ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 1 question 60 discussion

Actual exam question from Microsoft's MS-500
Question #: 60
Topic #: 1
[All MS-500 Questions]

You have a Microsoft 365 tenant.
You need to implement a policy to enforce the following requirements:
✑ If a user uses a Windows 10 device that is NOT hybrid Azure Active Directory (Azure AD) joined, the user must be allowed to connect to Microsoft SharePoint
Online only from a web browser. The user must be prevented from downloading files or syncing files from SharePoint Online.
✑ If a user uses a Windows 10 device that is hybrid Azure AD joined, the user must be able connect to SharePoint Online from any client application, download files, and sync files.
What should you create?

  • A. a conditional access policy in Azure AD that has Client apps conditions configured
  • B. a conditional access policy in Azure AD that has Session controls configured
  • C. a compliance policy in Microsoft Endpoint Manager that has the Device Properties settings configured
  • D. a compliance policy in Microsoft Endpoint Manager that has the Device Health settings configured
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by CaracasCCS1 at Sept. 14, 2022, 6:32 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
CaracasCCS1
Highly Voted 2 years, 9 months ago
Selected Answer: B
B! Because the Application enforced restrictions.. https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-session
upvoted 6 times
...
RomanV
Highly Voted 2 years, 2 months ago
Correct answer is B. Within a Conditional Access policy, an administrator can make use of session controls to enable limited experiences within specific cloud applications. Source: https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-session#persistent-browser-session If you already reached to question 60, success with your exam. You can pass it. ;)
upvoted 6 times
...
Stig_88
Most Recent 2 years, 2 months ago
Selected Answer: B
under session, use app enforced restriction. refer here: https://learn.microsoft.com/en-us/sharepoint/control-access-from-unmanaged-devices Limiting access allows users to remain productive while addressing the risk of accidental data loss on unmanaged devices. When you limit access, users on managed devices will have full access (unless they use one of the browser and operating system combinations listed in Supported browsers). Users on unmanaged devices will have browser-only access with no ability to download, print, or sync files. They also won't be able to access content through apps, including the Microsoft Office desktop apps. When you limit access, you can choose to allow or block editing files in the browser. When web access is limited, users will see the following message at the top of sites.
upvoted 1 times
...
King_Khong
2 years, 3 months ago
in my exam 17/03/23
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel