MS-300 Question #2: Real Exam Question with Answer & Explanation

Case Study 1 -Litware, Inc Overview Litware, Inc. is a design and manufacturing company that has 4,500 users. The company has sales, marketing, design, research, field test, and human resources (HR) departments. Litware has a main office in California, three branch offices in the United States, and five branch offices in Europe. Existing Environment On-premises Infrastructure The network contains an Active Directory forest named litwareinc.com that contains a child domain for each region. All domain controllers run Windows Server 2012. The main office syncs identities to Microsoft Azure Active Directory (Azure AD) by using Azure AD Connect. All user accounts are created in the on-premises Active Directory and sync to Azure AD. Each office contains the following servers and client computers: - A domain controller that runs Windows Server 2012 - A file server that runs Windows Server 2012 - Client computers that run Windows 10 Currently, all content created by users is stored locally on file servers. Cloud Infrastructure Litware is moving the content from the file servers to Microsoft Office 265. The company purchases 4,500 Microsoft 365 E5 licenses. Litware uses Microsoft Exchange Online for email. Problem Statements Litware identifies the following issues: - Finding content and people within the organization is difficult. - Users cannot access company data outside the corporate network. - Content recovery is slow because all the content is still on- premises. - Data security is compromised because users can copy company content to USB drives. - The locally stored content to USB drives. - Users must frequently contact the HR department to find employees within the organization who have relevant skills. - Users can delete content indiscriminately and without resource as they have full control of the content of the file servers. Business Goals Litware identifies the following strategic initiatives to remain competitive: - All content must be stored centrally - Access to content must be based on the user's: 1.Department 2.Security level 3.Physical location - Users must be able to work on content offline - Users must be able to share content externally - Content classifications from mobile devices - Content classifications must include a physical location - Content must be retained and protected based on its type - Litware must adhere to highly confidential regulatory standards that include: 1.The ability to restrict the copying of all content created internally and externally 2.Including accurate time zone reporting in audit trails - Users must be able to search for content and people across the entire organization. - Content classification metadata must adhere to naming conventions specified by the IT department. - Users must be able to access content quickly without having to review many pages of search results to find documents. - Security rules must be implemented so that user access can be revoked if a user shares confidential content with external users. Planned Changes Litware plans to implement the following changes: - Move all department content to Microsoft SharePoint Online - Move all user content to Microsoft OneDrive for Business - Restrict user access based on location and device Technical Requirements: Litware identifies the following technical requirements: - All on-premises documents (approximately one million documents) must be migrated to the SharePoint document library of their respective department. - Each department must have its own term store group. Stakeholders must be notified when term sets are moved or deleted. - All the OneDrive content of a user must be retained for a minimum of 180 days after the user has left the organization. - All external users must be used as the primary membership service for Microsoft Yammer, Teams, and SharePoint. - A user named Admin1 must be allowed to consume apps in the App Catalog and to add additional app license. - Viewers must be prevented from printing documents that are stored in a modern site named Finance. - Users must be prevented from printing content accessed in OneDrive from iOS and Android devices. - Retention, protection, and security policies must be implemented for all content stored online. - All offices must use the Managed Metadata Service to classify documents uploaded to SharePoint. - The Azure Information Protection client must be deployed to all domain-joined computers. - Searches must show results only when the result set is complete. - OneDrive must be used to work with documents offline. - Solutions must use the principle of least privilege whenever possible. You need to recommend a solution for the documents stored in the Finance site. What should you recommend?