Microsoft 365 Fundamentals Practice Test (MS-900)
Use the form below to configure your Microsoft 365 Fundamentals Practice Test (MS-900). The practice test can be configured to only include certain exam objectives and domains. You can choose between 5-90 questions and set a time limit.
![Logo for Microsoft 365 Fundamentals MS-900](https://crucialexams-prod.nyc3.cdn.digitaloceanspaces.com/crucialexams/Production/subjects/32.webp)
Microsoft 365 Fundamentals MS-900 Information
The Microsoft 365 Fundamentals (MS-900) certification is an entry-level credential designed for individuals looking to demonstrate foundational knowledge of Microsoft's cloud services. This certification focuses on core concepts of Microsoft 365, including cloud computing models, productivity solutions, collaboration tools, security, compliance, and pricing structures. It provides a broad understanding of Microsoft 365's offerings, which makes it an excellent starting point for individuals new to cloud services or Microsoft technologies.
The certification exam covers four key areas: cloud concepts, core Microsoft 365 services and concepts, security, compliance, and trust in Microsoft 365, as well as Microsoft 365 pricing and support. Candidates are expected to understand the different types of cloud services—SaaS, PaaS, and IaaS—and how these services are integrated into Microsoft 365. This includes being familiar with the productivity capabilities of apps like Microsoft Word, Excel, PowerPoint, Outlook, and OneDrive, as well as the collaboration solutions offered through Teams, SharePoint, and Exchange. Candidates also learn about Microsoft’s endpoint management tools and deployment models, providing a foundational understanding of how these services are used in both hybrid and cloud-based environments.
Security, compliance, and trust are critical components of the Microsoft 365 Fundamentals certification. Candidates are introduced to security features such as Microsoft Defender, which offers a suite of tools to protect data, devices, and identities. They also learn about compliance features like Microsoft Purview, which helps organizations maintain regulatory compliance through solutions like data loss prevention and eDiscovery. Additionally, identity and access management services such as Microsoft Entra ID, multi-factor authentication (MFA), and conditional access policies ensure secure access to Microsoft 365 services.
Another key focus of the certification is pricing and licensing. Candidates explore various billing and pricing models available for Microsoft 365, including enterprise agreements and cloud solution providers. Understanding the different support options available, such as how to create a support request or interpret service health status, is also covered, ensuring that individuals can manage and troubleshoot Microsoft 365 services effectively.
The Microsoft 365 Fundamentals certification is designed for a wide range of individuals, including business decision-makers, IT professionals, and those new to Microsoft’s cloud ecosystem. By earning this certification, individuals can better understand the value that Microsoft 365 brings to businesses, from its productivity tools to its robust security and compliance features. This foundational knowledge serves as a stepping stone for further certifications or more specialized roles within the Microsoft ecosystem.
For more details on the exam topics and to access resources for studying, candidates can refer to the official study guide provided by Microsoft. Additionally, more information about the Microsoft 365 Fundamentals certification itself, including practice assessments and exam details, can be found on the Microsoft certification page.
This certification is ideal for those looking to gain a fundamental understanding of cloud services and Microsoft 365, providing a solid foundation for further career advancement or deeper technical roles.
Scroll down to see your responses and detailed results
Free Microsoft 365 Fundamentals MS-900 Practice Test
Press start when you are ready, or press Change to modify any settings for the practice test.
- Questions: 15
- Time: Unlimited
- Included Topics:Describe cloud conceptsDescribe Microsoft 365 apps and servicesDescribe security, compliance, privacy, and trust in Microsoft 365Describe Microsoft 365 pricing, licensing, and support
A company with limited capital wants to reduce upfront IT costs, gain scalability, and improve resource flexibility. They are evaluating options for hosting their applications and data.
Which solution BEST supports these requirements?
Building a private cloud infrastructure
Utilizing a public cloud service
Maintaining an on-premises data center
Implementing a hybrid cloud model
Answer Description
Utilizing a public cloud service is the best solution because it allows the company to avoid large upfront capital expenditures associated with purchasing and maintaining hardware. Public cloud services operate on a pay-as-you-go model, converting capital expenses (CapEx) into operational expenses (OpEx), and provide scalability and flexibility to adjust resources as needed.
Building a private cloud infrastructure or maintaining an on-premises data center would require significant upfront investment in hardware and ongoing maintenance costs.
Implementing a hybrid cloud model still involves managing some on-premises resources, which may not fully address the company's desire to minimize upfront costs.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the advantages of using public cloud services?
What is the difference between CapEx and OpEx in cloud computing?
What challenges might a company face when building a private cloud?
You are asked to provide your company's management with data on how employees are using email, cloud storage, and collaboration tools within Microsoft 365 to optimize productivity.
As the administrator, which feature within Microsoft 365 should you use to obtain detailed user activity reports?
Security Dashboard in the Security & Compliance Center
Microsoft 365 Service Health Dashboard
Azure Active Directory Access Reviews
Reports in the Microsoft 365 Admin Center
Answer Description
Reports in the Microsoft 365 Admin Center offers administrators comprehensive reports on user activities across various Microsoft 365 services, such as Exchange Online for email, OneDrive for cloud storage, and Microsoft Teams for collaboration. These reports help in analyzing usage patterns and making informed decisions to improve productivity.
The Security Dashboard n the Security & Compliance Center focuses on security-related insights and threat management, not general usage statistics.
Azure Active Directory Access Reviews are used for reviewing user access permissions but do not provide activity reports.
The Microsoft 365 Service Health Dashboard shows the health status of Microsoft services but doesn't offer user activity data.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What types of user activity reports can I find in the Microsoft 365 Admin Center?
How often are the reports in the Microsoft 365 Admin Center updated?
Can I customize the reports in the Microsoft 365 Admin Center?
As an IT administrator for a large enterprise, you need to ensure that Windows updates are deployed progressively to different sets of users to reduce the risk of widespread issues.
What approach should you implement to achieve this?
Implement staged rollouts by grouping devices into different update phases
Update all devices simultaneously to maintain uniformity
Postpone updates to avoid potential problems
Turn off automatic updates and rely on manual installations
Answer Description
Implement staged rollouts by grouping devices into different update phases - Staged rollouts involve deploying updates to different sets of users or devices in phases, allowing IT to monitor for issues in each phase before proceeding to the next group. This approach reduces the risk of widespread issues and enables quick identification and resolution of potential problems before they affect the entire organization.
Update all devices simultaneously to maintain uniformity - Updating all devices simultaneously may seem efficient, but it increases the risk of widespread issues if an update has unexpected bugs or compatibility problems. This approach is not recommended for large enterprises due to the higher risk of impacting many users at once.
Turn off automatic updates and rely on manual installations - Disabling automatic updates and relying on manual installations would significantly delay updates and increase administrative effort. It may also leave devices vulnerable to security threats due to inconsistent or delayed patching.
Postpone updates to avoid potential problems - Postponing updates might temporarily reduce risks but can lead to security vulnerabilities and compliance issues. Progressive, staged deployment is a better way to mitigate risks without compromising security.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are staged rollouts and why are they important for updates?
What are the potential risks of updating all devices simultaneously?
How can I effectively monitor issues during a staged rollout?
Your company wants to deploy new Windows devices directly to employees without IT staff having to manually set them up. They need a solution where devices are automatically configured with company policies and apps when first turned on by the user.
Which Microsoft 365 endpoint management tool provides this automated deployment capability?
Microsoft Intune
Configuration Manager
Endpoint Analytics
Windows Autopilot
Answer Description
Windows Autopilot enables organizations to deliver new devices directly to employees, where devices are automatically configured with company settings and applications during the initial startup. This reduces the need for IT to prepare each device manually.
Microsoft Intune manages device policies and applications, Windows Autopilot specifically focuses on automating the deployment and configuration of new devices during the out-of-box experience.
Configuration Manager is an on-premises solution that requires more manual setup
Endpoint Analytics provides insights into device performance but doesn't automate deployment.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Windows Autopilot?
How does Windows Autopilot differ from Microsoft Intune?
What is the out-of-box experience (OOBE)?
An organization wants to support employee well-being by providing data-driven insights into work patterns, helping staff balance collaboration and focused work time while maintaining privacy. Which Microsoft 365 service should they implement to achieve this goal?
Microsoft Planner
Microsoft Viva Insights
Microsoft Power BI
Microsoft Teams Analytics
Answer Description
Microsoft Viva Insights offers organizations and employees personalized, data-driven insights to improve productivity and well-being. It analyzes work patterns to help individuals balance collaboration and focused work, promoting better work-life balance while ensuring privacy is protected. Microsoft Power BI is a business analytics tool for data visualization but does not provide personalized productivity recommendations. Microsoft Planner is a task management application, and Microsoft Teams Analytics provides usage metrics without focusing on employee well-being or personalized insights.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Microsoft Viva Insights and how does it work?
What other features does Microsoft Viva Insights offer to promote employee well-being?
How does Microsoft Viva Insights ensure employee privacy while providing insights?
An organization wants to reduce its upfront investment in IT infrastructure and prefers a pay-as-you-go model while maintaining the ability to quickly scale resources up or down based on demand. Which type of service deployment would best suit these needs?
On-premises infrastructure
Hybrid cloud deployment
Private cloud infrastructure
Public cloud services
Answer Description
Public cloud services allow organizations to access computing resources over the internet on a subscription or pay-as-you-go basis, eliminating the need for significant upfront capital expenditure on hardware. They offer high scalability and flexibility, enabling businesses to adjust resources according to demand. On-premises infrastructure requires substantial initial investment and does not offer the same level of scalability without additional hardware purchases. Private cloud infrastructure, while offering some benefits of cloud computing, still requires significant capital investment to build and maintain. Hybrid cloud deployments combine on-premises and cloud services, but still involve managing and investing in local infrastructure.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are public cloud services?
How does the pay-as-you-go model work in cloud services?
What are the advantages of using public cloud services for IT infrastructure?
Which type of Microsoft 365 license allows organizations to enhance their existing subscriptions by adding additional features or services?
Service license
Volume license
Base license
Add-on license
Answer Description
Add-on licenses in Microsoft 365 enable organizations to augment their current base licenses with extra features or services. This allows for flexibility and scalability, as companies can customize their subscriptions based on specific needs without purchasing entirely new base licenses.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are examples of Add-on licenses in Microsoft 365?
How do Add-on licenses differ from base licenses?
What factors should organizations consider when choosing Add-on licenses?
An organization wants to streamline the process of assigning Microsoft 365 licenses to users based on their department memberships. What is the best method to accomplish this?
Request Microsoft Support to allocate licenses accordingly
Assign licenses individually to each user through the Microsoft 365 admin center
Use group-based licensing in Azure Active Directory
Create a PowerShell script to assign licenses based on a CSV file
Answer Description
Using group-based licensing in Azure Active Directory allows administrators to automatically assign licenses to all members of a group. By organizing users into groups corresponding to their departments, licenses are assigned efficiently whenever users join or leave a group. Assigning licenses individually through the Microsoft 365 admin center is time-consuming and not practical for large numbers of users. Creating a PowerShell script requires manual maintenance and does not provide real-time updates as users change departments. Microsoft Support does not handle internal license assignments within an organization.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Azure Active Directory (Azure AD)?
What is group-based licensing?
What are the advantages of using group-based licensing over individual assignments?
An organization wants to enhance user sign-in security by requiring extra verification steps under specific circumstances, such as when users access services from outside trusted locations or using unfamiliar devices. Which feature of Microsoft Entra ID should the organization implement to meet this requirement?
Role-Based Access Control
Enabling Multi-factor Authentication
Conditional Access Policies
Self-Service Password Reset
Answer Description
Conditional Access Policies enable organizations to enforce access controls based on defined conditions like location, device compliance, or sign-in risk. By implementing Conditional Access, the organization can require additional verification steps, such as multi-factor authentication (MFA), only when users sign in under certain conditions (e.g., from outside trusted locations or on unmanaged devices). This approach strengthens security without imposing extra steps on all sign-ins.
Enabling Multi-factor Authentication universally would require users to complete MFA at every sign-in, regardless of context, which might be inconvenient for users on secured networks. Self-Service Password Reset allows users to reset their passwords without administrator assistance but doesn't adjust sign-in requirements based on conditions. Role-Based Access Control manages access permissions based on user roles but doesn't modify authentication processes based on sign-in scenarios.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Conditional Access Policies?
What is Multi-Factor Authentication (MFA) and how does it relate to Conditional Access?
How does Role-Based Access Control (RBAC) differ from Conditional Access Policies?
As an IT administrator, your organization needs to provide remote employees with secure access to personalized desktop environments. The solution should minimize management complexity by offloading infrastructure responsibilities to Microsoft and offer a simple, scalable deployment. Which service should you recommend?
Microsoft Endpoint Configuration Manager
Azure Virtual Desktop
Windows 365
Remote Desktop Services
Answer Description
Windows 365 is the appropriate choice because it delivers cloud-based PCs that are easy to deploy and manage, with Microsoft handling the infrastructure. This minimizes management complexity and allows for scalable deployment to remote employees. Azure Virtual Desktop, while offering flexible virtualization, requires you to manage the underlying infrastructure, adding complexity. Microsoft Endpoint Configuration Manager is for managing devices and applications on-premises and doesn't provide cloud-hosted desktops. Remote Desktop Services also requires significant infrastructure management and isn't as streamlined for cloud-based deployments.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Windows 365, and how does it work?
How does Windows 365 differ from Azure Virtual Desktop?
What are the key benefits of using cloud PCs like Windows 365 for remote work?
Which Microsoft 365 purchasing option is designed for organizations that prefer to work with a Microsoft partner who can provide customized solutions and services?
Microsoft Store for Business
Cloud Solution Provider Program
Direct Subscription
Enterprise Agreement
Answer Description
The Cloud Solution Provider (CSP) program allows organizations to purchase Microsoft 365 subscriptions through a Microsoft partner. This option provides the benefit of customized solutions, personalized support, and flexible billing from the partner. The Enterprise Agreement is suitable for large organizations committing to volume licensing. Direct Subscription involves buying directly from Microsoft without partner involvement. The Microsoft Store for Business is a platform for managing applications and software purchases, not specifically for customized partner services.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the Cloud Solution Provider (CSP) Program?
What are the advantages of working with a Microsoft partner through the CSP Program?
How does the CSP Program differ from the Enterprise Agreement?
Which component in Microsoft 365 is responsible for managing user authentication and authorization?
Microsoft Power BI
Microsoft SharePoint
Microsoft Endpoint Manager
Microsoft Entra ID
Answer Description
Microsoft Entra ID is the identity and access management service for Microsoft 365, responsible for handling user authentication and authorization. It provides features like single sign-on, multi-factor authentication (MFA), and conditional access, helping secure identities and access to resources. Microsoft Endpoint Manager focuses on device management, Microsoft SharePoint is for document management and collaboration, and Microsoft Power BI is a business analytics service.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the key features of Microsoft Entra ID?
How does Microsoft Entra ID compare to Microsoft Endpoint Manager?
What is the significance of Multi-Factor Authentication in Microsoft Entra ID?
An IT administrator wants to proactively improve their organization's security posture using Microsoft 365 tools.
Which feature provides a quantifiable measurement of the organization's security based on their use of Microsoft 365 security features and offers recommendations to increase security?
Microsoft Cloud App Security
Azure Active Directory Identity Protection
Microsoft Defender for Endpoint
Microsoft Secure Score
Answer Description
Microsoft Secure Score provides a quantifiable measurement of an organization's security posture within Microsoft 365. It assesses current security settings and practices, and offers actionable recommendations to enhance security. By following these recommendations, organizations can increase their score and improve their overall security posture.
The other options, while contributing to security in specific areas, do not provide a comprehensive, quantifiable measurement across Microsoft 365 services.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Microsoft Secure Score and how does it work?
How can organizations use the recommendations from Microsoft Secure Score?
How does Microsoft Secure Score differ from other security tools like Microsoft Defender?
An organization needs a solution to manage user identities, enforce access policies, and provide features like RBAC and PIM within their Microsoft 365 environment. Which Microsoft service should they implement?
Microsoft Endpoint Manager
Microsoft Defender for Identity
Microsoft Entra ID
Microsoft Purview
Answer Description
Microsoft Entra ID is the identity and access management service for Microsoft 365 that provides features such as Role-Based Access Control (RBAC) and Privileged Identity Management (PIM). RBAC allows the organization to assign permissions to users based on their roles, ensuring they have appropriate access levels. PIM enables the management and monitoring of privileged accounts, adding an extra layer of security for sensitive resources. Microsoft Defender for Identity is focused on identifying threats and malicious activities related to identities but doesn't provide identity management features. Microsoft Endpoint Manager is used for device and application management, not for managing user identities or access policies. Microsoft Purview offers compliance and data governance solutions. Therefore, Microsoft Entra ID is the correct service to implement for identity and access management, including RBAC and PIM.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Role-Based Access Control (RBAC) and its benefits?
What is Privileged Identity Management (PIM) and how does it work?
How does Microsoft Entra ID differ from Microsoft Defender for Identity?
An organization needs to implement security policies that evaluate signals such as user location, device compliance status, and risk level to determine if a user should be granted access to resources. Which feature of Microsoft Entra ID provides this capability?
Identity Protection
Conditional Access
Self-Service Password Reset
Multi-factor Authentication
Answer Description
Conditional Access allows administrators to create policies that assess various signals like user location, device compliance, and sign-in risk to make decisions about granting or blocking access to resources. Multi-factor Authentication (MFA) enhances security by requiring additional verification steps but does not evaluate signals to make access decisions. Identity Protection provides risk detection and remediation but does not enforce policies based on conditions. Self-Service Password Reset (SSPR) empowers users to reset their passwords without IT assistance but does not control access based on evaluated signals.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the key components or signals that Conditional Access evaluates?
How does Conditional Access differ from Multi-factor Authentication?
What is the significance of using Conditional Access in an organization's security strategy?
Gnarly!
Looks like that's it! You can go back and review your answers or click the button below to grade your test.