You use a centralized identity management system as a source of authority for user account information. You export a list of new user accounts to a file on a daily basis. Your company uses a local Active Directory for storing user accounts for on-premises solutions. You are also using Azure AD Connect.
New user accounts must be created in both the local Active Directory and Office 365. You must import user account data into Office 365 daily.
You need to import the new users.
What should you do? followed by tool. You typically use the DirSync or Azure AD Connect tools to configure either password synchronization or single sign-on so that your users can use their on-premises AD DS credentials to authenticate to Office 365. recommended tool to use.

An organization plans to migrate to Office 365. You use Azure AD Connect.
Several users will not migrate to Office 365. You must exclude these users from synchronization. All users must continue to authenticate against the on-premises Active Directory.
You need to synchronize the remaining users.
Which three actions should you perform to ensure users excluded from migration are not synchronized? Each correct answer presents part of the solution. example, you run a pilot for Azure or Office 365 and you only want a subset of users in Azure AD. can also have different filters for different object types. system. It could also be that objects not currently in the sync engine should be processed and the sync engine needs to read the source system again to verify its content. configure-filtering/

HOTSPOT
You implement single sign-on (SSO) between Office 365 and an on-premises deployment of Active Directory.
You need to configure Active Directory Federation Services (AD FS) to prevent users from being able to log on for 30 minutes after they attempt to log on by using a bad password 10 consecutive times.

Explanation/Reference:
Explanation:
An example of enabling ExtranetLockout feature with maximum of 10 number of bad password attempts and
30 mins soft-lockout duration is as follows:

What command should you run? To answer, select the appropriate options in the answer area.
Hot Area:

HOTSPOT
Contoso, Ltd. has an Office 365 Tenant. The company plans to implement single sign-on (SSO). You install
Active Directory Federation Services.
You need to enable the uses of SSO.
How should you complete the relevant Windows PowerShell commands? To answer, select the appropriate
Windows PowerShell segment from each list in the answer area.
Hot Area:

administrator account credentials. that connects you to Azure AD is required before running any of the additional cmdlets installed by the tool. internal FQDN name of the primary AD FS server. This cmdlet creates a context that connects you to AD converted. This cmdlet changes the domain from standard authentication to single sign-on.

Your network contains a single Active Directory forest. The forest contains a domain controller and Active
Directory Federation Services (AD FS) servers that are deployed to virtual machines. The virtual machines run either on-premises or on Microsoft Azure.
You have Azure AD Connect deployed on-premises. The Azure AD Connect database is installed on an on- premises instance of Microsoft SQL Server 2014.
Last month, an Azure AD Connect server experienced a hardware failure that caused an Azure AD Connect server to go offline for several days.
You need to recommend a solution to reduce the outage window when hardware failure occurs on the Azure
AD Connect server.
Solution: You deploy a new on-premises Azure AD Connect server that uses a new SQL Server instance. You set the Azure AD Connect server to staging mode.
Does this meet the goal? installation, you can enable a server to be in staging mode. solutions include mirroring and Always On. operations/

Your network contains a single Active Directory forest. The forest contains a domain controller and Active
Directory Federation Services (AD FS) servers that are deployed to virtual machines. The virtual machines run either on-premises or on Microsoft Azure.
You have Azure AD Connect deployed on-premises. The Azure AD Connect database is installed on an on- premises instance of Microsoft SQL Server 2014.
Last month, an Azure AD Connect server experienced a hardware failure that caused an Azure AD Connect server to go offline for several days.
You need to recommend a solution to reduce the outage window when hardware failure occurs on the Azure
AD Connect server.
Solution: You deploy a new Azure AD Connect server to an Azure virtual machine that uses a new SQL Server instance. You set the Azure AD Connect server to staging mode.
Does this meet the goal? installation, you can enable a server to be in staging mode. the image with the sync engine server can be migrated to another server. operations/

You have an on-premises Active Directory forest.
You deploy Active Directory Federation Services (AD FS) and purchase an Office 365 subscription.
You need to create a trust between the AD FS servers and the Office 365 subscription.
Solution: You run the netdom.com command.
Does this meet the goal? single sign-on domain from a standard domain. Adding or converting a domain sets up a trust between AD FS and Microsoft Azure Active Directory (Microsoft Azure AD).

You have an on-premises Active Directory forest.
You deploy Active Directory Federation Services (AD FS) and purchase an Office 365 subscription.
You need to create a trust between the AD FS servers and the Office 365 subscription.
Solution: You run the New-MsolFederatedDomain cmdlet.
Does this meet the goal? single sign-on domain from a standard domain. Adding or converting a domain sets up a trust between AD FS and Microsoft Azure Active Directory (Microsoft Azure AD). federated domain) to and configures the relying party trust settings between the on-premises AD FS server. the process of adding the new single sign-on domain. https://msdn.microsoft.com/en-us/library/azure/dn194105(v=azure.98).aspx https://msdn.microsoft.com/en-us/library/azure/jj205461.aspx

You have an on-premises Active Directory forest.
You deploy Active Directory Federation Services (AD FS) and purchase an Office 365 subscription.
You need to create a trust between the AD FS servers and the Office 365 subscription.
Solution: You run the Convert-MsolDomainToFederated cmdlet.
Does this meet the goal? single sign-on domain from a standard domain. Adding or converting a domain sets up a trust between AD FS and Microsoft Azure Active Directory (Microsoft Azure AD). single sign-on (also known as identity federation), including configuring the relying party trust settings between the Active Directory Federation Services (AD FS) server as part of converting a domain from standard authentication to single sign-on, each user must also be converted. This conversion happens automatically the next time a user signs in; no action is required by the administrator. https://msdn.microsoft.com/en-us/library/azure/dn194092(v=azure.98).aspx https://msdn.microsoft.com/en-us/library/azure/jj205461.aspx

DRAG DROP
A company has an Office 365 tenant. You plan to use Office 365 to manage the DNS settings for a custom domain. You purchase the domain through a third-party provider.
You create a custom website. You must host the website through a third-party provider at the IP address
134.170.185.46. You need to configure the correct DNS settings.
What should you do? To answer, drag the appropriate DNS record to the correct DNS target. Each record may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
Select and Place: