct answer would be C With Read permissions user can actually read the contents of the files, instead of just being able to 'see' the files.in here question clearly stated that solution must ensure the principle of least privilege is maintained" so answer B is violating the least privileges practice as it is allowing user to view the list of files plus open them and read the content of the files.
upvoted 8 times
mikl
3 years, 6 months ago
Got it!
upvoted 2 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago