ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-101 All Questions

View all questions & answers for the MS-101 exam
Go to Exam

Exam MS-101 topic 3 question 122 discussion

Actual exam question from Microsoft's MS-101
Question #: 122
Topic #: 3
[All MS-101 Questions]

HOTSPOT -
You have a Microsoft 365 tenant.
You need to retain Azure Active Directory (Azure AD) audit logs for two years. Administrators must be able to query the audit log information by using the Azure
Active Directory admin center.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Azure Log Analytics -
To query the Azure AD logs use Azure Log Analytics.
Note: Currently, you can route the Azure AD logs to:
An Azure storage account.
An Azure event hub, so you can integrate with your Splunk and Sumologic instances.
Azure Log Analytics workspace, wherein you can analyze the data, create dashboard and alert on specific events.

Box 2: Audit logs -
The Azure portal provides you with several options to access the log. For example, on the Azure Active Directory menu, you can open the log in the Monitoring section.

Reference:
https://docs.microsoft.com/en-us/azure/azure-monitor/logs/get-started-queries https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-audit-logs
by Moderator at Oct. 6, 2022, 12:11 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Wired7693
2 years ago
The porta has changed to Entra now. You do send to log analytics But audit logs within Azure AD only show me the last 90 days If I want to see the logs I have been sending to log analytics, I need to to the section called "Log Analytics", which is not a provided option
upvoted 1 times
...
JackeD
2 years, 2 months ago
the provided answers are correct, Storage data lake gen2 does store logs, but its more for big data analytics, not for day to day environment monitoring.
upvoted 2 times
...
Kees1990
2 years, 3 months ago
you need to have a storage to archive logfiles, so answer "storage data lake gen2" you acces it through Audit Logs (purview or defender) https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/quickstart-azure-monitor-route-logs-to-storage-account
upvoted 1 times
...
JerryZy
2 years, 8 months ago
Correct Answer
upvoted 1 times
...
Moderator
2 years, 8 months ago
Provided answer looks correct.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel