Crucial Exams

Microsoft 365 Administrator Expert MS-102 Practice Question

Contoso Ltd. uses a Microsoft Entra tenant. You are planning Conditional Access. Requirements: 1) Enforce MFA for all privileged directory roles. 2) The control should apply only when sign-ins come from outside the head-office public IP ranges. 3) Emergency break-glass accounts must remain unaffected. What is the best way to scope the new policy?

  • Target the built-in directory roles in Users and groups, exclude the break-glass accounts, define a named location for the head-office IP ranges and exclude it, and set Grant controls to Require multifactor authentication.

  • Target All users, set a Sign-in risk condition of Medium and above, require multifactor authentication, and exclude the break-glass accounts.

  • Target All guest users, scope the policy to the Microsoft Azure Management cloud app, exclude the head-office location, and grant Require multifactor authentication.

  • Target a security group that contains the privileged accounts, include only the head-office named location, and grant Require multifactor authentication.

Microsoft 365 Administrator Expert MS-102
Implement and manage Microsoft Entra identity and access
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot