Tuesday, 22 March 2016

MCSA Part 1: Exam 70-346 Office 365 Part 1: Managing Office 365 Identities and Requirements

Published: February 17, 2014
Languages: English, Chinese (Simplified), French, German, Japanese, Portuguese (Brazil), Spanish
Audiences: IT professionals
Technology: Microsoft Office 365
Credit toward certification: MCP, MCSA

Who should take this exam?
Candidates for this exam are IT professionals who take part in evaluating, planning, deploying, and operating the Office 365 services, including its dependencies, requirements, and supporting technologies. Candidates should have experience with the Office 365 Admin Center and an understanding of Microsoft Exchange Online, Skype for Business Online, SharePoint Online, Office 365 ProPlus, and Azure Active Directory. This includes experience with service descriptions, configuration options, and integrating services with existing identity management and on-premises infrastructure to support the business requirements of an organization.

Skills measured
This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about the variety of question types on Microsoft exams.

Please note that the questions may test on, but will not be limited to, the topics described in the bulleted text.

Do you have feedback about the relevance of the skills measured on this exam? Please send Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program.

If you have concerns about specific questions on this exam, please submit an exam challenge.

If you have other questions or feedback about Microsoft Certification exams or about the certification program, registration, or promotions, please contact your Regional Service Center.

Provision Office 365 (15–20%)
Provision tenants
Configuring the tenant name, tenant region, initial global administrator; manage tenant subscriptions; and managing the licensing model
Add and configure custom domains
Specify domain name, confirm ownership, specify domain purpose, and move ownership of DNS to Office 365
Plan a pilot
Designate pilot users, identify workloads that don’t require migration, run the Office 365 Health, Readiness, and Connectivity Checks, run IdFix, create a test plan or use case, and connect existing email accounts for pilot users, understand service descriptions and planning to onboard users to Office 365

Plan and implement networking and security in Office 365 (15–20%)
Configure DNS records for services
Creating DNS records for Exchange Online, Skype for Business Online, and SharePoint Online
Enable client connectivity to Office 365
Configure proxy server to allow client access to Office 365 URLs, configure firewalls for outbound port access to Office 365, recommend bandwidth, Internet connectivity for clients, and deploy desktop setup for previous versions of Office clients
Administer Microsoft Azure Rights Management (RM)
Activate rights management, Office integration with rights management, assign roles for rights management, and enable recovery of protected documents
Manage administrator roles in Office 365
Implementing a permission model, create or revoke assignment of administrative roles or the administrative model, determine and assign global administrator, billing administrator and user administrator, delegated administrator, and control password resets

Preparation resources
Create DNS records for Office 365 when you manage your DNS records
Assigning admin roles in Office 365

Manage cloud identities (15–20%)
Configure password management
Setting expiration policy, password complexity, password resets in Administration Center
Manage user and security groups
Bulk import (CSV), soft delete, Administration Center, and multi-factor authentication
Manage cloud identities with Windows PowerShell
Configure passwords to never expire, bulk update of user properties, bulk user creation, Azure Active Directory cmdlets, bulk user license management, and hard delete users

Preparation resources
Password policy for Office 365
User account management
Manage Azure AD using Windows PowerShell

Implement and manage identities by using Azure Active Directory Synchronization (AADSync) (15–20%)

Prepare on-premises Active Directory for AADSync
Plan for non-routable domain names, clean up existing objects, plan for filtering Active Directory, and support for multiple forests
Set up AADSync tool
Implement soft match filtering and identify synchronized attributes, password sync, and installation requirements
Manage Active Directory users and groups with AADSync in place
Delete (soft delete), create, modify users and groups with AADSync in place, and scheduled and forcing synchronization

Preparation resources
Prepare for directory synchronization
Synchronize your directories

Implement and manage federated identities for single sign-on (SSO) (15–20%)
Plan requirements for Active Directory Federation Services (AD FS)
Plan namespaces and certificates, AD FS internal topologies and dependencies, WAP/AD FS proxy topologies, network requirements, multi-factor authentication, and access filtering using claims rules
Install and manage AD FS servers
Create AD FS service account, configure farm or stand-alone settings, add additional servers, convert from standard to federated domain, and manage certificate lifecycle
Install and manage WAP/AD FS proxy servers
Set up perimeter network name resolution, install required Windows roles and features, set up certificates, configure WAP/AD FS proxy settings, and set custom proxy forms login page

Preparation resources
Plan your AD FS deployment
Checklist: Use AD FS to implement and manage single sign-on
Administering Office 365 Jump Start (03): DirSync, SSO, and ADFS

Monitor and troubleshoot Office 365 availability and usage (15–20%)
Analyze reports
Analyze service reports, mail protection reports, auditing log, and portal email hygiene reports
Monitor service health
Using RSS feed, service health dashboard (including awareness of planned maintenance, service updates, and historical data), Office 365 Management Pack for System Center Operations Manager, and Windows PowerShell cmdlets
Isolate service interruption
Create a service request, Microsoft Remote Connectivity Analyzer (RCA), Microsoft Lync Connectivity Analyzer tool, Microsoft Connectivity Analyzer tool, and hybrid free/busy troubleshooter

Preparation resources
Reporting features and troubleshooting tools
Service health
QUESTION 1
You have an Office 365 environment. Synchronization between the on-premises Active Directory and Office 365 is enabled.
You need to deactivate directory synchronization.
Which Windows PowerShell cmdlet should you run?

A. Update-MsolFederatedDomain
B. Remove-MsolDomain
C. Remove-MsolFederatedDomain
D. Set-MsolDirSyncEnabled

Answer: D

Explanation:
The complete command to disable directory Sync is Set-MsolDirSyncEnabled –EnableDirSync $false
Reference: http://support.microsoft.com/kb/2619062


QUESTION 2
Your company has a subscription to Office 365 for midsize business and enterprises. The company uses Microsoft Lync Online.
You need to open ports on the network firewall to enable all of the features of Lync Online.
Which port or ports should you open? (Each correct answer presents part of the solution. Choose all that apply.)

A. inbound TCP 443
B. outbound TCP 5061
C. outbound UDP 3478
D. outbound TCP 443
E. outbound UDP 50000 to outbound UDP 59999
F. inbound TCP 8080

Answer: A,C,D,E
Reference: http://ahandyblog.wordpress.com/cloud-technologies/firewall-ports-for-office-365


QUESTION 3
You are the Office 365 administrator for your company.
Users report that they have received significantly more spam messages over the past month than they normally receive.
You need to analyze trends for the email messages received over the past 60 days.
From the Office 365 admin center, what should you view?

A. The Mail protection reports
B. The Mailbox content search and hold report
C. Messages on the Message center page
D. The Office 365 Malware detections in sent mail report

Answer: A


QUESTION 4
Contoso, Ltd. has an Office 365 tenant. The company has two servers named Server1 and Server2 that run Windows 2012 R2 Server. The servers are not joined to the contoso.com domain. Server2 is deployed to the perimeter network. You install Secure Sockets Layer (SSL) certificates on both servers.
You deploy internal and external firewalls. All firewalls allow HTTPS traffic.
You must deploy single sign-on (SSO) and Active Directory Federation Services (AD FS).
You need to install and configure all AD FS components in the environment.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.


Answer:



QUESTION 5
A graphic design agency has an Office 365 tenant. The agency uses only computers that run the Apple Macintosh operating system. Some users have Microsoft Entourage 2008 for Mac, and some have Microsoft Outlook for Mac.
All users report that they cannot access Exchange Online to check their email.
You need to run test connectivity for all users to identify the problem. You need to use the Microsoft Remote Connectivity Analyzer and the credentials of the users.
What should you do? To answer, drag the appropriate test to run to the correct email client. Each test may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.


Answer:

No comments:

Post a Comment