2022 Valid MD-100 FREE EXAM DUMPS QUESTIONS & ANSWERS [Q69-Q86]

2022 Valid MD-100 FREE EXAM DUMPS QUESTIONS & ANSWERS

Free MD-100 Exam Braindumps Microsoft  Pratice Exam

MD-100 Test Details

Microsoft MD-100 comprises about 40-60 questions of different types, which may include case study, multiple-choice, drag and drop, hot area, and build list. The allocated time for such a test is 180 minutes. The passing score is 700 out of a maximum of 1000 points.

MD-100 exam is offered in English and provided by Microsoft through Pearson VUE. After paying the fee, which is $165, the applicants need to proceed to their own Pearson VUE account and register for this test. To do this, select the “Proctored Exams” section and type in ‘MD-100'. Complete the process by following the prompts.

 

NEW QUESTION 69
Your network contains an Active Directory domain. The domain contains computers that run Windows 10.
You must ensure that Windows BitLocker Drive Encryption is enabled on all client computers, even though a Trusted Platform Module (TPM) chip is installed in only some of them.
You need to accomplish this goal by using one Group Policy object (GPO).
What should you do?

• A. Enable the Require additional authentication at startup policy setting, and select the Allow BitLocker without a compatible TPM check box
• B. Enable the Control use of BitLocker on removable drives policy setting, and select the Allow BitLocker without a compatible TPM check box
• C. Enable the Allow enhanced PINs for startup policy setting, and select the Allow BitLocker without a compatible TPM check box
• D. Enable the Enable use of BitLocker authentication requiring preboot keyboard input on slates policy setting, and select the Allow BitLocker without a compatible TPM check box

Answer: A

Explanation:
We need to allow Windows BitLocker Drive Encryption on all client computers (including client computers that do not have Trusted Platform Module (TPM) chip).
We can do this by enabling the option to allow BitLocker without a compatible TPM in the group policy. The "Allow BitLocker without a compatible TPM" option is a checkbox in the "Require additional authentication at startup" group policy setting. To access the "Allow BitLocker without a compatible TPM" checkbox, you need to first select Enabled on the "Require additional authentication at startup" policy setting.
Reference:
https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings#bkmk-unlockpol4

 

NEW QUESTION 70
You have a computer named Computer5 that runs Windows 10 that is used to share documents in a workgroup.
You create three users named User-a, User-b, User-c. The users plan to access Computer5 from the network only.
You have a folder named Data. The Advanced Security Settings for the Data folder are shown in the Security exhibit. (Click the Security Exhibit tab).

You share the Data folder. The permission for User-a are shown in the User-a exhibit (Click the User-a tab.)

The permissions for user-b are shown in the User-b exhibit. (Click the User-b tab.)

The permissions for user-c are shown in the User-c exhibit. (Click the tab.)

For each of the following statements, select Yes if the statements is true. Otherwise, select No.
NOTE: Reach correct selection is worth one point.

Answer:

Explanation:

Explanation

 

NEW QUESTION 71
You have a computer that runs Windows 10.
From the Settings app, you view the connection properties shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 72
You need to implement a solution to configure the contractors' computers.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

References:
https://docs.microsoft.com/en-us/windows/configuration/provisioning-packages/provisioning-install-icd

 

NEW QUESTION 73
Your company has several mobile devices that run Windows 10.
You need configure the mobile devices to meet the following requirements:
Windows updates may only be download when mobile devices are connect to Wi-Fi.
Access to email and the Internet must be possible at all times.
What should you do?

• A. Open the Setting app and select Update & Security. Then select and configure Delivery Optimization.
• B. Open the Setting app and select Network & Internet Then select Data Usage and set a data limit.
• C. Open the Setting app and select Update & Security. Then select and configure Change active hours.
• D. Open the Setting app and select Network & Internet. Then select Change connection properties, and set the Metered connection option for cellular network connections to On.

Answer: D

Explanation:
Reference:
https://www.makeuseof.com/tag/5-ways-temporarily-turn-off-windows-update-windows-10/

 

NEW QUESTION 74
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory domain. The domain contains a computer named Computer1 that runs Windows 8.1.
Computer1 has apps that are compatible with Windows 10.
You need to perform a Windows 10 in-place upgrade on Computer1.
Solution: You add Windows 10 startup and install images to a Windows Deployment Services (WDS) server.
You start Computer1 by using WDS and PXE, and then you initiate the Windows 10 installation.
Does this meet the goal?

• A. No
• B. Yes

Answer: A

Explanation:
Explanation
Use Microsoft Deployment Toolkit (MDT) instead.

 

NEW QUESTION 75
Your network contains an Active Directory domain named adatum.com, a workgroup, and computers that run Windows 10. The computers are configured as shown in the following table.

The local Administrator accounts on Computer1, Computer2, and Computer3 have the same user name and password.
On Computer1, Windows Defender Firewall is configured as shown in the following exhibit.

The services on Computer1 have the following states.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 76
You need to reduce the amount of time it takes to restart Application1 when the application crashes.
What should you include in the solution? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://www.howto-connect.com/how-to-attach-a-task-to-this-event-in-event-viewer-in-windows-10/
Topic 2, Contoso, Ltd
Overview
Contoso, Ltd. is a consulting company that has a main office in Montreal and two branch offices in Seattle and New York.
Contoso has IT, human resources (HR), and finance departments.
Contoso recently opened a new branch office in San Diego. All the users in the San Diego office work from home.
Existing environment
Contoso uses Microsoft 365.
The on-premises network contains an Active Directory domain named contoso.com. The domain is synced to Microsoft Azure Active Directory (Azure AD).
All computers run Windows 10 Enterprise.
You have four computers named Computer1, Computer2, Computer3, and Computer In the domain, you create four groups named Group1, Group2, Group3, and Group4.
Computer2 has the local Group Policy settings shown in the following table.

The computers are updated by using Windows Update for Business.
The domain has the users shown in the following table.

Computer1 has the local users shown in the following table.

Requirements
Planned Changes
Contoso plans to purchase computers preinstalled with Windows 10 Pro for all the San Diego office users.
Technical Requirements
Contoso identifies the following technical requirements:
* The computers in the San Diego office must be upgraded automatically to Windows 10 Enterprise and must be joined to Azure AD the first time a user starts each new computer. End users must not be required to accept the End User License Agreement (EULA).
* Helpdesk users must be able to troubleshoot Group Policy object (GPO) processing on the Windows 10 computers. The helpdesk users must be able to identify which Group Policies are applied to the computers.
* Users in the HR department must be able to view the list of files in a folder named D:\Reports on Computer3.
* ComputerA must be configured to have an Encrypting File System (EFS) recovery agent.
* Quality update installations must be deferred as long as possible on ComputerA.
* Users in the IT department must use dynamic look on their primary device.
* User6 must be able to connect to Computer2 by using Remote Desktop.
* The principle of least privilege must be used whenever possible.
* Administrative effort must be minimized whenever possible.
* Assigned access must be configured on Computer1.

 

NEW QUESTION 77
Your network contains an Active Directory domain. The domain contains the users shown in the following table.

The domain contains a computer named Computer1 that runs Windows 10. Computer1 contains a folder named Folder1 that has the following permissions:
* User2: Deny Write
* Group1: Allow Read
* Group2: Allow Modify
Folder1 is shared as Share1$. Share1$ has the following configurations:
* Everyone: Allow Full control
* Access-based enumeration: Enabled
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:
References:
https://www.varonis.com/blog/ntfs-permissions-vs-share/
http://www.ntfs.com/ntfs-permissions-file-advanced.htm
https://docs.microsoft.com/en-us/windows-server/storage/dfs-namespaces/enable-access-based-enumeration-on-a-namespace

 

NEW QUESTION 78
You have a computer named Computer1 that runs Windows 10.
Computer1 has a folder named C:\Folder1.
You need to meet the following requirements:
Provide a user named Jon Ross with the ability to modify the permissions of C:\Folder1.
Ensure that the principle of least privilege is maintained.
What should you do?
To complete this task, sign in to the required computer or computers.

Answer:

Explanation:
In Windows Explorer, right-click the C:\Folder1 folder, and then click Properties.
Click on the Security tab, and then click Edit.
In the Permissions dialog box, add Jon Ross.
Specify the Allow Modify permissions for the Jon Ross.
Click OK twice to close the Security dialog box.
Click OK twice to close the Properties dialog box.
Reference:
https://docs.microsoft.com/en-us/iis/web-hosting/configuring-servers-in-the-windows-web-platform/configuring-share-and-ntfs-permissions

 

NEW QUESTION 79
You need to recommend a solution to configure the employee VPN connections.
What should you include in the recommendation?

• A. Microsoft Intune
• B. Connection Manager Administration Kit (CMAK)
• C. Remote Access Management Console
• D. Group Policy Management Console (GPMC)

Answer: A

Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/vpn-deploy-c
Topic 1, Fabrikam, Inc.
Overview
Existing Environment
Fabrikam, Inc. is a distribution company that has 500 employees and 100 contractors.
Active Directory
The network contains an Active Directory forest named fabrikam.com. The forest is synced to Microsoft Azure Active Directory (Azure AD). All the employees are assigned Microsoft 365 E3 licenses.
The domain contains a user account for an employee named User10.
Client Computers
All the employees have computers that run Windows 10 Enterprise. All the computers are installed without Volume License Keys. Windows 10 license keys are never issued.
All the employees register their computer to Azure AD when they first receive the computer.
User10 has a computer named Computer10.
All the contractors have their own computer that runs Windows 10. None of the computers are joined to Azure AD.
Operational Procedures
Fabrikam has the following operational procedures:
Updates are deployed by using Windows Update for Business.
When new contractors are hired, administrators must help the contactors configure the following settings on their computer:
- User certificates
- Browser security and proxy settings
- Wireless network connection settings
Security policies
The following security policies are enforced on all the client computers in the domain:
* All the computers are encrypted by using BitLocker Drive Encryption (BitLocker). BitLocker recovery
* information is stored in Active Directory and Azure AD.
* The local Administrators group on each computer contains an enabled account named LocalAdmin.
* The LocalAdmin account is managed by using Local Administrator Password Solution (LAPS).
Problem Statements
Fabrikam identifies the following issues:
* Employees in the finance department use an application named Application1. Application1 frequently crashes due to a memory error. When Application1 crashes, an event is written to the application log and an administrator runs a script to delete the temporary files and restart the application.
* When employees attempt to connect to the network from their home computer, they often cannot establish a VPN connection because of misconfigured VPN settings.
* An employee has a computer named Computer11. Computer11 has a hardware failure that prevents the computer from connecting to the network.
* User10 reports that Computer10 is not activated.
Technical requirements
Fabrikam identifies the following technical requirements for managing the client computers:
* Provide employees with a configuration file to configure their VPN connection.
* Use the minimum amount of administrative effort to implement the technical requirements.
* Identify which employees' computers are noncompliant with the Windows Update baseline of the company.
* Ensure that the service desk uses Quick Assist to take remote control of an employee's desktop during support calls.
* Automate the configuration of the contractors' computers. The solution must provide a configuration file that the contractors can open from a Microsoft SharePoint site to apply the required configurations.

 

NEW QUESTION 80
You need to meet the technical requirements for the helpdesk users.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

References:
https://www.itprotoday.com/compute-engines/what-group-policy-creator-owners-group

 

NEW QUESTION 81
You have a workgroup computer named Computer1 that runs Windows 10. Computer1 has the user accounts shown in the following table.

User3, User4, and Administrator sign in and sign out on Computer1. User1 and User2 have never signed in to Computer1.
You are troubleshooting policy issues on Computer1. You sign in to Computer1 as Administrator.
You add the Resultant Set of Policy (RsoP) snap-in to an MMC console.
Which users will be able to sign in on Computer1?

• A. Administrator only
• B. Use1, User2, User3, User4, and Administrator
• C. User3, User4, and Administrator only
• D. User1, User3, and User4 only

Answer: C

Explanation:
Explanation
The Interactive logon: Number of previous logons to cache (in case domain controller is not available) policy setting determines whether a user can log on to a Windows domain by using cached account information.
Logon information for domain accounts can be cached locally so that, if a domain controller cannot be contacted on subsequent logons, a user can still log on.
References:
https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/interactive-logon-nu

 

NEW QUESTION 82
Your company deploys Windows 10 Enterprise to all computers. All the computers are joined to Microsoft Azure Active Directory (Azure AD).
The company purchases a new computer for a new user and creates an Azure AD account for the user.
The user signs in to the computer by using the Azure AD account. The user discovers the activation error shown in the following exhibit.

You need to activate Windows 10 Enterprise on the computer.
What should you do?

• A. At the command prompt, run slmgr /ltc.
• B. In Azure AD, assign a Windows 10 Enterprise license to the user.
• C. Reinstall Windows as Windows 10 Enterprise.
• D. At the command prompt, run slmgr /ato.

Answer: B

Explanation:
Explanation
Explanation/Reference:
https://docs.microsoft.com/en-us/windows/deployment/windows-10-subscription-activation Manage Devices and Data Testlet 1 Case Study This is a case study. Case studies are not timed separately. You can use as much exam times as you would like to complete each case. However, there may be additional studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.
Overview
Existing Environment
Fabrikam, Inc. is a distribution company that has 500 employees and 100 contractors.
Active Directory
The network contains an Active Directory forest named fabrikam.com. The forest is synced to Microsoft Azure Active Directory (Azure AD). All the employees are assigned Microsoft 365 E3 licenses.
The domain contains a user account for an employee named User10.
Client Computers
All the employees have computers that run Windows 10 Enterprise. All the computers are installed without Volume License Keys. Windows 10 license keys are never issued.
All the employees register their computer to Azure AD when they first receive the computer.
User10 has a computer named Computer10.
All the contractors have their own computer that runs Windows 10. None of the computers are joined to Azure AD.
Operational Procedures
Fabrikam has the following operational procedures:
* Updates are deployed by using Windows Update for Business.
* When new contractors are hired, administrators must help the contactors configure the following settings on their computer:
- User certificates
- Browser security and proxy settings
- Wireless network connection settings
Security Policies
The following security policies are enforced on all the client computers in the domain:
* All the computers are encrypted by using BitLocker Drive Encryption (BitLocker). BitLocker recovery information is stored in Active Directory and Azure AD.
* The local Administrators group on each computer contains an enabled account named LocalAdmin.
* The LocalAdmin account is managed by using Local Administrator Password Solution (LAPS).
Problem Statements
Fabrikam identifies the following issues:
* Employees in the finance department use an application named Application1. Application1 frequently crashes due to a memory error. When Application1 crashes, an event is written to the application log and an administrator runs a script to delete the temporary files and restart the application.
* When employees attempt to connect to the network from their home computer, they often cannot establish a VPN connection because of misconfigured VPN settings.
* An employee has a computer named Computer11. Computer11 has a hardware failure that prevents the computer from connecting to the network.
* User10 reports that Computer10 is not activated.
Technical Requirements
Fabrikam identifies the following technical requirements for managing the client computers:
* Provide employees with a configuration file to configure their VPN connection.
* Use the minimum amount of administrative effort to implement the technical requirements.
* Identify which employees' computers are noncompliant with the Windows Update baseline of the company.
* Ensure that the service desk uses Quick Assist to take remote control of an employee's desktop during support calls.
* Automate the configuration of the contractors' computers. The solution must provide a configuration file that the contractors can open from a Microsoft SharePoint site to apply the required configurations.

 

NEW QUESTION 83
Please wait while the virtual machine loads. Once loaded, you may proceed to the lab section. This may take a few minutes, and the wait time will not be deducted from your overall test time.
When the Next button is available, click it to access the lab section. In this section, you will perform a set of tasks in a live environment. While most functionality will be available to you as it would be in a live environment, some functionality (e.g., copy and paste, ability to navigate to external websites) will not be possible by design.
Scoring is based on the outcome of performing the tasks stated in the lab. In other words, it doesn't matter how you accomplish the task, if you successfully perform it, you will earn credit for that task.
Labs are not timed separately, and this exam may more than one lab that you must complete. You can use as much time as you would like to complete each lab. But, you should manage your time appropriately to ensure that you are able to complete the lab(s) and all other sections of the exam in the time provided.
Please note that once you submit your work by clicking the Next button within a lab, you will NOT be able to return to the lab.
Username and password

Use the following login credentials as needed:
To enter your password, place your cursor in the Enter password box and click on the password below.
Username: Contoso/Administrator
Password: Passw0rd!
The following information is for technical support purposes only:
Lab Instance: 11145882


You need to ensure that C:\Scripts\Configure.ps1 runs every time a user sign in to Client2.
To complete this task, sign in to the required computer or computers.

Answer:

Explanation:
See explanation below.
Explanation
Go to the Start menu, type "Task Scheduler" and select it from the search results.

Task Scheduler can also be accessed in the Control Panel under Administrative Tools.
In the right side of the Task Scheduler menu, under Actions, select "Create Task."

On the General tab, enter a name and description for the task you're creating. Check the box "Run with highest privileges." Once you have filled out a name and description, click the "Triggers" tab, and then click "New." In this menu, under "Begin the task:" select "At log on." Choose which user you would like the task to run for at log on. For our purposes, Any user.
Configure any of the applicable advanced settings you would like.
After you are finished configuring the new trigger, click OK and then select the "Actions" tab. Click "New" to make a new action.

Choose "Start a program" under the Action menu and then click "Browse" to point to C:\Scripts\Configure.ps1.
Click OK to exit out of the Actions menu. The "Conditions" and "Settings" tabs can be left alone.
Click OK on the Create Task menu, and you are finished.
Reference:
https://www.howtogeek.com/138159/how-to-enable-programs-and-custom-scripts-to-run-at-boot/

 

NEW QUESTION 84
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a computer named Computer1 that runs Windows10.
A service named Application1 is configured as shown in the exhibit.

You discover that a user used the Service1 account to sign in to Computer1 and deleted some files.
You need to ensure that the identity used by Application1 cannot be used by a user to sign in to sign in to the desktop on Computer1. The solution must use the principle of least privilege.
Solution: On Computer1, you configure Application1 to sign in as the LocalSystem account and select the Allow service to interact with desktop check box. You delete the Service1 account.
Does this meet the goal?

• A. No
• B. Yes

Answer: A

Explanation:
Configuring Application1 to sign in as the LocalSystem account would ensure that the identity used by Application1 cannot be used by a user to sign in to the desktop on Computer1. However, this does not use the principle of least privilege. The LocalSystem account has full access to the system. Therefore, this solution does not meet the goal.

 

NEW QUESTION 85
Your network contains an Active Directory domain. The domain contains 1,000 computers that run Windows 10.
You configure Microsoft Edge settings by using domain and local Group Policy Objects (GPOs).
You need to generate a report that contains all the Microsoft Edge policy settings applied to a computer.
What should you do?

• A. From PowerShell. run the Gec-GPOReporc cmdlet.
• B. From PowerShell. run the Gec-GPO cmdlet.
• C. From Microsoft Edge, open edge://policy.
• D. From the Start menu, select Group Policy Object Editor

Answer: C

Explanation:
The Get-GPOReport cmdlet would generate a report for all domain group policy objects. However, this would not display the settings that are applied by local group policy objects.
To display the settings applied by both domain and local GPOs, you would have to open Microsoft Edge and enter edge://policy in the address bar.

 

NEW QUESTION 86
......

Who should take the MD-100 exam

The Microsoft Windows 10 (beta) MD-100 Exam certification is an internationally recognized validation that identifies persons who earn it as possessing skills in a Microsoft Windows 10. If candidates want significant improvement in career growth needs enhanced knowledge, skills, and talents. The Microsoft Windows 10 (beta) MD-100 Exam certification provides proof of this advanced knowledge and skill. If a candidate has given below knowledge and skills that are required to pass Microsoft Windows 10 (beta) MD-100 Exam then he should take this exam.

• Configure Networking
• Monitor and Manage Windows.
• Perform a clean installation
• Migrate User Data

Exam MD-100: Windows 10

If you passed Exam 70-698 before it expired on March 31, 2019, you only need to take MD-101 to earn the Modern Desktop certification. Candidates for this exam are Administrators who deploy, configure, secure, manage, and monitor devices and client applications in an enterprise environment. Candidates manage identity, access, policies, updates, and apps.

As an Administrator, candidates typically collaborate with the Microsoft 365 Enterprise Administrator to design and implement a device strategy that meets the business needs of a modern organization.

Candidates must be familiar with Microsoft 365 workloads and must be proficient and experienced in deploying, configuring, and maintaining Windows 10 and non-Windows devices and technologies.

You may be eligible for ACE college credit if you pass this certification exam. See ACE college credit for certification exams for details.

Part of the requirements for: Microsoft 365 Certified: Modern Desktop Administrator Associate

Download exam skills outline

 

Prepare For Realistic MD-100 Dumps PDF - 100% Passing Guarantee: https://pass4sure.testvalid.com/MD-100-valid-exam-test.html