Microsoft 365 Fundamentals Practice Test (MS-900)
Use the form below to configure your Microsoft 365 Fundamentals Practice Test (MS-900). The practice test can be configured to only include certain exam objectives and domains. You can choose between 5-100 questions and set a time limit.

Microsoft 365 Fundamentals MS-900 Information
The Microsoft 365 Fundamentals (MS-900) certification is an entry-level credential designed for individuals looking to demonstrate foundational knowledge of Microsoft's cloud services. This certification focuses on core concepts of Microsoft 365, including cloud computing models, productivity solutions, collaboration tools, security, compliance, and pricing structures. It provides a broad understanding of Microsoft 365's offerings, which makes it an excellent starting point for individuals new to cloud services or Microsoft technologies.
The certification exam covers four key areas: cloud concepts, core Microsoft 365 services and concepts, security, compliance, and trust in Microsoft 365, as well as Microsoft 365 pricing and support. Candidates are expected to understand the different types of cloud services—SaaS, PaaS, and IaaS—and how these services are integrated into Microsoft 365. This includes being familiar with the productivity capabilities of apps like Microsoft Word, Excel, PowerPoint, Outlook, and OneDrive, as well as the collaboration solutions offered through Teams, SharePoint, and Exchange. Candidates also learn about Microsoft’s endpoint management tools and deployment models, providing a foundational understanding of how these services are used in both hybrid and cloud-based environments.
Security, compliance, and trust are critical components of the Microsoft 365 Fundamentals certification. Candidates are introduced to security features such as Microsoft Defender, which offers a suite of tools to protect data, devices, and identities. They also learn about compliance features like Microsoft Purview, which helps organizations maintain regulatory compliance through solutions like data loss prevention and eDiscovery. Additionally, identity and access management services such as Microsoft Entra ID, multi-factor authentication (MFA), and conditional access policies ensure secure access to Microsoft 365 services.
Another key focus of the certification is pricing and licensing. Candidates explore various billing and pricing models available for Microsoft 365, including enterprise agreements and cloud solution providers. Understanding the different support options available, such as how to create a support request or interpret service health status, is also covered, ensuring that individuals can manage and troubleshoot Microsoft 365 services effectively.
The Microsoft 365 Fundamentals certification is designed for a wide range of individuals, including business decision-makers, IT professionals, and those new to Microsoft’s cloud ecosystem. By earning this certification, individuals can better understand the value that Microsoft 365 brings to businesses, from its productivity tools to its robust security and compliance features. This foundational knowledge serves as a stepping stone for further certifications or more specialized roles within the Microsoft ecosystem.
For more details on the exam topics and to access resources for studying, candidates can refer to the official study guide provided by Microsoft. Additionally, more information about the Microsoft 365 Fundamentals certification itself, including practice assessments and exam details, can be found on the Microsoft certification page.
This certification is ideal for those looking to gain a fundamental understanding of cloud services and Microsoft 365, providing a solid foundation for further career advancement or deeper technical roles.
Scroll down to see your responses and detailed results
Free Microsoft 365 Fundamentals MS-900 Practice Test
Press start when you are ready, or press Change to modify any settings for the practice test.
- Questions: 15
- Time: Unlimited
- Included Topics:Describe cloud conceptsDescribe Microsoft 365 apps and servicesDescribe security, compliance, privacy, and trust in Microsoft 365Describe Microsoft 365 pricing, licensing, and support
Your organization wants to test new Windows updates with a small group before rolling them out to all users. Which approach to Windows update management allows you to achieve this?
- You selected this option
Implementing LTSC
- You selected this option
Configuring Group Policy settings for update deferral
- You selected this option
Using deployment rings to stage the update rollout
- You selected this option
Utilizing the Windows Insider Program for Business
Answer Description
By using deployment rings, organizations can control the rollout of updates by grouping devices into different rings. This method lets you test updates with a small group first, identify and resolve any issues, and then progressively deploy updates to larger groups. Configuring Group Policy settings for update deferral can delay updates but does not provide a structured rollout process. The Windows Insider Program for Business offers pre-release builds for testing new features but isn't intended for staged rollouts of official updates. Implementing LTSC (Long-Term Servicing Channel) is designed for devices that require stability over new features and doesn't support the standard update cadence or testing processes.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are deployment rings and how do they work?
What is the difference between a Windows Insider Program and deployment rings?
What is LTSC and why is it different from regular Windows updates?
Which licensing approach allows a company to expand the functionality of their current Microsoft 365 subscription with specific features like advanced security or analytics, without acquiring a new base license?
- You selected this option
By purchasing additional feature licenses
- You selected this option
By acquiring a new base license
- You selected this option
By applying service-level agreement changes
- You selected this option
By opting for a higher billing frequency
Answer Description
Purchasing additional feature licenses enables a company to extend the capabilities of their existing Microsoft 365 subscription without replacing the base license. These licenses are designed to add specific functionalities on top of the current subscription on a per-user basis. Acquiring a new base license would involve replacing the current subscription rather than enhancing it. Opting for a higher billing frequency affects payment schedules, not the addition of features. Applying service-level agreement changes does not modify the features available in the subscription.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are feature licenses in Microsoft 365?
How do feature licenses differ from base licenses?
Can all Microsoft 365 subscriptions use feature licenses?
Contoso Ltd. wants to carefully manage the rollout of new Windows 10 feature updates to reduce potential issues. They decide to roll out updates to groups of users in stages, starting with a pilot group and gradually expanding to more users.
Which approach should they take to accomplish this plan?
- You selected this option
Disable automatic updates and manually install updates on each device.
- You selected this option
Implement Windows Autopilot to deploy updates.
- You selected this option
Utilize self-service updates allowing users to update at their discretion.
- You selected this option
Use deployment rings to control the update rollout stages.
Answer Description
By using deployment rings, Contoso Ltd. can control the update rollout by grouping devices and scheduling updates in stages. This staged approach allows them to monitor the impact of updates on a small group before wider deployment, reducing the risk of widespread issues.
Self-service updates leave the timing up to users, which doesn't provide the controlled rollout they desire.
Disabling automatic updates and manually installing updates is inefficient and impractical for large organizations.
Windows Autopilot is intended for setting up and pre-configuring new devices, not for managing update deployments.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are deployment rings and how do they work?
Why is a controlled rollout better than self-service updates?
What are the benefits of using Windows Autopilot in an organization?
An IT administrator needs assistance resolving an issue with their organization's Microsoft 365 services.
Which method should they use to request support from Microsoft?
- You selected this option
Send a support request via postal mail to Microsoft headquarters.
- You selected this option
Submit a support ticket through the Microsoft 365 admin center.
- You selected this option
Install the latest service pack to see if the issue resolves.
- You selected this option
Wait for their Microsoft account representative to reach out.
Answer Description
Submitting a support ticket through the Microsoft 365 admin center is the correct method for an IT administrator to request assistance directly from Microsoft. This process ensures the request is logged and tracked properly.
Sending a request via postal mail is not an efficient or standard support method.
Waiting for a Microsoft account representative to reach out does not proactively address the issue.
Installing the latest service pack might not resolve the specific issue at hand without proper guidance.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the Microsoft 365 admin center?
What information should be included in a support ticket?
What are common issues that may require opening a support ticket?
As an IT administrator, users inform you that they are unable to access their email through Outlook. Which tool should you use to verify if there is a known issue with the email service?
- You selected this option
Check the Service health in the Microsoft 365 admin center.
- You selected this option
Access the Security & Compliance Center.
- You selected this option
Open the Device Management portal.
- You selected this option
Use the Microsoft Entra admin center.
Answer Description
The Service health section in the Microsoft 365 admin center provides real-time information about the status of Microsoft 365 services, including email. By accessing it, administrators can see current issues and their impact. The Security & Compliance Center focuses on security policies and compliance features. The Device Management portal is used for managing devices within the organization. The Microsoft Entra admin center deals with identity and access management but does not display service health information for email services.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the Microsoft 365 admin center?
What is Service health in Microsoft 365?
What types of issues can be found in the Service health section?
Which Microsoft 365 service assists users in enhancing their productivity and wellbeing by analyzing their work patterns and offering actionable recommendations?
- You selected this option
Microsoft Planner
- You selected this option
Microsoft Viva Insights
- You selected this option
Microsoft Teams
- You selected this option
Microsoft To Do
Answer Description
Microsoft Viva Insights helps users improve productivity and wellbeing by analyzing work patterns and providing personalized, actionable recommendations.
Microsoft Teams is a collaboration platform for chat, meetings, and calls.
Microsoft Planner is a team-based task management tool.
Microsoft To Do is a personal task management app.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What specific features does Microsoft Viva Insights offer to enhance productivity?
How does Microsoft Viva Insights analyze work patterns?
Can you explain the other Microsoft 365 services mentioned and how they differ from Microsoft Viva Insights?
Your organization is experiencing fragmented communication due to the use of various messaging apps, email clients, and calling services. Management wants to adopt a single Microsoft 365 service that can provide instant messaging, video conferencing, voice calls, and integration with other Microsoft 365 applications for file sharing and productivity. Which service should you recommend?
- You selected this option
Microsoft Teams
- You selected this option
Microsoft SharePoint
- You selected this option
Microsoft Yammer
- You selected this option
Microsoft Outlook
Answer Description
Microsoft Teams provides a comprehensive solution that includes instant messaging, video conferencing, voice calls, and tight integration with other Microsoft 365 applications for file sharing and productivity. By consolidating these features into a single platform, it helps eliminate inefficiencies caused by using multiple tools. Microsoft Outlook focuses on email and calendar functions, Microsoft SharePoint is designed for document management and intranet sites, and Microsoft Yammer is an enterprise social networking tool. None of these offer the full range of real-time communication and collaboration features provided by Microsoft Teams.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What specific features does Microsoft Teams offer that enhance communication?
How does Microsoft Teams integrate with other Microsoft 365 applications?
What are the differences between Microsoft Teams and other Microsoft 365 tools like Outlook, SharePoint, and Yammer?
Your company experiences a prolonged interruption of a Microsoft 365 service, which affects business operations. As the IT manager, what is the appropriate action to address this issue with Microsoft?
- You selected this option
Upgrade your Microsoft 365 subscription to prevent future interruptions.
- You selected this option
Reinstall the affected service to restore functionality.
- You selected this option
Wait for Microsoft to notify you about compensation for the outage.
- You selected this option
Submit a claim to Microsoft for service credits.
Answer Description
To receive service credits due to service downtime, you must submit a claim to Microsoft within the specified time frame as outlined in the Service Level Agreement (SLA). Microsoft does not automatically provide compensation; it requires customers to initiate the process. Reinstalling the service or upgrading the subscription will not address the issue of compensation for the downtime experienced.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a Service Level Agreement (SLA)?
How do I submit a claim for service credits with Microsoft?
What are service credits and how do they work?
A company wants to classify and protect its documents and emails by assigning tags that enforce encryption and access restrictions according to the content's sensitivity. The protection settings should travel with the content wherever it goes. Which Microsoft Purview feature should the company implement?
- You selected this option
Retention Policies
- You selected this option
Microsoft Defender for Office 365
- You selected this option
Data Loss Prevention policies
- You selected this option
Sensitivity Labels
Answer Description
Sensitivity Labels allow organizations to classify and protect content by applying labels that enforce encryption, access restrictions, and visual markings. These labels persist with the content, ensuring protection travels with the data even when it is shared externally. Data Loss Prevention policies help prevent the accidental sharing of sensitive information but do not apply persistent protection settings to content. Retention Policies manage how long content is kept but do not provide encryption or access restrictions based on sensitivity. Microsoft Defender for Office 365 protects against threats like phishing and malware but does not classify or protect content based on sensitivity.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Sensitivity Labels in Microsoft Purview?
How do Sensitivity Labels ensure protection follows data?
What is the difference between Sensitivity Labels and Data Loss Prevention policies?
What is a method for adding new collaborative functionalities to Microsoft Teams without leaving the platform?
- You selected this option
Change personal status messages
- You selected this option
Create new channels for projects
- You selected this option
Schedule meetings with team members
- You selected this option
Install apps from the Teams App Store
Answer Description
Installing apps from the Teams App Store allows users to add new collaborative functionalities directly within Microsoft Teams. This integration enhances productivity by bringing additional tools and services into the Teams environment. Creating new channels organizes content but doesn't add functionalities. Scheduling meetings facilitates communication but doesn't enhance features. Changing status messages is a personal setting and doesn't affect team collaboration tools.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What types of apps can be added from the Teams App Store?
How do I install an app from the Teams App Store?
What are the benefits of using apps within Microsoft Teams?
Your organization needs to prevent sensitive data like credit card numbers and Social Security numbers from being shared outside the company through email or cloud storage services.
Which Microsoft Purview feature should you implement to achieve this goal?
- You selected this option
Microsoft Defender for Office 365
- You selected this option
Sensitivity labels
- You selected this option
Retention labels
- You selected this option
Data Loss Prevention (DLP) policies
Answer Description
Data Loss Prevention (DLP) policies are designed to identify, monitor, and protect sensitive information across your organization. By implementing DLP policies in Microsoft Purview, you can prevent users from accidentally or intentionally sharing confidential data externally via email or cloud services.
Sensitivity labels help classify and protect information by applying labels that enforce encryption and access restrictions, but they do not actively block data sharing.
Retention labels manage the lifecycle of content, ensuring data is kept or deleted as required, but they do not prevent data from being shared.
Microsoft Defender for Office 365 provides threat protection against malware and phishing attacks but does not focus on preventing the external sharing of sensitive information.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Data Loss Prevention (DLP) policies?
How do DLP policies work in Microsoft Purview?
What is the difference between DLP policies and sensitivity labels?
Under Microsoft's Zero Trust Model, how is trust established when accessing resources?
- You selected this option
By treating internal networks as secure and trusted.
- You selected this option
By authenticating and authorizing access requests.
- You selected this option
By requiring authentication for external users.
- You selected this option
By granting access based on network location.
Answer Description
Microsoft's Zero Trust Model operates on the principle of 'never trust, always verify.' This means that authentication and authorization are required for access requests, regardless of network location or user identity, to ensure robust security. The correct answer reflects this need to verify all access attempts. Option B is incorrect because treating internal networks as secure contradicts the Zero Trust philosophy, which does not inherently trust any network. Option C is incorrect because granting access based on network location does not align with the model's requirement to verify every access request. Option D is incorrect because Zero Trust requires authentication for all users, not just external ones.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does 'never trust, always verify' mean in the context of the Zero Trust Model?
What are the main components involved in authentication and authorization?
How does Microsoft 365 support the Zero Trust Model?
Which Microsoft 365 solution assists organizations in automating data subject requests and optimizing data handling practices to comply with data protection regulations?
- You selected this option
Microsoft Entra ID
- You selected this option
Microsoft Priva
- You selected this option
Microsoft Purview
- You selected this option
Microsoft Defender for Cloud Apps
Answer Description
Microsoft Priva provides tools designed to help organizations manage personal data risks by automating data subject request workflows and assessing data handling practices to comply with data protection regulations such as GDPR.
Microsoft Purview offers data governance and compliance solutions but does not specifically automate data subject requests.
Microsoft Entra ID focuses on identity and access management.
Microsoft Defender for Cloud Apps provides security for cloud applications.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are data subject requests, and why are they important?
What features does Microsoft Priva offer for managing data protection?
How does Microsoft Priva integrate with other Microsoft solutions?
Your company wants to build and deploy applications without managing servers, operating systems, or middleware. They prefer to concentrate on application development, while the cloud provider handles the infrastructure and necessary software environments.
Which cloud service model should they choose?
- You selected this option
On-premises deployment
- You selected this option
Software as a Service (SaaS)
- You selected this option
Infrastructure as a Service (IaaS)
- You selected this option
Platform as a Service (PaaS)
Answer Description
Platform as a Service (PaaS) is the correct choice because it allows developers to focus on application development, while the cloud provider manages the underlying infrastructure, operating systems, and middleware. This accelerates development and reduces the burden of managing hardware and software updates.
Infrastructure as a Service (IaaS) requires the customer to manage the operating systems and middleware, which does not meet the company's requirement to avoid managing these components.
Software as a Service (SaaS) provides fully managed applications but does not allow for custom application development.
On-premises deployment would require the company to manage all aspects of the infrastructure and software environments.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What exactly is Platform as a Service (PaaS)?
How does PaaS differ from IaaS?
What are some examples of PaaS providers?
Microsoft Secure Score provides organizations with a score that remains constant even when security configurations change.
- You selected this option
True
- You selected this option
False
Answer Description
This statement is False.
Microsoft Secure Score is dynamic and updates the organization's security score when there are changes in security configurations. Implementing recommended security actions will increase the score, while removing protections can decrease it. This helps organizations continuously monitor and improve their security posture.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Microsoft Secure Score and how does it work?
What factors influence the Microsoft Secure Score?
How can organizations use Microsoft Secure Score to improve security?
Nice!
Looks like that's it! You can go back and review your answers or click the button below to grade your test.