Free AB-900 Mock Exam – Practice Online Confidently

You’re the Microsoft 365 administrator for Contoso. The CIO has purchased a small batch of Microsoft 365 Copilot seats to pilot with the legal team. Legal users already have eligible Microsoft 365 E5 licenses and active Microsoft Entra ID accounts.You need to ensure that only named pilot users can start using Copilot in Word, Outlook, and Teams.Which action best reflects the correct way to enable Copilot for these users?

Contoso’s security operations center has deployed Microsoft Defender for Endpoint, Microsoft Defender for Office 365, and Microsoft Defender for Identity. Analysts are overwhelmed by separate alerts from each product and want a single place where related alerts (for example, a phishing email, a compromised device, and risky sign-ins) are automatically grouped into one incident with a unified timeline and response actions.Which capability should the SOC rely on to automatically correlate these alerts into a single incident for investigation and response?

A new security engineer claims that the only realistic way to troubleshoot oversharing in SharePoint and OneDrive is to ask each site owner to review their permissions manually, because there are no built-in reports that highlight broadly exposed sites or excessive sharing. You disagree and point out that there are dedicated admin-level tools that surface oversharing patterns and can trigger site access reviews. The engineer’s claim that there are no built-in tools to help identify oversharing is correct. True or False?

Your organisation stores customer records in SharePoint and plans to let users query them through agents. You want to stop users from accidentally sending credit card numbers to external destinations via Copilot Chat or agents, even if they are allowed to see that data internally. You decide to use Microsoft Purview.In Microsoft Purview, you configure _____ to detect and block this kind of data exfiltration in Copilot interactions.

A bank wants to stop users from pasting highly regulated IDs into Microsoft 365 Copilot Chat, while keeping Copilot available for normal work. Their security architect captures these requirements:Must block prompts and files that match specific sensitive info types.Must apply to Microsoft 365 Copilot and Copilot Chat without disabling them.Must be centrally managed with existing data loss prevention controls.Which configuration best meets these requirements?