70-346 Exam Questions - Online Test
70-346 Premium VCE File
150 Lectures, 20 Hours
Cause all that matters here is passing the Microsoft 70 346 vce exam. Cause all that you need is a high score of microsoft 70 346 Managing Office 365 Identities and Requirements exam. The only one thing you need to do is downloading Ucertify 70 346 vce exam study guides now. We will not let you down with our money-back guarantee.
Q11. You are the Office 365 administrator for your company. The company has a single office.
You have the following requirements:
You must configure a redundant Active Directory Federation Services (AD FS)
implementation.
You must use a Windows Internal Database to store AD FS configuration data.
The solution must use a custom login page for external users.
The solution must use single sign-on for internal users.
You need to deploy the minimum number of servers.
How many servers should you deploy?
A. 2
B. 4
C. 6
D. 16
Answer: B
Q12. Contoso, Ltd. plans to use Office 365 for email services and Lync Online. Contoso has four unique domain names.
You need to migrate domain names to Office 365.
Which two domain names should you exclude from the migration? Each correct answer presents part of the solution.
A. contoso.us
B. contoso
C. contoso.local
D. contoso.co
Answer: B,C
Explanation:
contoso.us - valid TLD Domain
contoso.co - valid TLD Domain
contoso - single labeled domain - not valid
contoso.local - internal labeled domain - not valid
Q13. You plan to deploy an Office 365 tenant to multiple offices around the country.
You need to modify the users and groups who are authorized to administer the Rights Management service.
Which Windows PowerShell cmdlet should you run?
A. Add-MsolGroupMember
B. Get-AadrmRoleBasedAdministrator
C. Remove-AadrmRoleBasedAdministrator
D. Enable-AadrmSuperUserFeature
Answer: A
Q14. An organization deploys an Office 365 tenant.
User accounts must be synchronized to Office 365 by using the Windows Azure Active
Directory Sync tool.
You have the following password policies:
Passwords for the on-premises Active Directory Domain Services (AD DS) user accounts are at least six characters long.
Passwords for Office 365 user accounts are at least eight characters long.
You need to ensure that the user accounts will be synchronized. Which user accounts will be synchronized?
A. All user accounts
B. No user accounts
C. User accounts with a password length of at least 8 characters
D. User accounts with a password length of at least 14 characters
Answer: A
Explanation:
After deploying ADFS tenant password policies are handled by the local Active Directory Environment, and not Office 365 Azure. All users will be synchronized and will utilize the AD DS six character long password policy.
Reference: http://howdouc.blogspot.ca/2011/04/active-directory-federation-services.html
Q15. You have an Office 365 tenant that uses an Enterprise E3 subscription. You have two
servers in a perimeter network that have the Active Directory Federation Services (AD FS)
proxy role service installed. A federation server farm is located behind a firewall.
You need to ensure that the AD FS proxies can communicate with the federation server
farm.
Which two name resolution strategies can you use? Each correct answer presents a
complete solution.
A. HOSTS file on the proxy servers
B. DNS server in the perimeter network
C. LMHOSTS file on the proxy servers
D. LMHOSTS file on the federation servers
E. HOSTS file on the federation servers
Answer: A,B
Explanation: Configure Name Resolution for a Federation Server Proxy in a DNS Zone That Serves Only the Perimeter Network So that name resolution can work successfully for a federation server in an Active Directory Federation Services (AD FS) scenario in which one or more Domain Name System (DNS) zones serve only the perimeter network, the following tasks must be completed:
*The hosts file on the federation server proxy must be updated to add the IP address of afederation server.
*DNS in the perimeter network must be configured to resolve all client requests for the ADFS host name to the federation server proxy. To do this, you add a host (A) resource record to perimeter DNS for the federation server proxy.
Reference: Configure Name Resolution for a Federation Server Proxy in a DNS Zone That Serves Only the Perimeter Network
https://technet.microsoft.com/en-us/library/dd807045.aspx
Q16. An organization plans to migrate to Office 365.
You need to estimate the post-migration network traffic.
Which tool should you use?
A. Microsoft Online Services Diagnostics and Logging (MOSDAL) Support Kit
B. Microsoft Network Monitor
C. Lync 2013 Bandwidth Calculator
D. Microsoft Remote Connectivity Analyzer can open and view Office documents.
Answer: C
Explanation:
Reference: http://technet.microsoft.com/en-us/library/hh852542.aspx
Q17. DRAG DROP
A company deploys an Office 365 tenant.
All employees in the human resources (HR) department must use multi-factor authentication. They must use only the Microsoft Outlook client to access their email messages. User1 joins the HR department.
You need to help User1 configure his account.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q18. DRAG DROP
A company deploys an Office 365 tenant.
You need to enable multi-factor authentication for Office 365.
Which three actions should you perform in sequence? To answer, move the appropriate
actions from the list of actions to the answer area and arrange them in the correct order.
Answer:
Q19. You have a legacy application that needs to send email to employees. The legacy
application runs on a client computer.
The legacy application must send email by using IMAP through Exchange Online.
You need to identify the correct host name and port information.
Which settings should you use?
A. Imap.office365.com and port 993
B. Imap.office365.com and port 143
C. Outlook.office365.com and port 993
D. Outlook.office365.com and port 143
Answer: C
Explanation:
For Office 365 for business, use the following settings.
IMAP4
outlook.office365.com
993 implicit
Reference: Use POP or IMAP to connect to Office 365 for business or Microsoft Exchange accounts https://support.office.com/en-US/Article/Use-POP-or-IMAP-to-connect-to-Office-365-forbusiness-or-Microsoft-Exchange-accounts-44f951cc-2041-47ed-b674-506889ca9d8b
Q20. Contoso, Ltd., has an Office 365 tenant. You configure Office 365 to use the domain contoso.com, and you verify the domain. You deploy and configure Active Directory Federation Services (AD FS) and Active Directory Synchronization Services (AAD Sync) with password synchronization. You connect to Azure Active Directory by using a Remote PowerShell session.
You need to switch from using password-synced passwords to using AD FS on the Office 365 verified domain.
Which Windows PowerShell command should you run?
A. Convert-MsolDomainToFederated –DomainName contoso.com
B. Convert-MsolDomainToStandard –DomainName contoso.com
C. Convert-MsolFederatedUser
D. Set-MsolDomainAuthentication –DomainName contoso.com
Answer: A
Explanation: The Convert-MSOLDomainToFederated cmdlet converts the specified domain from standard authentication to single sign-on (also known as identity federation), including configuring the relying party trust settings between the Active Directory Federation Services (AD FS) server and the Microsoft Online Services. As part of converting a domain from standard authentication to single sign-on, each user must also be converted. This conversion happens automatically the next time a user signs in; no action is required by the administrator.
Incorrect:
Not B: This is the opposite to what is required. The Convert-MsolDomainToStandard cmdlet converts the specified domain from single sign-on (also known as identity federation) to standard authentication. This process also removes the relying party trust settings in the AD FS server and online service. After the conversion, this cmdlet will convert all existing users from single sign-on to standard authentication. Not C: The Convert-MsolFederatedUser cmdlet is used to update a user in a domain that was recently converted from single sign-on (also known as identity federation) to standard authentication type. A new password must be provided for the user. Not D: The Set-MsolDomainAuthentication cmdlet is used to change the domain authentication between standard identity and single-sign on. This cmdlet will only update the settings in Microsoft Online Services; typically the Convert-MsolDomainToStandard or Convert-MsolDomainToFederated should be used instead.
Reference: Convert-MsolDomainToFederated
https://msdn.microsoft.com/en-us/library/azure/dn194092.aspx
- Latest Collaboration Communications Systems Engineer MS-721 Sample Question
- The Rebirth Guide To SC-900 Free Exam
- The Secret of Microsoft 70-410 pdf
- Real AZ-102 Exam Questions 2021
- Top Quality MCSE 70-464 exam
- Rebirth Microsoft Dynamics 365 For Sales Mb-210 Testing Bible
- The Updated Guide To AZ-303 Dump
- A Review Of Approved 70-414 vce
- Microsoft AZ-100 Dumps Questions 2021
- The Update Guide To SC-200 Braindumps