ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-100 All Questions

View all questions & answers for the MS-100 exam
Go to Exam

Exam MS-100 topic 3 question 47 discussion

Actual exam question from Microsoft's MS-100
Question #: 47
Topic #: 3
[All MS-100 Questions]

HOTSPOT -
Your network contains an Active Directory domain named fabrikam.com. The domain contains the objects shown in the following table.

The groups have the members shown in the following table.

You are configuring synchronization between fabrikam.com and a Microsoft Azure Active Directory (Azure AD) tenant.
You configure the Domain/OU Filtering settings in Azure AD Connect as shown in the Domain/OU Filtering exhibit.

You configure the Filtering settings in Azure AD Connect as shown in the Filtering exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: No -
The filtering is configured to synchronize Group2 and OU2 only. The effect of this is that only members of Group2 who are in OU2 will be synchronized.
User2 is in Group2. However, the User2 account object is in OU1 so User2 will not synchronize to Azure AD.

Box 2: Yes -
Group2 is in OU2 so Group2 will synchronize to Azure AD. However, only members of the group who are in OU2 will synchronize. Members of Group2 who are in OU1 will not synchronize.

Box 3: Yes -
User3 is in Group2 and in OU2. Therefore, User3 will synchronize to Azure AD.
References:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-configure-filtering#group-based-filtering
by Wearsy at May 9, 2021, 9:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Wearsy
Highly Voted 3 years, 10 months ago
OU filtering is evaluated before group based filtering, therefore user2 not being synced is correct: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-custom#sync-filtering-based-on-groups
upvoted 11 times
RenegadeOrange
2 years, 7 months ago
User 2 is not synced because it's not in an OU that is synced. User 3 is synced because it is in both a synced OU and Group. Tested this and confirmed if the user is not in a synced OU they are not synced even if in a group.
upvoted 2 times
...
...
Nilz76
Highly Voted 2 years, 11 months ago
This question was in my exam on 06/April/2022. I passed.
upvoted 6 times
...
Amir1909
Most Recent 1 year, 1 month ago
Correct
upvoted 1 times
...
Cheekypoo
2 years, 7 months ago
Was in my exam today 05/08/22.
upvoted 2 times
...
fofo1960
3 years, 2 months ago
The relation is AND, so the member should be in the OU AND in the filter apply to the user.
upvoted 3 times
...
stoneface
3 years, 2 months ago
i thought that security groups are not syncronized...
upvoted 1 times
PDR
3 years, 2 months ago
security groups are synced from AD to AAD , but group writeback does not support security or distribution groups, only 365 groups from AAD to AD, which is where your confusion might have come from
upvoted 14 times
Jeff8989
3 years, 2 months ago
Thanks!
upvoted 1 times
...
Pietras123
2 years, 4 months ago
Actually it is no longer valid. Now also security and distribution synchronize
upvoted 3 times
...
...
...
JakeH
3 years, 3 months ago
In exam today
upvoted 1 times
...
gonick
3 years, 5 months ago
In exam last week
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago