• Home
  • Articles
  • [2024] MD-100 All-in-One Exam Guide Practice To your MD-100 Exam! [Q47-Q70]

[2024] MD-100 All-in-One Exam Guide Practice To your MD-100 Exam! [Q47-Q70]

Share

[2024] MD-100 All-in-One Exam Guide Practice To your MD-100 Exam!

Preparations of MD-100 Exam 2024 Windows 10 Unlimited 379 Questions


Microsoft MD-100 certification exam covers a wide range of topics related to Windows 10 management, including deploying Windows 10, managing devices and data, configuring connectivity, and maintaining Windows 10. MD-100 exam also tests candidates' knowledge of modern management techniques such as cloud-based management and mobile device management.


To prepare for the Microsoft MD-100 Certification Exam, candidates can take advantage of various resources provided by Microsoft, such as official training courses, study guides, and practice exams. Candidates can also join online communities and forums to discuss exam topics with other IT professionals and gain valuable insights into the exam format and content.

 

NEW QUESTION # 47
Your company has an isolated network used for testing. The network contains 20 computers that run Windows 10. The computers are in a workgroup. During testing, the computers must remain in the workgroup.
You discover that none of the computers are activated.
You need to recommend a solution to activate the computers without connecting the network to the Internet.
What should you include in the recommendation?

  • A. Volume Activation Management Tool (VAMT)
  • B. Active Directory-based activation
  • C. the Get-WindowsDeveloperLicense cmdlet
  • D. Key Management Service (KMS)

Answer: D

Explanation:
https://docs.microsoft.com/en-us/windows/deployment/volume-activation/introduction-vamt


NEW QUESTION # 48
You have a computer named Computer5 that runs Windows 10 that is used to share documents in a workgroup.
You create three users named User-a, User-b, User-c. The users plan to access Computer5 from the network only.
You have a folder named Data. The Advanced Security Settings for the Data folder are shown in the Security exhibit. (Click the Security Exhibit tab).

You share the Data folder. The permission for User-a are shown in the User-a exhibit (Click the User-a tab.)

The permissions for user-b are shown in the User-b exhibit. (Click the User-b tab.)

The permissions for user-c are shown in the User-c exhibit. (Click the tab.)

For each of the following statements, select Yes if the statements is true. Otherwise, select No.
NOTE: Reach correct selection is worth one point.

Answer:

Explanation:

Explanation
No No Yes


NEW QUESTION # 49
You are troubleshooting Windows 10 updates that fail to install on a computer that runs Windows 10.
You delete the contents of the SoftwareDistribution folder.
You need to delete the signatures of the Windows Update packages.
Which folder should you delete?

  • A. %systemroot%\WinSxS
  • B. %systemdrive%\recovery
  • C. %systemdrive%\System Volume Information
  • D. %systemroot%\system32\catroot2

Answer: D

Explanation:
Explanation
References:
https://tipsmake.com/how-to-delete-pending-updates-on-windows-10


NEW QUESTION # 50
You are a network administrator at your company.
A user attempts to start a computer and receives the following error message: "Bootmgr is missing." You need to resolve the issue.
You start the computer in the recovery mode.
Which command should you run next? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:
References:
https://neosmart.net/wiki/bootmgr-is-missing/


NEW QUESTION # 51
You have several computers that run Windows 10. The computers are in a workgroup and have BitLocker Drive Encryption (BitLocker) enabled.
You join the computers to Microsoft Azure Active Directory (Azure AD).
You need to ensure that you can recover the BitLocker recovery key for the computers from Azure AD.
What should you do first?

  • A. Suspend BitLocker.
  • B. Add a BitLocker key protector.
  • C. Disable BitLocker.
  • D. Disable the TMP chip.

Answer: B

Explanation:
Explanation
References:
https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/prepare-your-organization-f


NEW QUESTION # 52
You have a Microsoft Azure Active Directory (Azure AD) tenant.
Some users sign in to their computer by using Windows Hello for Business.
A user named User1 purchases a new computer and joins the computer to Azure AD.
User1 is not able to use Windows Hello for Business on his computer. User1 sign-in options are shown on the exhibit.

You open Device Manager and confirm that all the hardware works correctly.
You need to ensure that User1 can use Windows Hello for Business facial recognition to sign in to the computer.
What should you do first?

  • A. Enable UEFI Secure Boot.
  • B. Purchase an infrared (IR) camera.
  • C. Install a virtual TPM driver.
  • D. Upgrade the computer to Windows 10 Enterprise.

Answer: B

Explanation:
Explanation
Windows Hello facial recognition requires an infrared (IR) camera. If your device does not have an infrared camera (or any other biometric device such as a fingerprint scanner), you will see the message shown in the exhibit. The question states that Device Manager shows all hardware is working properly. Therefore, it is not the case that the computer has an IR camera but it isn't working properly. The problem must be that the computer does not have an IR camera.
Incorrect Answers:
B: Windows 10 Enterprise is not required for Windows Hello. Windows Hello also works on Windows 10 Pro.
C: UEFI Secure Boot is not required for Windows Hello.
D: A virtual TPM driver is not required for Windows Hello.
References:
https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-planning-guide


NEW QUESTION # 53
You deploy 100 computers that run Windows 10. Each computer has a cellular connection and a Wi-Fi connection.
You need to prevent the computers from using the cellular connection unless a user manually connects to the cellular network.
What should you do?

  • A. Select the Let Windows manage this connection check box for the Wi-Fi connection
  • B. Set the Use cellular instead of Wi-Fi setting for the cellular connection to Never
  • C. Clear the Let Windows manage this connection check box for the cellular connection
  • D. Run the netsh wlan set hostednetwork mode=disallow command

Answer: C

Explanation:
Reference:
https://support.microsoft.com/en-za/help/10739/windows-10-cellular-settings


NEW QUESTION # 54
Your network contains an Active Directory domain. The domain contains the users shown in the following table.

The domain contains a computer named Computer1 that runs Windows 10. Computer1 contains a folder named Folder1 that has the following permissions:
* User2: Deny Write
* Group1: Allow Read
* Group2: Allow Modify
Folder1 is shared as Share1$. Share1$ has the following configurations:
* Everyone: Allow Full control
* Access-based enumeration: Enabled
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:
References:
https://www.varonis.com/blog/ntfs-permissions-vs-share/
http://www.ntfs.com/ntfs-permissions-file-advanced.htm
https://docs.microsoft.com/en-us/windows-server/storage/dfs-namespaces/enable-access-based-enumeration-on-a-namespace


NEW QUESTION # 55
You have a computer named Computer1 that runs Windows 10. Computer1 is in a workgroup.
Computer1 contains the local users shown in the following table.

Computer1 contains the folders shown in the following table.

The Users group has Full control permissions to Folder1, Folder2, and Folder3.
User1 encrypts two files named File1.docx and File2.docx in Folder1 by using EFS.
Which users can move each file? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

EFS works by encrypting a file with a bulk symmetric key. The symmetric key that is used to encrypt the file is then encrypted with a public key that is associated with the user who encrypted the file. Because the encryption & decryption operations are performed at a layer below NTFS, it is transparent to the user and all their applications.
Box 1: User1, User2, and Administrator
Box 2: User1, User2, and Administrator
All three are members of the Users group that has Full control permissions to Folder1, Folder2, and Folder3.


NEW QUESTION # 56
Your network contains an Active Directory domain named adatum.com. The domain contains the users shown in the following table.

The domain contains a computer named Computer1 that runs Windows10. Computer1 has a file named File1.txt that has the permissions shown in the exhibit. (Click the Exhibit tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 57
You enable Windows PowerShell remoting on a computer that runs Windows 10.
You need to limit which PowerShell cmdlets can be used in a remote session.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Answer:

Explanation:

Explanation
1. New
2. Regster
3. Enter
Read more:
https://devblogs.microsoft.com/scripting/build-constrained-powershell-endpoint-using-configuration-file/


NEW QUESTION # 58
You need to recommend a solution to monitor update deployments.
What should you include in the recommendation?

  • A. the Azure Security Center
  • B. the Update Compliance solution in Azure Log Analytics
  • C. Windows Server Update (WSUS)
  • D. the Update Management solution in Azure Automation

Answer: B

Explanation:
References:
https://docs.microsoft.com/en-us/windows/deployment/update/update-compliance-monitor
Topic 2, Contoso, Ltd
Overview
Contoso, Ltd. is a consulting company that has a main office in Montreal and two branch offices in Seattle and New York.
Contoso has IT, human resources (HR), and finance departments.
Contoso recently opened a new branch office in San Diego. All the users in the San Diego office work from home.
Existing environment
Contoso uses Microsoft 365.
The on-premises network contains an Active Directory domain named contoso.com. The domain is synced to Microsoft Azure Active Directory (Azure AD).
All computers run Windows 10 Enterprise.
You have four computers named Computer1, Computer2, Computer3, and ComputerA. ComputerA is in a workgroup on an isolated network segment and runs the Long Term Servicing Channel version of Windows 10. ComputerA connects to a manufacturing system and is business critical. All the other computers are joined to the domain and run the Semi-Annual Channel version of Windows 10.
In the domain, you create four groups named Group1, Group2, Group3, and Group4.
Computer2 has the local Group Policy settings shown in the following table.

The computers are updated by using Windows Update for Business.
The domain has the users shown in the following table.

Computer1 has the local users shown in the following table.

Requirements
Planned Changes
Contoso plans to purchase computers preinstalled with Windows 10 Pro for all the San Diego office users.
Technical Requirements
Contoso identifies the following technical requirements:
* The computers in the San Diego office must be upgraded automatically to Windows 10 Enterprise and must be joined to Azure AD the first time a user starts each new computer. End users must not be required to accept the End User License Agreement (EULA).
* Helpdesk users must be able to troubleshoot Group Policy object (GPO) processing on the Windows 10 computers. The helpdesk users must be able to identify which Group Policies are applied to the computers.
* Users in the HR department must be able to view the list of files in a folder named D:\Reports on Computer3.
* ComputerA must be configured to have an Encrypting File System (EFS) recovery agent.
* Quality update installations must be deferred as long as possible on ComputerA.
* Users in the IT department must use dynamic look on their primary device.
* User6 must be able to connect to Computer2 by using Remote Desktop.
* The principle of least privilege must be used whenever possible.
* Administrative effort must be minimized whenever possible.
* Assigned access must be configured on Computer1.


NEW QUESTION # 59
Your company has a main office and a branch office. The offices connect to each other by using a WAN link.
Access to the Internet is provided through the main office.
The branch office contains 25 computers that run Windows 10. The computers contain small hard drives that have very little free disk space.
You need to prevent the computers in the branch office from downloading updates from peers on the network.
What should you do?

  • A. From the Settings app, modify the Delivery Optimizations settings.
  • B. Configure the network connections as metered connections.
  • C. Configure the updates to use the Semi-Annual Channel (Targeted) channel.
  • D. Configure the computers to use BranchCache in hosted cache mode.

Answer: D

Explanation:
References:
https://docs.microsoft.com/en-us/windows/deployment/update/waas-branchcache


NEW QUESTION # 60
Your network contains an Active Directory domain. The domain contains a computer named Computer1 that runs Windows 10.
You need to ensure that Computer1 will respond to ping requests.
How should you configure Windows Defender Firewall on Computer1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 61
You have a computer named Computer1 that runs Windows 10. Computer1 belongs to a workgroup.
You run the following commands on Computer1.
New-LocalUser -Name User1 -NoPassword
Add-LocalGroupMember User -Member User1
What is the effect of the configurations?

  • A. User1 appears on the sign-in screen and must set a new password on the first sign-in attempts.
  • B. User1 is prevented from signing in until the user is assigned additional user rights.
  • C. User1 is prevented from signing in until an administrator manually sets a password for the user.
  • D. User1 appears on the sign-in screen and can sign in without a password.

Answer: D

Explanation:
Explanation/Reference:
References:
https://docs.microsoft.com/en-us/powershell/module/microsoft.powershell.localaccounts/new-localuser?
view=powershell-5.1


NEW QUESTION # 62
You have a computer named Computer 1 that runs Windows 10.
You turn on System Protection and create a restore point named Point1.
You perform the following changes:
* Add four files named File1.txt, File2.dll, File3.sys, and File4.exe to the desktop.
Run a configuration script that adds the following four registry keys:
- Key1 to HKEY_CURRENT_USER
- Key2 to HKEY_CLASSES_ROOT
- Key3 to HKEY_LOCAL_MACHINE\SYSTEM
- Key4 to HKEY_CURRENT_CONFIG
You restore Point1.
Which files and registry keys are removed? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

References:
https://www.maketecheasier.com/what-system-restore-can-and-cannot-do-to-your-windows-system/
https://superuser.com/questions/343112/what-does-windows-system-restore-exactly-back-up-and-restore


NEW QUESTION # 63
Your company has a wireless access point that uses WPA2-Enterprise.
You need to configure a computer to connect to the wireless access point.
What should you do first?

  • A. Create a Connection Manager Administration Kit (CMAK) package.
  • B. Create a provisioning package in Windows Configuration Designer.
  • C. Request and install a certificate.
  • D. Request a passphrase.

Answer: D

Explanation:
Explanation/Reference:
References:
https://support.microsoft.com/en-za/help/17137/windows-setting-up-wireless-network


NEW QUESTION # 64
You have a computer named Computer1 that runs Windows 10.
On Computer1, you turn on File History.
You need to protect a folder named D:\Folder1 by using File History.
What should you do?

  • A. From the Settings app, configure the Recovery settings
  • B. From File Explorer, modify the General settings of D:\Folder1
  • C. From File History in Control Panel, configure the Select drive settings
  • D. From File Settings app, configure the Backup settings

Answer: C

Explanation:
https://www.digitalcitizen.life/file-history


NEW QUESTION # 65
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a workgroup computer that runs Windows 10. The computer contains the local user accounts shown in the following table.

You need to configure the desktop background for User1 and User2 only.
Solution: From the local computer policy, you configure the Filter Options settings for the computer policy.
Does this meet the goal?

  • A. Yes
  • B. No

Answer: B


NEW QUESTION # 66
You have a computer named Computer1 that runs Windows 10.
You deploy an application named Application1 to Computer1.
You need to assign credentials to Application1.
You need to meet the following requirements:
Ensure that the credentials for Application1 cannot be used by any user to log on to Computer1.
Ensure that the principle of least privilege is maintained.
What should you do?

  • A. Configure Application1 to sign in as the Local System account and select the Allow service to interact with desktop check box.
  • B. Configure Application1 to sign in as the Local Service account and select the Allow service to interact with desktop check box.
  • C. Create a user account for Application1 and assign that user account the Deny log on locally user right
  • D. Create a user account for Application1 and assign that user account the Deny log on as a service user right

Answer: C

Explanation:
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/deny-log-on-locally


NEW QUESTION # 67
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory domain. The domain contains a computer named Computer1 that runs Windows 8.1.
Computer1 has apps that are compatible with Windows 10.
You need to perform a Windows 10 in-place upgrade on Computer1.
Solution: You copy the Windows 10 installation media to a Microsoft Deployment Toolkit (MDT) deployment share. You create a task sequence, and then you run the MDT deployment wizard on Computer1.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: B

Explanation:
Reference:
https://docs.microsoft.com/en-us/windows/deployment/deploy-windows-mdt/upgrade-to-windows-10-with-the-


NEW QUESTION # 68
You have three computers that run Windows 10 as shown in the following table.

All the computers have C and D volumes. The Require additional authentication at startup Group Policy settings is disabled on all the computers.
Which volumes can you encrypt by using BitLocker Drive Encryption (BitLocker)? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

References:
https://www.windowscentral.com/how-use-bitlocker-encryption-windows-10


NEW QUESTION # 69
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have two computers named Computer1 and Computer2 that run Windows 10.
You have an Azure Active Directory (Azure AD) user account named [email protected] that is in the local Administrators group on each computer.
You sign in to Computer1 by using [email protected].
You need to ensure that you can use Event Viewer on Computer1 to connect to the event logs on Computer2.
Solution: On Computer2, you run the winrm quickconfig command.
Does this meet the goal?

  • A. Yes
  • B. No

Answer: B

Explanation:
Explanation
Windows Remote Management is a component of the Windows Hardware Management features that manage server hardware locally and remotely.
References:
https://docs.microsoft.com/en-us/windows/win32/winrm/about-windows-remote-management


NEW QUESTION # 70
......

Focus on MD-100 All-in-One Exam Guide For Quick Preparation: https://examcollection.prep4sureguide.com/MD-100-prep4sure-exam-guide.html

Related Articles

more
Microsoft MD-100 Certification Practice Exam

Our reliable site provides you with good services and helps you learn. Our Study Materials make it easy for you to take notes on it so that your free time can be well utilized. Our Training Materials are absolutely safe and virus-free to use.

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Copyright © 2026 Prep4sureGuide NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy