ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-100 All Questions

View all questions & answers for the MS-100 exam
Go to Exam

Exam MS-100 topic 1 question 45 discussion

Actual exam question from Microsoft's MS-100
Question #: 45
Topic #: 1
[All MS-100 Questions]

Your company's network contains two Active Directory forests, with two domains configured per forest. All workstations are domain-joined and have Windows 10 installed.
You have created a Microsoft Azure Active Directory (Azure AD) tenant in preparation for configuring Hybrid Azure AD join for the workstations.
You want to make sure that the tenant can be discovered by the workstations.
Which of the following should you create in each forest?

  • A. A migration endpoint.
  • B. A new conditional access policy.
  • C. A new trust relationship.
  • D. A new service connection point (SCP).
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by AlexLiourtas at Dec. 2, 2021, 5:02 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AlexLiourtas
Highly Voted 3 years, 6 months ago
D Service Connection Points (SCPs) are objects in Active Directory that hold information about services. Services can publish information about their existence by creating serviceConnectionPoint objects in Active Directory. Client applications use this information to find and connect to instances of the service
upvoted 8 times
...
DArnett
Highly Voted 2 years, 8 months ago
Selected Answer: D
Valid; on exam 27 September 2022
upvoted 8 times
...
st2023
Most Recent 2 years, 4 months ago
Selected Answer: D
You can configure hybrid Azure AD joined devices for various types of Windows device platforms. -For managed and federated domains, you must configure a service connection point or SCP. -For federated domains, you must ensure that your federation service is configured to issue the appropriate claims. ---------------------------------------------------------------------------- Your devices use a service connection point (SCP) object during the registration to discover Azure AD tenant information. In your on-premises Active Directory instance, the SCP object for the hybrid Azure AD joined devices must exist in the configuration naming context partition of the computer's forest. There's only one configuration naming context per forest. In a multi-forest Active Directory configuration, the service connection point must exist in all forests that contain domain-joined computers. https://learn.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-manual#configure-a-service-connection-point
upvoted 1 times
...
Don123
2 years, 4 months ago
D. A new service connection point (SCP).
upvoted 1 times
...
Mthaher
3 years, 1 month ago
Selected Answer: D
https://docs.microsoft.com/en-us/azure/active-directory/devices/hybrid-azuread-join-manual#configure-a-service-connection-point
upvoted 1 times
...
waterlego
3 years, 1 month ago
Still valid, April 2022 - it talked about multiple forests trying to throw you off the scent though.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel