MD-102 Endpoint Administrator Questions and Answers

Questions 4

You are evaluating which devices are compliant.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 5

What should you use to meet the technical requirements for Azure DevOps?

Options:

An app protection policy

Windows Information Protection (WIP)

Conditional access

A device configuration profile

Buy Now

Questions 6

You need to recommend a solution to meet the device management requirements.

What should you include in the recommendation? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 7

You need to resolve the performance issues in the Los Angeles office.

How should you configure the update settings? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 8

You need to meet the technical requirements for the LEG department computers.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Options:

Buy Now

Questions 9

What should you configure to meet the technical requirements for the Azure AD-joined computers?

Options:

Windows Hello for Business from the Microsoft Intune blade in the Azure portal.

The Accounts options in an endpoint protection profile.

The Password Policy settings in a Group Policy object (GPO).

A password policy from the Microsoft Office 365 portal.

Buy Now

Questions 10

Your on-premises network contains an Active Directory Domain Services (AD DS) domain.

You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains five virtual machines and is NOT connected to the on-premises network.

You have a Microsoft 365 subscription that uses Microsoft Intune Suite.

You purchase Windows 365 Enterprise licenses.

You need to deploy Cloud PC. The solution must meet the following requirements:

• All users must be able to access their Cloud PC at any time without any restrictions.

• The users must be able to connect to the virtual machines on VNet1.

How should you configure the provisioning policy for Windows 365? To answer, drag the appropriate options to the correct settings. Each option may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 11

You need to meet the technical requirements for the IT department.

What should you do first?

Options:

From the Azure Active Directory blade in the Azure portal, enable Seamless single sign-on.

From the Configuration Manager console, add an Intune subscription.

From the Azure Active Directory blade in the Azure portal, configure the Mobility (MDM and MAM) settings.

From the Microsoft Intune blade in the Azure portal, configure the Windows enrollment settings.

Buy Now

Questions 12

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 13

You implement the planned changes for Connection1 and Connection2

How many VPN connections will there be for User1 when the user signs in to Device 1 and Devke2? To answer select the appropriate options in the answer area.

NOTE; Each correct selection is worth one point.

Options:

Buy Now

Questions 14

You need to ensure that computer objects can be created as part of the Windows Autopilot deployment. The solution must meet the technical requirements.

To what should you grant the right to create the computer objects?

Options:

Server2

Server1

GroupA

DC1

Buy Now

Questions 15

You need to meet the requirements for the MKG department users.

What should you do?

Options:

Assign the MKG department users the Purchaser role in Microsoft Store for Business

Download the APPX file for App1 from Microsoft Store for Business

Add App1 to the private store

Assign the MKG department users the Basic Purchaser role in Microsoft Store for Business

Acquire App1 from Microsoft Store for Business

Buy Now

Questions 16

You need to prepare for the deployment of the Phoenix office computers.

What should you do first?

Options:

Generalize the computers and configure the Mobility (MDM and MAM) settings from the Azure Active Directory admin center.

Extract the hardware ID information of each computer to a CSV file and upload the file from the Microsoft Intune blade in the Azure portal.

Extract the hardware ID information of each computer to an XML file and upload the file from the Devices settings in Microsoft Store for Business.

Extract the serial number information of each computer to a CSV file and upload the file from the Microsoft Intune blade in the Azure portal.

Buy Now

Questions 17

You have a Microsoft 365 subscription that contains the devices shown in the following table.

You need to ensure that only devices running trusted firmware or operating system builds can access network resources.

Which compliance policy setting should you configure for each device? To answer, drag the appropriate settings to the correct devices. Each setting may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Answer:

Explanation:

Box 1:

Device Compliance settings for Windows 10/11 in Intune

There are the different compliance settings you can configure on Windows devices in Intune. As part of your mobile device management (MDM) solution, use these settings to require BitLocker, set a minimum and maximum operating system, set a risk level using Microsoft Defender for Endpoint, and more.

Note: Windows Health Attestation Service evaluation rules

Require BitLocker:

Windows BitLocker Drive Encryption encrypts all data stored on the Windows operating system volume. BitLocker uses the Trusted Platform Module (TPM) to help protect the Windows operating system and user data. It also helps confirm that a computer isn ' t tampered with, even if its left unattended, lost, or stolen. If the computer is equipped with a compatible TPM, BitLocker uses the TPM to lock the encryption keys that protect the data. As a result, the keys can ' t be accessed until the TPM verifies the state of the computer.

Not configured (default) - This setting isn ' t evaluated for compliance or non-compliance.

Require - The device can protect data that ' s stored on the drive from unauthorized access when the system is off, or hibernates.

Box 2: Prevent jailbroken devices from having corporate access

Device Compliance settings for iOS/iPadOS in Intune

There are different compliance settings you can configure on iOS/iPadOS devices in Intune. As part of your mobile device management (MDM) solution, use these settings to require an email, mark rooted (jailbroken) devices as not compliant, set an allowed threat level, set passwords to expire, and more.

Device Health

Jailbroken devices

Supported for iOS 8.0 and later

Not configured (default) - This setting isn ' t evaluated for compliance or non-compliance.

Block - Mark rooted (jailbroken) devices as not compliant.

Box 3: Prevent rooted devices from having corporate access.

Device compliance settings for Android Enterprise in Intune

There are different compliance settings you can configure on Android Enterprise devices in Intune. As part of your mobile device management (MDM) solution, use these settings to mark rooted devices as not compliant, set an allowed threat level, enable Google Play Protect, and more.

Device Health - for Personally-Owned Work Profile

Rooted devices

Not configured (default) - This setting isn ' t evaluated for compliance or non-compliance.

Block - Mark rooted devices as not compliant.

[Reference: https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-windows, https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-android-for-work, https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-ios, , , , ]

Questions 18

You use Microsoft Endpoint Manager to manage Windows 10 devices.

You are designing a reporting solution that will provide reports on the following:

Compliance policy trends

Trends in device and user enrolment

App and operating system version breakdowns of mobile devices

You need to recommend a data source and a data visualization tool for the design.

What should you recommend? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 19

Your network contains an Active Directory Domain Services (AD DS) domain. The domain contains 100 client computers that run Windows 10.

Currently, your company does NOT have a deployment infrastructure.

The company purchases Windows 11 licenses through a volume licensing agreement.

You need to recommend how to upgrade the computers to Windows 11. The solution must minimize licensing costs.

What should you include in the recommendation?

Options:

Microsoft Deployment Toolkit (MDT)

Configuration Manager

subscription activation

Windows Autopilot

Buy Now

Questions 20

You need to meet the technical requirements for Windows AutoPilot.

Which two settings should you configure from the Azure Active Directory blade? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 21

You create a Windows Autopilot deployment profile.

You need to configure the profile settings to meet the following requirements:

Automatically enroll new devices and provision system apps without requiring end-user authentication.

Include the hardware serial number in the computer name.

Which two settings should you configure? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 22

Which devices are registered by using the Windows Autopilot deployment service?

Options:

Device1 only

Device3 only

Device1 and Device3 only

Device1, Device2, and Device3

Buy Now

Questions 23

You have a Microsoft 365 subscription.

You create a retention label named Retention1 as shown in the following exhibit.

You apply Retention1 to all the Microsoft OneDrive content.

On January 1, 2020, a user stores a file named File1 in OneDrive.

On January 10, 2020, the user modifies File1.

On February 1, 2020, the user deletes File1.

When will File1 be removed permanently and unrecoverable from OneDrive?

Options:

February 1, 2020

July 1, 2020

July 10, 2020

August 1, 2020

Buy Now

Questions 24

You need to meet the technical requirements for the iOS devices.

Which object should you create in Intune?

Options:

A compliance policy

An app protection policy

A Deployment profile

A device configuration profile

Buy Now

Questions 25

You need to prepare for the deployment of the Phoenix office computers.

What should you do first?

Options:

Extract the hardware ID information of each computer to a CSV file and upload the file from the Devices settings in Microsoft Store for Business.

Generalize the computers and configure the Mobility (MDM and MAM) settings from the Azure ActiveDirectory blade in the Azure portal.

Generalize the computers and configure the Device settings from the Azure Active Directory blade in the Azure portal.

Extract the hardware ID information of each computer to an XLSX file and upload the file from the Devices settings in Microsoft Store for Business.

Buy Now

Questions 26

What is the maximum number of devices that User1 and User2 can enroll in Intune? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 27

You need a new conditional access policy that has an assignment for Office 365 Exchange Online.

You need to configure the policy to meet the technical requirements for Group4.

Which two settings should you configure in the policy? To answer, select the appropriate settings in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 28

You need to meet the technical requirements for the new HR department computers.

How should you configure the provisioning package? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 29

To which devices do Policy1 and Policy2 apply? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 30

You implement Boundary1 based on the planned changes.

Which devices have a network boundary of 192.168.1.0/24 applied?

Options:

Device2 only

Device3 only

Device 1. Device2. and Device5 only

Device 1, Device2, Device3, and Device4 only

Buy Now

Questions 31

User1 and User2 plan to use Sync your settings.

On which devices can the users use Sync your settings? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 32

Which user can enroll Device6 in Intune?

Options:

User4 and User2 only

User4 and User 1 only

User1, User2, User3, and User4

User4. User Land User2 only

Buy Now

Questions 33

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 34

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Options:

Buy Now

Questions 35

Which users can purchase and assign App1?

Options:

User3 only

User1 and User3 only

User1, User2, User3, and User4

User1, User3, and User4 only

User3 and User4 only

Buy Now

Questions 36

What should you upgrade before you can configure the environment to support co-management?

Options:

the domain functional level

Configuration Manager

the domain controllers

Windows Server Update Services (WSUS)

Buy Now

Exam Code: MD-102

Exam Name: Endpoint Administrator

Last Update: May 16, 2026

Questions: 363

MD-102 PDF

$28.5 ~~$94.99~~

Add to Cart

MD-102 Testing Engine

$33 ~~$109.99~~

Add to Cart

MD-102 PDF + Testing Engine

$43.5 ~~$144.99~~

Add to Cart

Pre-Summer Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: clap70

clapgeek logo

MD-102 Endpoint Administrator Questions and Answers

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation: