ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 4 question 93 discussion

Actual exam question from Microsoft's MS-500
Question #: 93
Topic #: 4
[All MS-500 Questions]

HOTSPOT -
You have a Microsoft 365 subscription that contains 100 users.
Microsoft Secure Score for the subscription is shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: 27 points -

Security defaults -
Microsoft Secure Score has updated improvement actions to support security defaults in Azure Active Directory, which make it easier to help protect your organization with pre-configured security settings for common attacks.
If you turn on security defaults, you'll be awarded full points for the following improvement actions:
Ensure all users can complete multi-factor authentication for secure access (9 points)
Require MFA for administrative roles (10 points)
Enable policy to block legacy authentication (7 points)

Box 2: 3 points -
Some improvement actions only give points when fully completed. Some give partial points if they're completed for some devices or users.
In this case: 30/100 * 10 = 3 points
Note: How improvement actions are scored
Each improvement action is worth 10 points or less, and most are scored in a binary fashion. If you implement the improvement action, like create a new policy or turn on a specific setting, you get 100% of the points. For other improvement actions, points are given as a percentage of the total configuration.
For example, an improvement action states you get 10 points by protecting all your users with multi-factor authentication. You only have 50 of 100 total users protected, so you'd get a partial score of 5 points (50 protected / 100 total * 10 max pts = 5 pts).
Reference:
https://docs.microsoft.com/en-us/microsoft-365/security/defender/microsoft-secure-score
by yoton at Sept. 27, 2022, 9:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
yoton
Highly Voted 2 years, 7 months ago
In the security defaults section of the provided article you can see that the provided answer is correct, the points awarded have just changed. The important thing to remember is that the security defaults: Ensure all users can complete MFA for secure access, Require MFA for administrative roles, and Enable policy to block legacy authentication. Adding all of the points for these options shown in Exam Topics, adds up to 27 points. Referring to the "How Improvement actions are scored" you will find that the given answer is also correct. Each improvement action is worth 10 points or less, and most are scored in a binary fashion. If you implement the improvement action, like create a new policy or turn on a specific setting, you get 100% of the points. For other improvement actions, points are given as a percentage of the total configuration. For example, an improvement action states you get 10 points by protecting all your users with multi-factor authentication. You only have 30 of 100 total users protected, so you'd get a partial score of 3 points (30 protected / 100 total * 10 max pts = 3pts).
upvoted 10 times
yoton
2 years, 3 months ago
It looks like this is the WRONG EXPLANATION for the second part of the answer, it just so happens that the math adds up the same. The question satisfies the second improvement action, and since points are given as a percentage of the total configuration, the answer is still 3 points.
upvoted 1 times
...
...
mhh
Most Recent 2 years, 4 months ago
answer 1: 27 points is correct. For answer 2 i think 0 points, because you are activating mfa for 30 users, but they are looking for "require mfa for administrative roles". how do you know, the 30 users have an administrative role?
upvoted 3 times
tibodenbeer
2 years, 4 months ago
I agree, I think for answer 2, the keyword is: ADMINISTRATIVE ROLES - normal users don't have any administrative roles.
upvoted 1 times
yaza85
2 years, 3 months ago
M The second point of the exhibit show asks for user mfa
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago