Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Microsoft AZ-800

Microsoft AZ-800 Exam Practice Questions (P. 1)

  • Full Access (256 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #1
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com.
You need to identify which server is the PDC emulator for the domain.
Solution: From Active Directory Domains and Trusts, you right-click Active Directory Domains and Trusts in the console tree, and then select Operations
Master.
Does this meet the goal?
  1. A
    Yes
  2. B
    No

Correct Answer:
B
chatbot-img GPT-4o - Answer
The correct method to identify the PDC emulator in an AD DS domain involves using the Active Directory Users and Computers administrative tool, not Active Directory Domains and Trusts. Specifically, you need to right-click on the domain in the AD Users and Computers tool, select 'Operations Masters', then navigate to the 'PDC' tab. The mentioned approach in the question, using AD Domains and Trusts, does not provide access to this specific information, confirming that the correct answer is indeed 'No'.

Question #2
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com.
You need to identify which server is the PDC emulator for the domain.
Solution: From a command prompt, you run netdom.exe query fsmo.
Does this meet the goal?
  1. A
    Yes
  2. B
    No

Correct Answer:
A
Reference:
https://activedirectorypro.com/how-to-check-fsmo-roles/

Question #3
You have an on premises Active Directory Domain Services (AD DS) domain that syncs with an Azure Active Directory (Azure AD) tenant.
You plan to implement self-service password reset (SSPR) in Azure AD.
You need to ensure that users that reset their passwords by using SSPR can use the new password resources in the AD DS domain.
What should you do?
  1. A
    Deploy the Azure AD Password Protection proxy service to the on premises network.
  2. B
    Run the Microsoft Azure Active Directory Connect wizard and select Password writeback.
  3. C
    Grant the Change password permission for the domain to the Azure AD Connect service account.
  4. D
    Grant the impersonate a client after authentication user right to the Azure AD Connect service account.

Correct Answer:
B
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr-writeback

Question #4
You have an Azure Active Directory Domain Services (Azure AD DS) domain named contoso.com.
You need to provide an administrator with the ability to manage Group Policy Objects (GPOs). The solution must use the principle of least privilege.
To which group should you add the administrator?
  1. A
    AAD DC Administrators
  2. B
    Domain Admins
  3. C
    Schema Admins
  4. D
    Enterprise Admins
  5. E
    Group Policy Creator Owners

Correct Answer:
B
Only the Domain Admins group and the Enterprise Admins group can fully manage GPOs. Members of the Group Policy Creator Owners group can create new
GPOs but they can't link the GPOs to sites, the domain or OUs and they cannot manage existing GPOs.

Question #5
DRAG DROP -
You create a new Azure subscription.
You plan to deploy Azure Active Directory Domain Services (Azure AD DS) and Azure virtual machines.
You need to ensure that the virtual machines can join to Azure AD DS.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Select and Place:


Correct Answer:

 Reference:
https://docs.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-create-instance

Next Questions

All Pages