Which cmdlet should you use?
You are building a guarded fabric.You need to configure Admin-trusted attestation.
Which cmdlet should you use?
Which account should you use?
Your network contains an Active Directory domain named contoso.com. The domain contains two servers
named Server1 and Server2 that run Windows Server
2016.
The Microsoft Advanced Threat Analytics (ATA) Center service is installed on Server1.
The domain contains the users shown in the following table.
You are installing ATA Gateway on Server2.
You need to specify a Gateway Registration account. Which account should you use?
You need to configure HGS to ensure that the older Hype…
You deploy the Host Guardian Service (HGS).
You have several Hyper-V hosts that have older hardware and Trusted Platform Modules (TPMs) version 1.2.
You discover that the Hyper-V hosts cannot start shielded virtual machines.
You need to configure HGS to ensure that the older Hyper-V hosts can host shielded virtual machines.What should you do?
You need to ensure that the security token of User1 has…
The Job Title attribute for a domain user named User1 has a value of Sales Manager.
User1 runs whoami /claims and receives the following output
Kerberos support for Dynamic Access Control on this device has been disabled.
You need to ensure that the security token of User1 has a claim for Job Title. What should you do?
Which query should you use?
You implement Log Analytics in Microsoft Operations Management Suite (OMS) on all servers that run
Windows Server 2016.
You need to generate a daily report that identifies which servers restarted during the last 24 hours.
Which query should you use?
Which cmdlet should you use?
Your network contains an Active Directory forest named corp.contoso.com.
You are implementing Privileged Access Management (PAM) by using a bastion forest named
priv.contoso.com.
You need to create shadow groups in priv.contoso.com.
Which cmdlet should you use?
You need to prevent users from storing ZIP files on Ser…
You have a file server named Server1 that runs Windows Server 2016.
A new policy states that ZIP files must not be stored on Server1.
An administrator creates a file screen filter as shown in the following output
Active : False
Description:
IncludeGroup: {Compressed Files}
MatchesTemplate: False
Notification {MSFT FSRMAction, MSFT FSRMAction}
Path : C:\\
Template :
PSComputerName:
You need to prevent users from storing ZIP files on Server1, what should you do?
Which information must you use to configure the Honeyto…
Your network contains an Active Directory domain named contoso.com.
You are deploying Microsoft Advanced Threat Analytics (ATA).
You create a user named User1.
You need to configure the user account of User1 as a Honeytoken account.
Which information must you use to configure the Honeytoken account?
You need to log an event each time an Active Directory …
Your network contains an Active Directory domain named contoso.com. The domain contains a server named
Server1 that runs Windows Server 2016.
You have an organizational unit (OU) named Administration that contains the computer account of Server1.
You import the Active Directory module to Server1.
You create a Group Policy object (GPO) named GPO1. You link GPO1 to the Administration OU.
You need to log an event each time an Active Directory cmdlet executed successfully from Server1.
What should you do?
Which two actions should you perform?
Your network contains several secured subnets that are disconnected from the Internet.
One of the secured subnets contains a server named Server1 that runs Windows Server 2016.
You implement Log Analytics in Microsoft Operations Management Suite (OMS) for the servers that connect to
the Internet
You need to ensure that Log Analytics can collect logs from Server1.
Which two actions should you perform? Each correct answer presents part of the solution.