Replace MS-600 Free Dumps For Building Applications And Solutions With Microsoft 365 Core Services Certification

NEW QUESTION 1

You develop a web API named WebApi1.
When validating a token received from a client application, WebApi1 receives a MsalUiRequiredException exception from Azure Active Directory (Azure AD).
You need to formulate the response that WebApi1 will return to the client application. Which HTTP response should you send?

• A. HTTP 307 Temporary Redirect
• B. HTTP 400 Bad Request
• C. HTTP 403 Forbidden
• D. HTTP 412 Precondition Failed

Answer: D

Explanation:
The HyperText Transfer Protocol (HTTP) 412 Precondition Failed client error response code indicates that access to the target resource has been denied. This happens with conditional requests on methods other than GET or HEAD when the condition defined by the If-Unmodified-Since or If-None-Match headers is not fulfilled. In that case, the request, usually an upload or a modification of a resource, cannot be made and this error response is sent back.
MsalUiRequiredException
The "Ui Required" is proposed as a specialization of MsalServiceException named MsalUiRequiredException. This means you have attempted to use a non-interactive method of acquiring a token (e.g. AcquireTokenSilent), but MSAL could not do it silently. this can be because:
you need to sign-in
you need to consent
you need to go through a multi-factor authentication experience.
The remediation is to call AcquireTokenInteractive try
{
app.AcquireTokenXXX(scopes, account) WithYYYY(...)
ExecuteAsync()
}
catch(MsalUiRequiredException ex)
{
app.AcquireTokenInteractive(scopes) WithAccount(account)
WithClaims(ex.Claims) ExcecuteAsync();
}

NEW QUESTION 2

You need to develop a server-based web app that will be registered with the Microsoft identity platform. The solution must ensure that the app can perform operations on behalf of the user?
Which type of authorization flow should you use?

• A. authorization code
• B. refresh token
• C. resource owner password
• D. device code

Answer: A

Explanation:
In web server apps, the sign-in authentication flow takes these high-level steps:

You can ensure the user's identity by validating the ID token with a public signing key that is received from the Microsoft identity platform endpoint. A session cookie is set, which can be used to identify the user on subsequent page requests.
In addition to simple sign-in, a web server app might need to access another web service, such as a REST API. In this case, the web server app engages in a combined OpenID Connect and OAuth 2.0 flow, by using the OAuth 2.0 authorization code flow.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-app-types

NEW QUESTION 3

You use Azure Active Directory (Azure AD) to store user identities. The user profile information is inconsistently populated.
You need to develop a web app that will provide users with a page where they can enter their interests, skill, and description. When the user click the submit button, the app will use Microsoft graph to send the data to Azure AD.
Which HTTP method should you use against the Microsoft graph endpoint?

• A. PUT
• B. POST
• C. PATCH
• D. GET

Answer: A

NEW QUESTION 4

You need to implement the role functionality for the backend web service calls.
Which three actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 5

You plan to create a Microsoft Teams application that uses action-based messaging extensions. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 6

You need to retrieve a list of the last 10 files that the current user opened from Microsoft OneDrive. The response must contain only the file ID and the file name.
Which URI should you use to retrieve the results? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
"graph.microsoft.com" "drive" onedrive Box 1: root
/root - The root folder for the drive. Box 2: $select=id,name
To specify a different set of properties to return than the default set provided by the Graph, use the $select query option. The $select option allows for choosing a subset or superset of the default set returned. For example, when retrieving your messages, you might want to select that only the from and subject properties of messages are returned.
References: https://docs.microsoft.com/en-us/onedrive/developer/rest-api/concepts/addressing-driveitems https://developer.microsoft.com/en-us/graph/docs/overview/query_parameters

NEW QUESTION 7

You are designing a custom SharePoint Framework (SPFx) web part that will be deployed to modern Microsoft SharePoint sites.
You need to ensure that all the web part fields and controls adopt the theme of the site when you deploy the web part.
What should you use to develop the web part?

• A. Material-UI
• B. Office UI Fabric React
• C. HTML 5.0 and CSS
• D. Fluid Framework

Answer: B

Explanation:
Office UI Fabric is Microsoft’s official front end framework for building User Interface experiences for Office and Office 365. In simple terms it gives you the look and feel for your component. Moreover, they are open source, mobile responsive and reusable, no need to create from scratch just refer them in your code and start utilizing them.
Microsoft modern SharePoint out of the box webparts are made up these Office UI Fabric framework, so to maintain consistency look and feel as like Office it’s better to use these components in our custom SPFx webparts.
Reference:
http://www.sharepointsamples.com/sharepoint-framework-webpart-with-office-ui-fabric-react-component/

NEW QUESTION 8

You are building a new tab as part of a new Microsoft Teams application. Users will experience the tab privately.
How should you complete the application manifest? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 9

This question requires that you evaluate the underlined text to determine if it is correct.
In Microsoft Word on Windows, before you can sideload a Microsoft Office Add-in. you must first upload the manifest to Microsoft_pnePrivc.
Instructions: Review the underlined text. If it makes the statement correct, select "No change is needed." If the statement is incorrect, select the answer choice that makes the statement correct.

• A. No change is needed.
• B. deploy the manifest to an Azure website
• C. publish the manifest to a trusted network location
• D. set Microsoft Edge to Developer Mode

Answer: A

NEW QUESTION 10

This question requires that you evaluate the underlined text to determine if it is correct- For a Microsoft Office Add-in. you set the icon in the Microsoft SharePoint app catalog.
Instructions: Review the underlined text. If it makes the statement correct, select "No change is needed." If the statement is incorrect, select the answer choice that makes the statement correct.

• A. No change is needed.
• B. a JSON manifest file
• C. the Office app catalog
• D. an XML manifest file

Answer: D

NEW QUESTION 11

You are developing a sever-based application that has the following requirements: Prompt the user to fill out a form that contains a keyword.
Search the Microsoft OneDrive folder for files that contain the keyword and return the results to the user. Allow the user to select one of the files from the results.
Copy the selected file to an Azure Blob storage container.
Which four actions should the application perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 12

You have a single-page application (SPA) named TodoListSPA and a server-based web app named TodoListService.
The permissions for the TodoList SPA API are configured as shown in the TodoList SPA exhibit. (Click the TodoListSPA tab.)

The permissions for the TodoListService API are configured as shown in the TodoListService exhibit. (Click the TodoListService tab.)

You need to ensure that TodoListService can access a Microsoft OneDrive file of the signed-in user. The solution must use the principle of least privilege.
Which permission should to grant?

• A. the Sites.Read.All delegated permission for TodoListService
• B. the Sites.Read.All delegated permission for TodoListSpa
• C. the Sites.Read.All application permission for TodoListSPA
• D. the Sites.Read.All application permission for TodoListService

Answer: A

Explanation:
A client application gains access to a resource server by declaring permission requests. Two types are available:
"Delegated" permissions, which specify scope-based access using delegated authorization from the signed-in resource owner, are presented to the resource at run-time as "scp" claims in the client's access token.
"Application" permissions, which specify role-based access using the client application's credentials/identity, are presented to the resource at run-time as "roles" claims in the client's access token.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/developer-glossary#permissions

NEW QUESTION 13

You plan to deploy a SharePoint Framework (SPFx) solution to the tenant app catalog.
Which attribute should you configure in the package-solution.json file to ensure that the solution is available immediately to all site collections?

• A. skipFeatureDeployment
• B. zippedPackage
• C. ClientSideComponentId
• D. isDomainIsolated

Answer: A

Explanation:
You can configure your SharePoint Framework components to be immediately available across the tenant when the solution package is installed to the tenant app catalog. This can be configured by using the skipFeatureDeployment attribute in the package-solution.json file.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/tenant-scoped-deployment

NEW QUESTION 14

You are developing a Microsoft Team application. To host a webpage in a Teams tab, the manifest file must include the contentUrl property within the staticTabs property.
Instructions: Review the underline text. If the makes the statement correct, select ‘’ No change is needed. ‘’ If the statement is incorrect, select the answer choice that makes the statement correct.

• A. No change is needed.
• B. websiteUrl property within the configuragbleTabs property
• C. ValidDomain property within the configuragbleTabs property
• D. ValidDomain property within the statictabs property

Answer: B

NEW QUESTION 15

You need to complete the MSAL.js code for SSO. Which code segment should you insert at line 06?

• A. storeAuthStateInCookie: false
• B. storeAuthStateInCookie: true
• C. cacheLocation: ‘localStorage’
• D. cacheLocation: ‘sessionStorage’

Answer: C

Explanation:
Scenario: Implement single sign-on (SSO) and minimize login prompts across browser tabs.
When your application is open in multiple tabs and you first sign in the user on one tab, the user is also signed in on the other tabs without being prompted. MSAL.js caches the ID token for the user in the browser localStorage and will sign the user in to the application on the other open tabs.
By default, MSAL.js uses sessionStorage which does not allow the session to be shared between tabs. To get SSO between tabs, make sure to set the cacheLocation in MSAL.js to localStorage.
Reference: https://docs.microsoft.com/bs-latn-ba/Azure/active-directory/develop/msal-js-sso

NEW QUESTION 16

You have a backend service that will access the Microsoft Graph API.
You need to configure the service to authenticate by using the most secure authentication method. What should you configure the service to use?

• A. a certificate
• B. a client secret
• C. a shared key
• D. a hash

Answer: A

Explanation:
You can authenticate to the Graph API with two primary methods: AppId/Secret and certificate based authentication. Certificate is the preferred and more secure way of authenticating.
Reference: https://adamtheautomator.com/microsoft-graph-api-powershell/

NEW QUESTION 17

How can you validate that the JSON notification message is sent from the Microsoft Graph service?

• A. The ClientState must match the value provided when subscribing.
• B. The user_guid must map to a user ID in the Azure AD tenant of the customer.
• C. The tenant ID must match the tenant ID of the customer’s Office 365 tenant.
• D. The subscription ID must match the Azure subscription used by ADatum.

Answer: A

Explanation:
clientState specifies the value of the clientState property sent by the service in each notification. The maximum length is 128 characters. The client can check that the notification came from the service by comparing the value of the clientState property sent with the subscription with the value of the clientState property received with each notification.
Note: A subscription allows a client app to receive notifications about changes to data in Microsoft Graph. Reference: https://docs.microsoft.com/en-us/graph/api/resources/subscription

NEW QUESTION 18

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct select is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 19

What are two possible URIs that you can use to configure the content administration user interface? Each correct answer present a complete solution.
NOTE: Each correct selection is worth one point.

• A. Option A
• B. Option B
• C. Option C
• D. Option D

Answer: BC

NEW QUESTION 20

You are building a single-page application (SPA) that will have the following parameters:
• App Id: DBA22F72-64PA4C44-AA2C-FAA0DA5A471B
• Tenant Id: DC045C4D-5881-43C7-97AB-3C5A1ADB8DBC
• AppName: Contoso.Spa
You have a line-of-business API for invoicing that is secured by using the Microsoft identity platform. The API has the following parameters:
* App Id: 8/9A43D7-1794-47A0-AB2B-440B63FEC248
* Tenant Id: DC04SC4D S881-43C7-97AB 3C5A1ADB8DBC
* AppName: Contoso.lnvoicing
Contoso.Invoicing declares the following custom scopes:
* Invoices-Read
* Invoices. Read Write
Contoso.Spa needs to call Contoso.lnvoicing to create new invoices.
Which code should you use in Contoso.Spa to obtain an access token for Contoso.Invoicing? To answer, select the appropriate options in the answer area.
NOTE: Each correct select is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 21

You are developing an application that will run as an overnight background service on a server. The service will access web-hosted resources by using the application’s identity and the OAuth 2.0 client credentials grant flow.
You register the application and grant permissions. The tenant administrator grants admin consent to the application.
You need to get the access token from Azure Active Directory (Azure AD).
Which URI should you use for the POST request? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Oauth2 client_id client_secret
The authorization code flow begins with the client directing the user to the /authorize endpoint. Box 1: token
Use the authorization code to request an access token.
Now that you've acquired an authorization code and have been granted permission by the user, you can redeem the code for an access token to the desired resource, by sending a POST request to the /token endpoint:
Box 2: authorization_code
Use the authorization code to request an access token. Example:
// Line breaks for legibility only
POST /{tenant}/oauth2/token HTTP/1.1 Host: https://login.microsoftonline.com
Content-Type: application/x-www-form-urlencoded grant_type=authorization_code
etc.
Note: At a high level, the entire authorization flow for an application looks a bit like this:

Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/v1-protocols-oauth-code

NEW QUESTION 22

You have an application named App1 that is used to administer an Azure Active Directory (Azure AD) tenant. When administrators install Appl, they are prompted for admin consent.
Which application permission can cause the administrators to be prompted for consent?

• A. RoleManagemen
• B. Read . Directory
• C. Device.Command
• D. Device.Read
• E. Calendars.ReadWrite

Answer: A

NEW QUESTION 23
......