You are in browse mode. You must login to use MEMORY

Confused? » Read about learn, practice and the various modes

» To start learning, click login

1 / 25

[Front]

Can increase or decrease resources on demand.

[Back]

scalable

Practice Known Questions

Stay up to date with your due questions

Complete 5 questions to enable practice

Exams

Exam: Test your skills

Test your skills in exam mode

Learn New Questions

Dynamic Modes

SmartIntelligent mix of all modes

CustomUse settings to weight dynamic modes

Manual Mode [BETA]

The course owner has not enabled manual mode

Specific modes

Learn with flashcards

multiple choiceMultiple choice mode

SpeakingAnswer with voice

TypingTyping only mode

ms-900 - Leaderboard

1 user has completed this course

No users have played this course yet, be the first

ms-900 - Details

Levels:

1) Chapter 1 View

Questions:

167 questions

🇬🇧		🇬🇧

Can increase or decrease resources on demand.

Scalable

Scaling up, adding more cpu's or ram to a single server

Vertical Scaling

Scaling out, adding more servers that work together with other servers. Eg. have multiple servers handle incoming requests.

Horizontal Scaling

Automatically add or remove resources based on demand eg. Add more resources at peak operation times. Or remove resoursecs when traffic patterns normalize

Elastic

The ability to do things more efficiently or at a lower-cost per unit when operating at a larger scale.

Economies of scale

CapEx is the spending of money on physical infrastructure up front, and then deducting that expense from your tax bill over time. CapEx is an upfront cost, which has a value that reduces over time.

Capital Expenditure (CapEx)

OpEx is spending money on services or products now and being billed for them now. You can deduct this expense from your tax bill in the same year. There's no upfront cost. You pay for a service or product as you use it.

Operational Expenditure (OpEx):

1. Leasing software & Customized features ○ You need to end subscriptions when they are not being used 2. Scaling charges based on demand 3. Subscription pay-per-use model

3 Opex Costs in Cloud computing

Server, storage, networking, backup & archiving, disaster recovery, datacentre, technical personel costs

List 6 costs in Capex server

Public, Private, Hybrid

List 3 Cloud deployment models

Iaas, paas, saas

3 types of cloud services

The most flexible category of cloud services. It aims to give you complete control over the hardware that runs your application (IT infrastructure servers and virtual machines (VMs), storage, networks, and operating systems). Instead of buying hardware, you rent it. It's an instant computing infrastructure, provisioned and managed over the internet

What is Infrastructure as a service (IaaS)

An environment for building, testing, and deploying software applications. The goal of PaaS is to help you create an application quickly without managing the underlying infrastructure. For example, when deploying a web application using PaaS, you don't have to install an operating system, web server, or even system updates.

What is Platform as a service (PaaS)

SaaS is software that is centrally hosted and managed for the end customer. It is usually based on an architecture where one version of the application is used for all customers, and licensed through a monthly or annual subscription. Office 365, Skype, and Dynamics CRM Online are perfect examples of SaaS software.

What is saas cloud

1. Business case 2. Requirments 3. Migration 4. Testing 5. Deployment 6. Operate (devops) 7. Improve

What are the 7 steps in a cloud migration?

Total cost of ownership and return on investment. We need to use these when communicating value to an orginization. We need to calculate these values for them.

What is TCO and ROI and why are they important

Self-Healing

This ability allows a system to perceive it is not working properly and, without human intervention, make adjustments to restore normal operations?

1. Education - Affordiable solution for education providers 2. Business - For small businesses for up to 300 users 3. Enterprise - Complete solution for larer organizations

What are the 3 major types of M365 and describe them

1. Office 365 2. Windows 10 enterprise 3. Enterprise Moility and Security

What are the 3 core components of an M365 E3 or E5 Subscription?

1. Includes Office 365 ProPlus, 2. The latest Office apps for your PC and Mac (like Word, Excel, PowerPoint, and Outlook), 3. and a full suite of online services for email, file storage and collaboration, meetings, and more.

Office 365 Enterprise (includes 3 high level areas)

1.. Microsoft Intune, A 2. Azure AD Premium, and 3. Azure Rights Management.

What are the 3 major components of Enterprise Mobility + Security (EMS)

Designed to help manage and protect users, devices, apps, and data in a mobile-first, cloud-first world

WHat is EMS designed for?

Cloud service provider

Whats a CSP?

Audio Calls, Phone System,Azure Active Directory Premium 2, Microsoft Defender Advanced Threat Protection, Office 365 Advanced Threat Protection, Azure Advanced Threat Protection, Azure Information Protection P2, Cloud App Security, All advanced compliance features (Advanced eDiscovery, Customer Lockbox, Advanced Data Governance, Service Encryption with Customer Key, Privileged Access Management), PowerBI pro

What 10 components are in an E5 plan that are not in an E3 plan

1. Unlocks creativity 2. Built for Teamwork 3. Integrated for Simplicity 4. Intelligent security

What are the 4 primary value adds of Microosft 365

THis is a cloud service that helps you manage computers, laptops, tablets, and other mobile devices. This includes iOS, Android, and Mac OS X devices.

What is intune?

Microsoft Endpoint Manager is an integrated solution for managing all of your devices. Microsoft brings together Configuration Manager and Intune with simplified licensing.

What is Microsoft Endpoint Configuration Manager?

Configuration Manager Intune Desktop Analytics Autopilot Other features in the Device Management Admin Console

What 5 components does Microsoft endpoint manager make up?

It provides: 1. intelligent security, 2. simplified updates, 3. flexible management, and 4. enhanced productivity tools.

How does Windows 10 meets the needs of large and midsize organizations? (4 items)

This is next generation malware and hacking defense to help protect against threats, including zero-day attacks. It provides a hardened platform that can help prevent encounters, isolate threats, and control the execution of malicious apps and content.

What is Windows 10 threat protection? What does it protect against?

WHat protects user identities against pass-the-hash and pass-the-ticket attacks, helping you move to a world without passwords.

What is windows 10 Identity protection and what does it protect against?

This is a biometric authentication tool that strengthens authentication and helps guard against potential spoofing.

What is windows hello?

This helps protect sensitive information against leaks. When you combine Windows 10 with Azure Information Protection and Office 365, you get a sophisticated solution that meets the highest requirements for data loss prevention with minimal input.

What is Windows 10 Information protection, what does it protect?

This includes the Microsoft productivity suite of applications, such as Word, Excel, PowerPoint, and Outlook, for both Windows and Mac devices. It is not a web-based version of Office - instead it's a full version of Office that your users install and run on their devices.

What is Office 365 ProPlus?

You can install this from a network share or directly from the internet.

How do you install Office 365 pro plus?

Is updated either monthly or semi-annually with new features, security updates, and other quality updates from Microsoft. You can choose which frequency works best for your organization by using update channels.

How often is Office 365 ProPlus updated?

1. Improvements and updates provided more frequently VS. Improvements and updates provided less frequently 2. Can be installed on multiple devices with a single license VS. Can only be installed on one device with a single license 3. Users can install their own software from a self-service portal VS. No self-service portal provided 4. Activated and remains activated by regular internet connectivity VS. Activated by volume activation methods and doesn’t require internet connectivity to remain activated

What are 4 differences between O365 Pro plus and Office Professional Plus 2019?

Color filters: Boost contrast or get rid of color entirely—whether you have color blindness, light sensitivity, or a visual preference, with color filters you can customize your screen's color palette. Tell Me: Quickly access commands in several Office 365 applications without navigating the command ribbon. You can use Tell Me to assist with formatting, discover the difficult-to-find capabilities and even get scoped help in Office 365 using everyday language. Microsoft Soundscape: Use innovative audio-based technology to enable people with blindness or low vision to build a richer awareness of their surroundings, thus becoming more confident navigating new environments.

What 3 Microsoft 365 features assist with vision?

This is a non-regulatory agency based in the United States. Although it is based in the united states, it is not enforced by any one jurisdiction. THis is a labortory that is party of the united states department of commerce. It defines, but does not enforce standards

What is NIST

This is a non-regulatory agency based in Switzerland. it is a collection of standards from over 150 countries. ISO 8601 is the internationally agreed standard for representing dates

What is ISO

The general data protection regulation is a regulation enforced and controlled by the european union. It is a legal framework that defines personal data collection and processing guidlines for users wo live in the European Union. It mandates that any website that attracts EU visitors must provide data disclosures.

What is GDPR?

Health insurance portability and accountability act is a united states law that provides protection and privacy of health-related informatino. This law is enforced by the united states.

What is hipaa?

The Service Organization Controls.

What is SOC?

THis is the Federal Risk and authorization Management program.

What is the FedRAMP?

This dictates how United States federal agencies protect information.

What is the Federal Information Security Modernization Act (FISMA)?

This covers the use or disclosure of student education records, including student information sent in email or email attachments.

What is The Family Educational Rights and Privacy Act (FERPA)?

This addresses how private sector organizations collect, use, and disclose personal information in regard to commercial business.

What is The The Personal Information Protection and Electronic Documents Act (PIPEDA)?

This protects nonpublic personal information.

What is The Gramm–Leach–Bliley Act (GLBA)?

As soon as possible — during the development cycle, through a process called flighting — so that organizations can see exactly what Microsoft is developing and start their testing as soon as possible.

How often are updates for the WIndows insider service?

->Feature updates that add new functionality twice per year, -> quality updates that provide security and reliability fixes at least once a month.

With Windows 10, what are the two release types?

1. Semi-Annual Channel receives feature updates twice per year. 2. The Long Term Servicing Channel (LTSC), which is designed to be used only for specialized devices (which typically don't run Office) such as those that control medical equipment or ATM machines, receives new feature releases every two to three years. 3. The windows insider program

What are the Three release channels/Servicing channels for Windows 10?

This provides limited control over feature updates, with IT pros manually configuring the device to be in the Semi-Annual Channel. Organizations can target which devices defer updates by selecting the Defer upgrades check box in Start\Settings\Update & Security\Advanced Options on a Windows 10 device. Cannot approve updates & no additional features

Windows Update (stand-alone)

This servicing tool includes control over update deferment and provides centralized management using Group Policy. Cannot approve updates. NOTE: Office pro plus are not available through windows update.

Windows Update for Business

This provides extensive control over Windows 10 updates and is natively available in the Windows Server operating system. Ability to defer updates, approval layer for updates and choose to deploy updates to specific computers or groups of computers whenever ready. special feature:Upstream/downstream server scalability

Windows Server Update Services (WSUS)

This provides the greatest control over servicing Windows as a service. IT pros can defer updates, approve them, Special: have multiple options for targeting deployments and managing bandwidth usage and deployment times.

Microsoft Endpoint Configuration Manager

This is a group of tools that allow you to manage your companies infrastructure. It allows you to manage PC's and Mobile devices and install office.

SCCM (system centre 2016)

1) Self install 2) Office deployment tool 3) Configuration manager

3 ways to install Microsoft 365 Apps for enterprise (office pro plus)

1) Semi-Annual Channel: Provides users with new features of Office every six months, in January and July. 2) Semi-Annual Channel (Targeted): Provides users the opportunity to test the next Semi-Annual Channel. Releases every six months in March and September, four months ahead of the Semi-Annual Channel. 3) Monthly Channel: Provides users with the newest features of Office as soon as they're available.

3 channel updates for M365 Apps for enterprise

THis helps you understand how your organization invests its time by giving you insight into how groups collaborate across the organization. It quantifies Office 365 collaboration to give business decision-makers a powerful tool for evidence-based cultural transformation.

What is workplace analytics?

This gives employees insight into two of the key factors in personal productivity—how they spend their time and who they spend it with. An organization’s productivity is defined by the thousands of decisions employees make each day. But without supporting data, it can be challenging for people to make smart decisions about where to spend their time.

What are MyAnalytics and the 2 things it gives insight to?

Use this to security feature to secure identities to reach zero trust. This is the bedrock upon which a secure digital estate is built.

Identity and access management

This security feature helps to stop damaging attacks with integrated and automated security.

Threat protection

Use this security feature to Locate and classify information anywhere it lives

Information Protection

Use this security feature to strenthen your security posture with insights and guidance

Security Management

In Windows 10 for business, this feature replaces passwords with strong two-factor authentication on PCs and mobile devices - a new type of user credential that's tied to a device and uses a biometric or PIN. This lets users authenticate to an Active Directory or Azure Active Directory account.

What is Windows Hello

This application uses 2 security features: -Two-factor verification. The standard verification method, where one of the factors is your password. After you sign in to a device, app, or site using your username and password, you can use Microsoft Authenticator to approve a notification or enter a provided verification code. -Phone sign-in. A version of two-factor verification that lets you sign in without requiring a password, using your username and your mobile device with your fingerprint, face, or PIN.

WHat are 2 ways to use the Microsoft Authenticator application?.

This helps you identify attempts to compromise accounts, possibly by a hacker or other malicious person. It detects unusual account behavior, it can block account access, or perhaps require additional authentication options. It help to identify unusual account behavior.

What is Azure AD Identity Protection?

These are Analytics for your cloud apps and services, helping security teams better understand the protections for critical data across cloud apps.

What is Microsoft Cloud app security?

This is A cloud-based security solution that identifies, detects, and helps you investigate advanced threats, compromised identities, and malicious insider actions directed at your organization.

What is Azure Advanced Threat Protection (ATP)?

Name of windows service that covers: Identities, endpoints, user data, Cloud apps, Infrastructure

Microsoft Threat Protection covers these five areas

These 3 reports are in which security app? Risky users Risky sign-ins Risk detections

3 key Reports available in Azure Identity protections

Atypical travel Sign in from an atypical location based on the user's recent sign-ins. Anonymous IP address Sign in from an anonymous IP address (for example: Tor browser, anonymizer VPNs). Unfamiliar sign-in properties Sign in with properties we've not seen recently for the given user. Malware linked IP address Sign in from a malware linked IP address Leaked Credentials This risk detection indicates that the user's valid credentials have been leaked Azure AD threat intelligence Microsoft's internal and external threat intelligence sources have identified a known attack pattern

What different risk dection types are in Azure Identity protection?

THis protection requires users be a Security Reader, Security Operator, Security Administrator, Global Reader, or Global Administrator in order to access.

What security roles allow for Azure identity protection?

These are if-then statements, if a user wants to access a resource, then they must complete an action. Example: A payroll manager wants to access the payroll application and is required to perform multi-factor authentication to access it. THis is the tool to bring signals together, to make decisions, and enforce organizational policies. It is at the heart of the new identity driven control plane.

What is conditional access in AAD

AAD Identity protectinon monitors Sign in from an atypical location based on the user's recent sign-ins. What is it called?

What is and which security tool monitors this risk protection type: Atypical travel?

AAD Identity protectinon monitors this? Sign in from an anonymous IP address (for example: Tor browser, anonymizer VPNs). What is it called?

What is and which security tool monitors this risk protection type: Anonymous IP address?

AAD Identity protectinon monitors this? Sign in with properties What is and which security tool monitors this risk protection type: we've not seen recently for the given user.

What is and which security tool monitors this risk protection type: Unfamiliar sign-in properties

AAD Identity protectinon monitors this? Malware linked IP address Sign in from a malware linked IP address

What is and which security tool monitors this risk protection type: Malware linked IP address

AAD Identity protectinon monitors this? This risk detection indicates that the user's valid credentials have been leaked

What is and which security tool monitors this risk protection type: Leaked Credentials

Microsoft's internal and external threat intelligence sources have identified a known attack pattern

What is and which security tool monitors this risk protection type: Azure AD threat intelligence

THis tool monitors and analyzes user activities and information across your network, such as permissions and group membership, creating a behavioral baseline for each user. It then identifies anomalies with adaptive built-in intelligence, giving you insights into suspicious activities and events, revealing the advanced threats, compromised users, and insider threats facing your organization. Its proprietary sensors monitor organizational domain controllers, providing a comprehensive view for all user activities from every device.

Azure ATP Monitor users, entity behavior, and activities with learning-based analytics

This tool Protects user identities and credentials stored in Active Directory

Azure ATP

This tool Identify and investigate suspicious user activities and advanced attacks throughout the kill chain

Azure ATP

Which tool Provides clear incident information on a simple timeline for fast triage

Azure ATP

This security tool gives you visibility into your cloud apps and services, provides analytics to identify and combat cyberthreats, and enables you to control how your data travels. The cloud app security framework helps you: Discover and control the use of Shadow IT Protect your sensitive information anywhere in the cloud Protect against cyberthreats and anomalies Assess the compliance of your cloud apps

What is Microsoft Cloud App Security?

This tool is a cloud-based email filtering service that helps protect against spam and malware and includes features to safeguard against messaging-policy violations. It can simplify the management of your messaging environment and alleviate many of the burdens that come with maintaining on-premises hardware and software.

What is Microsoft Exchange Online Protection (EOP)

This helps to identify threats before they land in a user’s mailbox. This feature, included in Microsoft 365 E5 subscriptions, provides protection by scanning email and URLs, identifying malicious files, and detecting when someone tries to impersonate one of your users to access your organization's data.

What is Office 365 Advanced Threat Protection

THis is a collection of insights and information available in the Microsoft 365 security center. It monitors signals and gathers data from multiple sources, such as user activity, authentication, email, compromised PCs, and security incidents. You can use this information to understand and respond to threats against users and intellectual property.

What is Office 365 Threat Intelligence

This helps you prevent, detect, investigate, and respond to advanced threats. It uses technologies built into Windows 10 that connect to Microsoft's cloud services. Endpoint behavior sensors collect data and send it to cloud security analytics, Microsoft optics that use big data and machine learning to turn behavioral data into insights, detections, and recommended responses. IT also uses threat intelligence collected from Microsoft hunters, security teams, and partners to identify attacker tools and generate alerts when it detects them in data from the endpoint sensors.

What is Windows Defender Advanced Threat Protection (ATP)?

BitLocker and credential guard help protect the integrity of the boot process and user credentials. Windows Hello uses biometric authentication (fingerprints and facial recognition) to guard against potential spoofing. Windows Information Protection (WIP) helps protect enterprise apps and data against accidental data leaks on both enterprise-owned and personal devices.

What are 3 built-in security protections to help safeguard against viruses, phishing, and malware in windows 10?

This matches, false positives and overrides, and links to create or edit policies

What is Data loss prevention?

Information about sent and received email messages, recent alerts, top senders and recipients, email forwarding reports, and more

What is information protection Mail flow.?

Information about how labels are applied, labels classified as records, label trends, and more

What is information protection Data governance?

Tools and guidance to facilitate ease in discovering, governing, protecting, and monitoring the personal data in your organization.

What is information protection Data privacy?

Information about Microsoft 365 activities, users, files or folders, and more

What do you see in the information protection Audit log.?

FedRAMP reports, governance, risk and compliance reports, ISO information security management reports, and Service Organization Controls audit and assessment reports

What are in the information protection Compliance reports?

Where can you find Real-time reports to help you keep on top of issues with users, devices, apps, and infrastructure?

Microsoft security centre

Where you can find A Secure Score centralized dashboard where you can monitor and improve the security for your Microsoft 365 identities, data, apps, devices, and infrastructure.

Microsoft security centre

Where you can find Insights and recommendations to help you improve your security posture and take advantage of Microsoft 365 security features.

Microsoft security centre

Where you configure device and data policies to help you better manage your organization.

Microsoft security centre