New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft MS-102 Exam - Topic 3 Question 50 Discussion

Actual exam question for Microsoft's MS-102 exam
Question #: 50
Topic #: 3
[All MS-102 Questions]

You have a Microsoft E5 subscription.

You need to ensure that administrators who need to manage Microsoft Exchange Online are assigned the Exchange Administrator role for five hours at a time.

What should you implement?

Show Suggested Answer Hide Answer
Suggested Answer: A

https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-change-default-settings

by Dick at Aug 01, 2025, 09:55 PM

Limited Time Offer

25%

Off

Get Premium MS-102 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kimberlie
2 months ago
Not sure if PIM is the best option here...
upvoted 0 times
...
Adaline
2 months ago
Conditional access policy could work too, but not ideal.
upvoted 0 times
...
Eugene
3 months ago
I agree, PIM is the way to go!
upvoted 0 times
...
Evangelina
3 months ago
Definitely need Azure AD PIM for that!
upvoted 0 times
...
Geraldo
3 months ago
Wait, can you really limit roles to just five hours?
upvoted 0 times
...
Joanna
3 months ago
I’m leaning towards A as well, but I’m a bit confused about the other options. What do they do again?
upvoted 0 times
...
Nadine
4 months ago
I feel like we practiced a similar question, and PIM was definitely mentioned as a way to manage roles temporarily.
upvoted 0 times
...
Jamika
4 months ago
I'm not entirely sure, but I remember something about conditional access policies. Could it be B?
upvoted 0 times
...
Shizue
4 months ago
I think the answer might be A, Azure AD Privileged Identity Management. It sounds familiar from the study materials.
upvoted 0 times
...
Francis
4 months ago
Alright, let's see. We need to give admins the Exchange Administrator role, but only for a limited time. Azure AD Identity Protection is more about detecting and responding to risky user behavior, so that's probably not the right choice. I think I'm leaning towards the Azure AD PIM option.
upvoted 0 times
...
Jerrod
4 months ago
Hmm, I'm a bit confused on this one. Is a communication compliance policy the right approach? I know that's used for monitoring communications, but I'm not sure if that's relevant here. I'll have to double-check the differences between the options.
upvoted 0 times
...
Mi
5 months ago
Azure AD PIM sounds like the right solution. It lets you control and audit the temporary admin access, which is exactly what the question is asking for. I feel pretty confident about this one.
upvoted 0 times
...
Beckie
5 months ago
Okay, let me think this through. We need to ensure admins can manage Exchange Online, but only for a limited time. A conditional access policy could work, but I'm not sure if that's the best option here. I'll have to review the details on that one.
upvoted 0 times
...
Jess
5 months ago
Hmm, this seems like a question about managing admin access in Exchange Online. I think Azure AD Privileged Identity Management (PIM) might be the way to go here, since it allows you to assign temporary elevated permissions.
upvoted 0 times
...
Lauryn
5 months ago
I don't think so, conditional access policies are more about controlling access based on conditions like location or device.
upvoted 0 times
...
Staci
5 months ago
But wouldn't a conditional access policy also work in this scenario?
upvoted 0 times
...
Caitlin
6 months ago
Communication compliance policy? Psh, that's so old school. This is all about that Azure AD Identity Protection - the future is now, my friends!
upvoted 0 times
...
Blondell
6 months ago
I agree, PIM allows us to assign roles for a limited time to administrators.
upvoted 0 times
...
Bernardine
6 months ago
Oh, I bet the conditional access policy is the answer. Can't have those pesky admins getting too comfortable, you know? Gotta keep 'em guessing!
upvoted 0 times
Laurel
2 months ago
True, but a conditional access policy could add another layer of security.
upvoted 0 times
...
William
2 months ago
I agree, PIM is designed for that. Keeps admins on their toes!
upvoted 0 times
...
Laticia
2 months ago
Conditional access sounds good, but PIM is more specific for time-limited roles.
upvoted 0 times
...
Elina
3 months ago
I think Azure AD PIM is the way to go. It gives more control.
upvoted 0 times
...
...
Ronnie
7 months ago
I think we should implement Azure AD Privileged Identity Management (PIM) for this.
upvoted 0 times
...
Alyce
7 months ago
Hmm, PIM seems like the way to go here. Gotta love that just-in-time access, am I right? Keeps those admins on their toes!
upvoted 0 times
Jess
5 months ago
Definitely! PIM is perfect for managing access for admins. Keeps everything secure.
upvoted 0 times
...
Larue
5 months ago
A) Azure AD Privileged Identity Management (PIM)
upvoted 0 times
...
Dick
6 months ago
E) groups that have dynamic membership
upvoted 0 times
...
Yolande
7 months ago
A) Azure AD Privileged Identity Management (PIM)
upvoted 0 times
...
...

Save Cancel