Was :
$81
Today :
$45
Was :
$99
Today :
$55
Was :
$117
Today :
$65
Why Should You Prepare For Your Microsoft 365 Security Administration Exam With MyCertsHub?
At MyCertsHub, we go beyond standard study material. Our platform provides authentic Microsoft MS-500 Exam Dumps, detailed exam guides, and reliable practice exams that mirror the actual Microsoft 365 Security Administration Exam test. Whether you’re targeting Microsoft certifications or expanding your professional portfolio, MyCertsHub gives you the tools to succeed on your first attempt.
Verified MS-500 Exam Dumps
Every set of exam dumps is carefully reviewed by certified experts to ensure accuracy. For the MS-500 Microsoft 365 Security Administration Exam , you’ll receive updated practice questions designed to reflect real-world exam conditions. This approach saves time, builds confidence, and focuses your preparation on the most important exam areas.
Realistic Test Prep For The MS-500
You can instantly access downloadable PDFs of MS-500 practice exams with MyCertsHub. These include authentic practice questions paired with explanations, making our exam guide a complete preparation tool. By testing yourself before exam day, you’ll walk into the Microsoft Exam with confidence.
Smart Learning With Exam Guides
Our structured MS-500 exam guide focuses on the Microsoft 365 Security Administration Exam's core topics and question patterns. You will be able to concentrate on what really matters for passing the test rather than wasting time on irrelevant content. Pass the MS-500 Exam – Guaranteed
We Offer A 100% Money-Back Guarantee On Our Products.
After using MyCertsHub's exam dumps to prepare for the Microsoft 365 Security Administration Exam exam, we will issue a full refund. That’s how confident we are in the effectiveness of our study resources.
Try Before You Buy – Free Demo
Still undecided? See for yourself how MyCertsHub has helped thousands of candidates achieve success by downloading a free demo of the MS-500 exam dumps.
MyCertsHub – Your Trusted Partner For Microsoft Exams
Whether you’re preparing for Microsoft 365 Security Administration Exam or any other professional credential, MyCertsHub provides everything you need: exam dumps, practice exams, practice questions, and exam guides. Passing your MS-500 exam has never been easier thanks to our tried-and-true resources.
Microsoft MS-500 Sample Question Answers
Question # 1
You have a Microsoft 365 subscription.You need to enable auditing for all Microsoft Exchange Online users.What should you do?
A. From the Exchange admin center, create a journal rule B. Run the Set-MailboxDatabase cmdlet C. Run the Set-Mailbox cmdlet D. From the Exchange admin center, create a mail flow message trace rule.
Your company plans to merge with another company.A user named Debra Berger is an executive at your company.You need to provide Debra Berger with all the email content of a user named Alex Wilberthat contains the word merger.To complete this task, sign in to the Microsoft 365 portal.
Answer: See explanation below.
Explanation:
You need to run a content search then export the results of the search.
Go to the Microsoft 365 Compliance admin center.
Navigate to Content Search under the Solutions section in the left navigation pane.
Click on + New Search to create a new search.
In the Keywords box, type in ‘merger’.
In the Locations section, select Specific locations then click the Modify link.
Click on the Choose users, groups or teams link.
Type Alex Wilber in the search field the select his account from the search results.
Click the Choose button to add the user then click Done.
Click Save to close the locations pane.
Click Save & run to run the search.
The next step is to export the results. Select the search then under Export results
to a computer, click Start export.
On the Export the search results page, under Output options, select All items.
Under Export Exchange content as, select One PST file for each mailbox.
Click on Start export. When the export has finished, there will be an option to
download the exported PST file.
Question # 3
You have a Microsoft 365 subscription.A security manager receives an email message every time a data loss prevention (DLP)policy match occurs.You need to limit alert notifications to actionable DLP events.What should you do?
A. From the Security & Compliance admin center, modify the Policy Tips of a DLP policy. B. From the Cloud App Security admin center, apply a filter to the alerts. C. From the Security & Compliance admin center, modify the User overrides settings of aDLP policy. D. From the Security & Compliance admin center, modify the matched activities thresholdof an alert policy.
You have a Microsoft 365 subscription.Some users access Microsoft SharePoint Online from unmanaged devices.You need to prevent the users from downloading, printing, and syncing files.What should you do?
A. Run the Set-SPOTenant cmdlet and specify the -ConditionalAccessPolicy parameter. B. From the Security & Compliance admin center, create a data loss prevention (DLP)policy. C. From the Microsoft Azure portal, create an Azure Active Directory (Azure AD) IdentityProtection sign-in risk policy D. From the Microsoft Azure portal, create an Azure Active Directory (Azure AD)conditional access policy
You have a Microsoft 365 subscription named contofco.comYou need to configure Microsoft OneDrive for Business external sharing to meet thefollowing requirements:• Enable flic sharing for users that rave a Microsoft account• Block file sharing for anonymous users.What should you do?
A. From Advanced settings tor external sharing, select Allow or Nock sharing with peopleon specific domains and add contoso.com. B. From the External sharing settings for OneDrive. select Existing external users. C. From the External sharing settings for OneDrive, select New and existing external users. D. From the External sharing settings for OneDrive. select Only people in yourorganization.
Answer: B
Question # 6
Your network contains an on-premises Active Directory domain. The domain containsservers that run Windows Server and have advanced auditing enabled.The security logs of the servers are collected by using a third-party SIEM solution.You purchase a Microsoft 365 subscription and plan to deploy Azure Advanced ThreatProtection (ATP) by using standalone sensors.You need to ensure that you can detect when sensitive groups are modified and whenmalicious services are created.What should you do?
A. Configure Azure ATP notifications B. Configure Event Forwarding on the domain controllers C. Configure auditing in the Office 365 Security & Compliance center D. Modify the Domain synchronizer candidate settings on the Azure ATP sensors
Von haw a Microsoft 365 subscription.You need to ensure that users on manually designate which content will be subject to datatoss prevention (DIP) polices?What should you create first?
A. a retention label B. a custom sensitive information type C. a safe attachments policy D. a Data Subject Request (OSR)
Answer: D
Question # 8
Note: This question is part of a series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestions sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it. As a result,these questions will not appear in the review screen.You have a Microsoft 365 subscription that contains 1,000 user mailboxes.An administrator named Admin1 must be able to search for the name of a competingcompany in the mailbox of a user named User5.You need to ensure that Admin1 can search the mailbox of User5 successfully. Thesolution must prevent Admin1 from sending email messages as User5.Solution: You modify the permissions of the mailbox of User5, and then create aneDiscovery case.Does this meet the goal?
You have a Microsoft 365 E5 subscription without a Microsoft Azure subscription.Some users are required to use an authenticator app to access Microsoft SharePointOnline.You need to view which users have used an authenticator app to access SharePointOnline. The solution must minimize costs.What should you do?
A. From the Enterprise applications blade of the Azure Active Directory admin center, viewthe audit logs B. From Azure Log Analytics, query the logs C. From the Azure Active Directory admin center, view the audit logs D. From the Enterprise applications blade of the Azure Active Directory admin center, viewthe sign-ins
Answer: D
Question # 10
Your company has a Microsoft 365 subscription that includes a user named User1.You suspect that User1 sent email messages to a competitor detailing company secrets.You need to recommend a solution to ensure that you can review any email messages sentby User1 to the competitor, including sent items that were deleted.What should you include in the recommendation?
A. Enable In-Place Archiving for the mailbox of User1 B. From the Security & Compliance, perform a content search of the mailbox of User1 C. Place a Litigation Hold on the mailbox of User1 D. Configure message delivery restrictions for the mailbox of User1
Answer: C
Question # 11
You haw a Microsoft 365 subscription.You receive a General Data Protection Regulation (GOPR) request for the customdictionary of a user From The Compliance admin center you need to create a contentsearch, should you configure the content search?
A. Condition: Type Operator Equals any of Value Documents B. .Condition; Type Operator Equals any of Value Office Roaming Service C. Condition: Title Operator Equals any of Value Normal. dot D. Condition: We type Operator Equals any of Value dic
Answer: A
Question # 12
You have a Microsoft 365 subscription.You have a Microsoft SharePoint Online site named Site1.You have a Data Subject Request (DSR) case named Case1 that searches Site1.You create a new sensitive information type.You need to ensure that Case1 returns all the documents that contain the new sensitiveinformation type.What should you do?
A. From the Security & Compliance admin center, create a new Search by ID List. B. From Site1, modify the search dictionary. C. From the Security & Compliance admin center, create a new Guided search. D. From Site1, initiate a re-indexing of Site1.
Answer: D
Question # 13
Note: This question is part of series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestion sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it. As a result,thesequestions will not appear in the review screen.You have a Microsoft 365 E5 subscription that is associated to a Microsoft Azure ActiveDirectory (Azure AD) tenant named contoso.com.You use Active Directory Federation Services (AD FS) to federate on-premises ActiveDirectory and thetenant. Azure AD Connect has the following settings:Source Anchor: objectGUIDPassword Hash Synchronization: DisabledPassword writeback: DisabledDirectory extension attribute sync: DisabledAzure AD app and attribute filtering: DisabledExchange hybrid deployment: DisabledUser writeback: DisabledYou need to ensure that you can use leaked credentials detection in Azure AD IdentityProtection.Solution: You modify the Azure AD app and attribute filtering settings.Does that meet the goal?
A. Yes B. No
Answer: B
Question # 14
You have a Microsoft 365 subscription.You need to ensure that all users who are assigned the Exchange administrator role havemulti-factorauthentication (MFA) enabled by default.What should you use to achieve the goal?
A. Security & Compliance permissions B. Microsoft Azure Active Directory (Azure AD) Privileged Identity Management C. Microsoft Azure AD group management D. Microsoft Office 365 user management
Answer: B
Question # 15
Note: This question is part of series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestion sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it. As a result,thesequestions will not appear in the review screen.You have a Microsoft 365 tenant. You create a label named CompanyConfidential inMicrosoft AzureInformation Protection.You add CompanyConfidential to a global policy.A user protects an email message by using CompanyConfidential and sends the label toseveral externalrecipients. The external recipients report that they cannot open the email message.You need to ensure that the external recipients can open protected email messages sent tothem.Solution: You modify the encryption settings of the label.Does this meet the goal?
A. Yes B. No
Answer: B
Question # 16
You have a Microsoft 365 subscription.A user reports that changes were made to several files in Microsoft OneDrive.You need to identify which files were modified by which users in the user’s OneDrive.What should you do?
A. From the Azure Active Directory admin center, open the audit log B. From the OneDrive admin center, select Device access C. From Security & Compliance, perform an eDiscovery search D. From Microsoft Cloud App Security, open the activity log
You have a Microsoft 365 E5 subscription.Some users are required to use an authenticator app to access Microsoft SharePointOnline.You need to view which users have used an authenticator app to access SharePointOnline. The solution must minimize costs.What should you do?
A. From the Azure Active Directory admin center, view the sign-ins. B. From the Security & Compliance admin center, download a report. C. From the Azure Active Directory admin center, view the authentication methods. D. From the Azure Active Directory admin center, view the audit logs.
You have a Microsoft 365 E5 subscription and 5,000 users.You create several alert policies that are triggered every time activities match rules.You need to create an alert policy that is triggered when the volume of matched activitiesbecomes unusual.What should you do first?
A. Enable Microsoft Office 365 auditing. B. Enable Microsoft Office 365 analytics. C. Enable Microsoft Office 365 Cloud App Security. D. Deploy a Microsoft Office 365 add-in to all the users.
Answer: B
Question # 19
You have a Microsoft 365 E5 subscription.You implement Advanced Threat Protection (ATP) safe attachments policies for all users.User reports that email messages containing attachments take longer than expected to bereceived.You need to reduce the amount of time it takes to receive email messages that containattachments. Thesolution must ensure that all attachments are scanned for malware. Attachments that havemalware must be blocked.What should you do from ATP?
A. Set the action to Block B. Add an exception C. Add a condition D. Set the action to Dynamic Delivery
Your network contains an on-premises Active Directory domain. The domain containsservers that run Windows Server and have advanced auditing enabled.The security logs of the servers are collected by using a third-party SIEM solution.You purchase a Microsoft 365 subscription and plan to deploy Azure Advanced ThreatProtection (ATP) by using standalone sensors.You need to ensure that you can detect when sensitive groups are modified and whenmalicious services are created.What should you do?
A. Configure Event Forwarding on the domain controllers B. Configure auditing in the Office 365 Security & Compliance center. C. Turn on Delayed updates for the Azure ATP sensors. D. Enable the Audit account management Group Policy setting for the servers.
You have an Azure Sentinel workspace that has an Azure Active Directory (Azure AD)connector and aMicrosoft Office 365 connector.You need to assign built-in role-based access control (RBAC) roles to achieve the followingtasks:Create and run playbooks.Manage incidents.The solution must use the principle of least privilege.Which two roles should you assign? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.
A. Automation Operator B. Azure Sentinel responder C. Automation Runbook Operator D. Azure Sentinel contributor E. Logic App contributor
Note: This question is part of series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestion sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it. As a result,thesequestions will not appear in the review screen.You have a Microsoft 365 tenant. You create a label named CompanyConfidential inMicrosoft AzureInformation Protection.You add CompanyConfidential to a global policy.A user protects an email message by using CompanyConfidential and sends the label toseveral externalrecipients. The external recipients report that they cannot open the email message.You need to ensure that the external recipients can open protected email messages sent tothem.Solution: You modify the content expiration settings of the label.Does this meet the goal?
A. Yes B. No
Answer: B
Question # 23
You plan to publish a label that will retain documents in Microsoft OneDrive for two years,and then automatically delete the documents.You need to create the label.To complete this task, sign in to the Microsoft Office 365 portal.
Answer: See explanation below.
Explanation:
You need to create a retention label.
Go to the Security & Compliance Admin Center.
Navigate to Classification > Retention labels.
Click on + Create a label to create a new label.
Give the label a name and click Next.
On the File plan descriptors, leave all options empty. The options in this page are
used for auto-applying the retention label. Click Next.
Turn the Retention switch to On.
Under Retain the content, set the period to 2 years.
Under What do you want to do after this time?, select the Delete the content
automatically option.
Click Next.
Click the Create this label button to create the label. The label is now ready to be
published to Microsoft OneDrive.
Question # 24
You need to implement a solution to manage when users select links in documents oremail messages from Microsoft Office 365 ProPlus applications or Android devices. Thesolution must meet the following requirements:Block access to a domain named fabrikam.comStore information when the users select links to fabrikam.comTo complete this task, sign in to the Microsoft 365 portal.
Answer: See explanation below.
Explanation:
You need to configure a Safe Links policy.
Go to the Office 365 Security & Compliance admin center.
Navigate to Threat Management > Policy > Safe Links.
In the Policies that apply to the entire organization section, select Default, and then
click the Edit icon.
In the Block the following URLs section, type in *.fabrikam.com. This meets the
first requirement in the question.
In the Settings that apply to content except email section, untick the checkbox
labelled Do not track when users click safe links. This meets the second
requirement in the question.
Click Save to save the changes.
Question # 25
Note: This question is part of series of questions that present the same scenario. Eachquestion in the series contains a unique solution that might meet the stated goals. Somequestion sets might have more than one correct solution, while others might not have acorrect solution.After you answer a question in this section, you will NOT be able to return to it. As a result,thesequestions will not appear in the review screen.You have a Microsoft 365 tenant. You create a label named CompanyConfidential inMicrosoft AzureInformation Protection.You add CompanyConfidential to a global policy.A user protects an email message by using CompanyConfidential and sends the label toseveral externalrecipients. The external recipients report that they cannot open the email message.You need to ensure that the external recipients can open protected email messages sent tothem.Solution: You create a new label in the global policy and instruct the user to resend theemail message.Does this meet the goal?
A. Yes B. No
Answer: A
Feedback That Matters: Reviews of Our Microsoft MS-500 Dumps
