ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam
Go to Exam

Exam MS-102 topic 1 question 249 discussion

Actual exam question from Microsoft's MS-102
Question #: 249
Topic #: 1
[All MS-102 Questions]

Your network contains an Active Directory domain and an Azure AD tenant.

The network uses a firewall that contains a list of allowed outbound domains.

You begin to implement directory synchronization.

You discover that the firewall configuration contains only the following domain names in the list of allowed domains:

• *.microsoft.com
• *.office.com

Directory synchronization fails.

You need to ensure that directory synchronization completes successfully.

What is the best approach to achieve the goal? More than one answer choice may achieve the goal. Select the BEST answer.

  • A. From the firewall, modify the list of allowed outbound domains.
  • B. From Azure AD Connect, modify the Customize synchronization options task.
  • C. From the firewall, create a list of allowed inbound domains.
  • D. Deploy an Azure AD Connect sync server in staging mode.
  • E. From the firewall, allow the IP address range of the Azure data center for outbound communication.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by apokavk at Oct. 31, 2023, 12:59 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
apokavk
Highly Voted 1 year, 6 months ago
Selected Answer: A
https://www.examtopics.com/discussions/microsoft/view/53623-exam-ms-100-topic-3-question-40-discussion/
upvoted 9 times
...
Khattak3143
Highly Voted 8 months, 2 weeks ago
Selected Answer: A
Answer is A A. By modifying the list of allowed outbound domains to include the necessary domains for Azure AD Connect, you ensure that the synchronization can complete successfully. B. This option deals with configuration within Azure AD Connect, not addressing firewall restrictions that are causing the sync to fail. C Inbound rules are not typically the issue for directory synchronization; outbound access is necessary for Azure AD Connect to communicate with Azure AD services. D. Staging mode is used for testing and disaster recovery, not for resolving firewall issues. E. While allowing IP ranges could work, it's more practical and secure to allow specific domain names due to the dynamic nature of cloud service IP addresses.
upvoted 8 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago