You have an Office 365 tenant that uses an Enterprise E3 subscription. You activate Azure Rights Mana
gement for the tenant.
You must test the service with the Development security group before you deploy Azure Rights Management for all users.
You need to enable Azure Rights Management for only the Development security group.
Which Windows PowerShell cm
dlet should you run?
A.
Enable-Aadrm
B.
New-AadrmRightsDefinition
C.
Enable-AadrmSuperUserFeature
D.
Add-AadrmSuperUser
E.
Set-AadrmOnboardingControlPolicy
Explanation:
The Set-AadrmOnboardingControlPolicy cmdlet sets the policy that controls
user on-boarding for Azure Rights Management. This cmdlet supports a gradual deployment by controlling which users in your organization can protect content by using Azure Rights Management.
Example:
Restrict Azure RMS to users who are members of a specifi
ed group
This command allows only users that are members of the security group with the specified object ID to protect content by using Azure Rights Management. The command applies to Windows clients and mobile devices.
Windows PowerShell
PS C:\> Set-Aadr
mOnboardingControlPolicy -UseRmsUserLicense $False-SecurityGroupObjectId -f
References:
https://docs.microsoft.com/en-us/powershell/module/aadrm/set-aadrmonboardingcontrolpolicy?view=azureipps