You have an Office 365 tenant that uses an Enterprise E3 subscription. You activate Azure Rights Mana

gement for the tenant.

You must test the service with the Development security group before you deploy Azure Rights Management for all users.

You need to enable Azure Rights Management for only the Development security group.

Which Windows PowerShell cm

dlet should you run?

A.

Enable-Aadrm

B.

New-AadrmRightsDefinition

C.

Enable-AadrmSuperUserFeature

D.

Add-AadrmSuperUser

E.

Set-AadrmOnboardingControlPolicy

Explanation:

The Set-AadrmOnboardingControlPolicy cmdlet sets the policy that controls

user on-boarding for Azure Rights Management. This cmdlet supports a gradual deployment by controlling which users in your organization can protect content by using Azure Rights Management.

Example:

Restrict Azure RMS to users who are members of a specifi

ed group

This command allows only users that are members of the security group with the specified object ID to protect content by using Azure Rights Management. The command applies to Windows clients and mobile devices.

Windows PowerShell

PS C:\> Set-Aadr

mOnboardingControlPolicy -UseRmsUserLicense $False-SecurityGroupObjectId -f

References:

https://docs.microsoft.com/en-us/powershell/module/aadrm/set-aadrmonboardingcontrolpolicy?view=azureipps