시험덤프
매달, 우리는 1000명 이상의 사람들이 시험 준비를 잘하고 시험을 잘 통과할 수 있도록 도와줍니다.
  / AB-900 덤프  / AB-900 문제 연습

Microsoft AB-900 시험

Microsoft 365 Copilot and Agent Administration Fundamentals 온라인 연습

최종 업데이트 시간: 2026년06월29일

당신은 온라인 연습 문제를 통해 Microsoft AB-900 시험지식에 대해 자신이 어떻게 알고 있는지 파악한 후 시험 참가 신청 여부를 결정할 수 있다.

시험을 100% 합격하고 시험 준비 시간을 35% 절약하기를 바라며 AB-900 덤프 (최신 실제 시험 문제)를 사용 선택하여 현재 최신 65개의 시험 문제와 답을 포함하십시오.

 / 8

Question No : 1


Your company is piloting the use of Microsoft 365 Copilot and has purchased 100 Microsoft 365 Copilot licenses.
You need to view detailed reports about Copilot usage in Microsoft Teams, such as meeting hours summarized by Copilot and meeting actions taken by using Copilot.
What should you use?

정답:
Explanation:
The correct answer is C. the Microsoft 365 Copilot dashboard in Microsoft Viva Insights. Microsoft documents that the Microsoft Copilot Dashboard in Viva Insights provides detailed organizational reporting for Copilot usage and impact, including meeting-related metrics such as total meeting hours summarized or recapped, intelligent recap actions taken using Copilot, and summarize meeting actions taken using Copilot in Teams. Those metrics directly match the scenario in the question.
The other options are less suitable. The Microsoft 365 Apps usage report focuses on app usage generally, not detailed Copilot-in-Teams behavior. The Copilot readiness report is for readiness and deployment planning, not deep Teams usage metrics. The Microsoft 365 Copilot usage report in the admin center provides adoption information, but Microsoft’s detailed meeting-action and meeting-hours metrics are documented in the Viva Insights Copilot Dashboard. Therefore, for detailed Teams-specific Copilot reporting during a pilot, the best answer is the Microsoft 365 Copilot dashboard in Microsoft Viva Insights.

Question No : 2


A user named User1 creates a Microsoft 365 Copilot agent named Agent1 and shares the agent to a user named User2.
What occurs if an admin blocks Agent1?

정답:
Explanation:
The correct answer is B. Microsoft documents that admins can block agents in the Microsoft 365 admin center, and when administrators block Microsoft agents such as Researcher and Analyst, those agents are made inaccessible to all users in the tenant. Microsoft’s agent management guidance also states that admins can manage agent lifecycle and access centrally, including blocking or removing agent availability across the organization.
Applied to this scenario, if an admin blocks Agent1, the shared agent is no longer available for either the creator (User1) or the recipient (User2), and other users also cannot install or access it. This rules out options A and C, which both say the blocked agent remains accessible. It also rules out D, because blocking is a tenant admin action that removes availability broadly, not just for shared recipients while leaving the creator unaffected. Microsoft positions blocking as an organization-level control over agent access, so the best matching option is that Agent1 is removed from User1 and User2, and no users can install Agent1.

Question No : 3


Your organization has a Microsoft 365 subscription.
You need to investigate security incidents and alerts raised from the Windows 11 devices in your organization.
What should you use?

정답:
Explanation:
The correct answer is C. Microsoft Defender for Endpoint. Microsoft documents that Defender for Endpoint is the Microsoft security solution for endpoint devices, including Windows 11, and that it lets security teams investigate incidents, alerts, affected devices, files, processes, and remediation actions in the Microsoft Defender portal. Microsoft’s investigation guidance specifically describes using Defender for Endpoint to review alerts and investigate affected devices from the devices list, alerts queue, and incident views.
The other options do not match this requirement. Microsoft Entra ID Protection is for risky users and risky sign-ins, not device incident investigation. Microsoft Purview Insider Risk Management focuses on risky user behavior such as data theft or exfiltration, not endpoint security alerts from Windows devices. Microsoft Defender for Identity monitors on-premises and hybrid identity signals from Active Directory environments, not Windows 11 endpoint incidents. For security incidents and alerts raised from organization-managed Windows 11 devices, Microsoft’s documented solution is Microsoft Defender for Endpoint.

Question No : 4


HOTSPOT
Select the answer that correctly completes the sentence.



정답:


Explanation:
From the SharePoint admin center, you can create a site.
The correct answer is site. Microsoft documents that in the SharePoint admin center, administrators can go to Active sites and select Create to create a new SharePoint site, such as a team site or communication site. Microsoft also describes site creation as one of the key tasks available to users with the SharePoint Administrator role.
The other options do not fit this sentence. A server is not something you create from the SharePoint admin center in Microsoft 365, because SharePoint Online is a Microsoft-managed cloud service. A user is typically created in the Microsoft 365 admin center or Microsoft Entra admin center, not in the SharePoint admin center. A role is also assigned through Microsoft 365 or Microsoft Entra administrative experiences, not created from the SharePoint admin center as the primary task described here.
So the sentence is correctly completed as: From the SharePoint admin center, you can create a site.

Question No : 5


HOTSPOT
Select the answer that correctly completes the sentence.



정답:


Explanation:
You can use the eDiscovery Microsoft Purview solution to find all the content that relates to the term “Project Falcon” in the emails exchanged by two users.
The correct answer is eDiscovery. Microsoft documents that Microsoft Purview eDiscovery is used to search for content in Microsoft 365 data sources that is relevant to an investigation, legal matter, or internal review. Microsoft specifically states that eDiscovery search can find email messages, documents, instant messages, and other content across Microsoft 365 locations, including Exchange Online mailboxes. This makes it the correct solution for locating content related to a keyword or phrase such as “Project Falcon” in emails exchanged between specific users.
This is different from other Purview solutions such as Communication Compliance, which is designed to monitor risky or inappropriate communications, or Data Lifecycle Management, which is for retention and deletion. The requirement here is targeted search and retrieval of content connected to a specific term in user email communications, which is exactly what eDiscovery is designed to do.
Microsoft also notes that eDiscovery supports keyword queries and search conditions, which further aligns with this scenario.

Question No : 6


Your company requires that all Microsoft SharePoint sites have a minimum of two owners.
You need to ensure that sites that have less than two owners are marked as read-only if the sites are NOT remediated.
What should you configure in the SharePoint admin center?

정답:
Explanation:
The correct answer is C. Site lifecycle management. In the SharePoint admin center, Microsoft includes a Site ownership policy under Site lifecycle management that can identify sites with too few owners and drive remediation. Microsoft documents that this policy can detect sites with fewer than the required number of owners, notify site owners, and if the issue is not fixed, enforce an action such as making the site read-only. That directly matches the requirement that sites with fewer than two owners be marked as read-only when they are not remediated.
The other options do not fit this scenario. Site-level access restriction is about controlling who can access a site, not enforcing ownership-count governance. Data access governance reports help identify oversharing and permissions exposure, but they do not enforce a minimum-owner remediation policy that makes sites read-only. Block download policy for SharePoint and OneDrive is used to restrict downloading from unmanaged devices or similar access scenarios, not to handle insufficient site ownership. Therefore, the Microsoft-documented feature to configure is Site lifecycle management.

Question No : 7


You use Microsoft 365 Copilot.
What does Copilot use to generate responses based on corporate data stored in Microsoft SharePoint?

정답:
Explanation:
The correct answer is C. Microsoft Graph. Microsoft documents that Microsoft 365 Copilot combines large language models with content and context from the Microsoft Graph to generate grounded responses. Microsoft Graph provides access to organizational data and signals across Microsoft 365 services, including SharePoint, OneDrive, Exchange, Teams, calendars, chats, files, and other work content. When SharePoint data is relevant to the prompt and the user already has permission to access it, Copilot uses Microsoft Graph as the layer that retrieves and grounds that corporate data for the response.
The other options are incorrect for this question. Microsoft Intune is used for endpoint and device management. Microsoft Defender is used for threat protection and security operations. Microsoft Purview provides compliance, governance, data protection, and risk management capabilities. While Copilot honors Purview protections and Microsoft 365 permissions, the specific service it uses to access and ground responses in SharePoint-based corporate data is Microsoft Graph. Therefore, the correct answer is Microsoft Graph.

Question No : 8


Your organization has a Microsoft 365 subscription that contains a user named User1. User1 plans to leave your company in two weeks. You need to capture the activity of User1 to identify whether the user is exfiltrating data.
Which Microsoft Purview solution should you use?

정답:
Explanation:
The correct answer is C. Insider Risk Management. Microsoft documents that Microsoft Purview Insider Risk Management helps organizations detect, investigate, and act on potentially risky internal activities, including data theft and data leakage. Microsoft specifically provides policy templates for departing users, describing scenarios where users who are leaving an organization might download files, print files, or copy data to personal cloud storage or messaging services near their resignation or end date. That matches this question exactly, where User1 is leaving in two weeks and you need to determine whether the user is exfiltrating data.
The other options do not fit. Communication Compliance is for reviewing risky communications, Data Security Posture Management focuses on broader data exposure posture, and Data Lifecycle Management is for retention and deletion. None of those is the Microsoft Purview solution specifically built to monitor suspicious user activity and data exfiltration risk for departing employees. Microsoft positions Insider Risk Management as the correct tool for this scenario.

Question No : 9


HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.



정답:


Explanation:
Microsoft Defender for Office 365 provides protection from phishing and malware attacks.
Answer. Yes
Microsoft Defender for Identity monitors identities in Active Directory domains.
Answer. Yes
Microsoft Defender Vulnerability Management provides protection for software as a service (SaaS)
applications.
Answer. No
The correct selections are Yes, Yes, No. Microsoft documents that Microsoft Defender for Office 365 protects email and collaboration workloads from threats such as phishing and malware, including zero-day malware and business email compromise scenarios. That makes statement 1 Yes.
Statement 2 is also Yes because Microsoft states that Microsoft Defender for Identity monitors identity signals from on-premises Active Directory and related identity infrastructure to detect suspicious activity and identity-based attacks. Microsoft further describes monitoring information generated from your organization’s Active Directory, network, and event activities.
Statement 3 is No because Microsoft Defender Vulnerability Management is focused on discovering and prioritizing vulnerabilities across devices and assets such as Windows, macOS, Linux, mobile platforms, and network devices. Microsoft’s SaaS application protection offering is Microsoft Defender for Cloud Apps, not Defender Vulnerability Management.

Question No : 10


Your organization has a Microsoft 365 subscription that contains Microsoft SharePoint sites and Microsoft Teams teams.
You discover that the sites and the teams are shared to users outside your organization.
You need to identify which sites and teams were shared to the external users.
What should you use?

정답:
Explanation:
The correct answer is A. the SharePoint admin center. Microsoft documents that the SharePoint admin center includes Data access governance reports and site-level sharing reports that help administrators identify where content is shared externally. Microsoft also documents that every standard Microsoft Teams team is connected to a SharePoint site for file storage and collaboration. Because Teams files and many sharing scenarios for teams are backed by SharePoint sites, the SharePoint admin center is the correct place to investigate which sites are shared externally, including Teams-connected SharePoint sites.
The other options are less suitable for this requirement. The Teams admin center is primarily for Teams policy, user, device, and workload administration, but it is not the main portal Microsoft documents for identifying externally shared site content. The Microsoft 365 admin center focuses on broad tenant administration and usage reporting, and the Microsoft Defender portal is for security investigation rather than SharePoint/Teams sharing governance. For identifying externally shared SharePoint sites and Teams-connected sites, Microsoft’s documented reporting path is the SharePoint admin center.

Question No : 11


HOTSPOT
You are evaluating Microsoft Purview solutions.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.



정답:


Explanation:
A Communication Compliance policy can detect inappropriate text in Microsoft Teams messages.
Answer. Yes
A Communication Compliance policy can detect offensive language in Microsoft 365 Copilot prompts.
Answer. Yes
A Communication Compliance policy can be used to retain email messages for 10 years.
Answer. No
The correct selections are Yes, Yes, No. Microsoft documents that Microsoft Purview Communication Compliance can detect potentially inappropriate messages in supported communication channels, including Microsoft Teams and email. Microsoft also states that reviewers can investigate communications in Microsoft 365 Copilot and Microsoft 365 Copilot Chat, which means Communication Compliance policies can evaluate Copilot prompts and responses for risky or offensive content.
This makes statement 1 Yes, because inappropriate text in Teams messages is a standard
Communication Compliance scenario. Statement 2 is also Yes, because Microsoft explicitly includes Microsoft 365 Copilot and Microsoft 365 Copilot Chat among the supported communication sources for policy review and investigation.
Statement 3 is No because retaining email for a fixed period such as 10 years is handled by Microsoft Purview Data Lifecycle Management through retention policies or retention labels, not by Communication Compliance. Communication Compliance is for monitoring and investigating risky communications, not for long-term retention enforcement.

Question No : 12


HOTSPOT
Your organization has a Microsoft 365 subscription.
You discover that Microsoft SharePoint files are being shared to users outside your organization.
You need to identify which files are being shared to the external users.
Which report should you use in the SharePoint admin center? To answer, select the appropriate report in the answer area.



정답:


Explanation:
The correct answer is Data access governance. Microsoft documents that Data access governance reports in the SharePoint admin center help administrators discover overshared or sensitive SharePoint content and assess sharing exposure. More specifically, Microsoft’s sharing links activity reports under Data access governance are designed to monitor sharing activity and identify sites where links such as Anyone, People in the organization, and Specific people links have been created. This is the SharePoint admin reporting area Microsoft provides for investigating external sharing patterns and related exposure.
The other listed reports do not fit this requirement. Agent insights is for Copilot/agent usage, App insights is for application-related insights, Change history tracks configuration changes, OneDrive accounts focuses on OneDrive administration, and Site policy comparison compares site settings.
None of those is the SharePoint report family intended for identifying externally shared SharePoint content. Based on Microsoft’s documentation, the report area you should use is Data access governance.

Question No : 13


Your organization has a Microsoft 365 subscription.
You need to assign a license to a user.
What should you use?

정답:
Explanation:
The correct answer is B. the Microsoft 365 admin center. Microsoft documents that administrators assign product licenses to users from the Microsoft 365 admin center, including on the Active users page where you can open a user account and manage Licenses and apps. Microsoft also documents license assignment workflows there for both direct assignment and group-based licensing scenarios. That makes the Microsoft 365 admin center the standard administrative portal for giving a user access to Microsoft 365 services and features.
The other options are incorrect for this task. The Microsoft Purview portal is used for compliance, governance, data protection, eDiscovery, audit, and related Purview solutions, not for assigning Microsoft 365 product licenses. The Microsoft Teams admin center is used to manage Teams settings, policies, devices, voice, and collaboration features, but it is not the central portal for assigning tenant product licenses to users.
Therefore, when the requirement is simply to assign a license to a user in a Microsoft 365 subscription, Microsoft’s documented answer is the Microsoft 365 admin center.

Question No : 14


HOTSPOT
Select the answer that correctly completes the sentence.



정답:


Explanation:
In Microsoft 365 Copilot, you should use the Researcher agent to perform multi-step reasoning over unstructured data.
The correct answer is the Researcher agent. Microsoft describes Researcher in Microsoft 365 Copilot as an agent for complex, multi-step research that can reason across information sources and synthesize findings into structured outputs. That aligns with the phrase multi-step reasoning in the question. Microsoft’s guidance also contrasts Researcher with Analyst, which is aimed more at data analysis and spreadsheet-oriented tasks.
The other options are less suitable. Chat is general-purpose and not the specialized tool Microsoft positions for deeper multi-step research workflows. A notebook is used to organize materials and chats, not as the main reasoning engine for this scenario. The Analyst agent is better suited to structured data analysis, trends, and calculations rather than broad reasoning over unstructured data such as documents, notes, and mixed content. Based on Microsoft’s product positioning, the best fit for multi-step reasoning over unstructured information is the Researcher agent.

Question No : 15


HOTSPOT
A user named User5 navigates to https://myapps.microsoft.com. After entering their username and password, User5 receives the displayed message on their mobile device.
Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.



Use the drop-down menus to select the answer choice that completes the statement based on the information presented in the graphic.



정답:


Explanation:
the Microsoft Authenticator app
The correct answer is the Microsoft Authenticator app. The image shows the familiar Microsoft MFA prompt that says “Are you trying to sign in?” and “Enter the number shown to sign in.” Microsoft documents this as number matching in Authenticator push notifications, which is part of Microsoft Entra multifactor authentication using the Microsoft Authenticator app. Microsoft explains that number matching is a security improvement for Authenticator push approvals and is used when the default sign-in method is Authenticator push notifications.
The other choices do not match the experience shown. Email OTP would involve a one-time code sent by email. SMS would send a text message code to a phone number. Temporary Access Pass is a time-limited passcode used for onboarding or recovery scenarios, not the mobile push screen shown in the image. Because the graphic specifically shows a mobile approval prompt with number matching, the MFA method is clearly the Microsoft Authenticator app.

 / 8