Topic 1, ADatum Corporation
This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end on this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.
Overview
ADatum Corporation develops a software as a service (SaaS) application named E-invoicing.
Existing Environment
Application Architecture
E-invoicing consists of a single-page application (SPA) and a backend web service that provides invoice management and processing functionality.
E-invoicing stores all the details of each invoicing operation in a backend cloud database. E-invoicing generates invoices in PDF format and provides users with the ability to download the PDF after it is generated. Each invoice has a unique identifier named invoiceid.
The users have a common workflow where they sign in to E-invoicing, and then open E-invoicing in multiple tabs of a web browser so they can use different parts of the application simultaneously.
Security Architecture
ADatum uses the principle of least privilege whenever possible. ADatum always uses the latest libraries and integration endpoints.
Requirements
Business Goals
ADatum wants to integrate E-invoicing, Azure Active Directory (Azure AD), and Microsoft Graph so that their customers can leverage Microsoft Office 365 services directly from within E-invoicing.
Planned Changes
ADatum plans to add the following capabilities to E-invoicing:
– Email the generated invoices to customers on behalf of the current signed-in user. Any emails generated by the system will contain the invoiced.
– Perform as many operations as possible in the browser without having to leave the E-invoicing application.
– Use Azure AD to manage identities, authentication, and authorization.
– Display all emails that contain a specific invoiceid.
Technical Requirements
ADatum identifies the following technical requirements for the planned E-invoicing capabilities:
– Ensure that all operations performed by E-invoicing against Office 365 are initiated by a user. Require that the user authorize E-invoicing to access the Office 365 data the first time the application attempts to access Office 365 data on the user’s behalf.
– Send scheduled reminders to customers before a payment due date. Create an administration user interface to enable the scheduled reminders.
– Implement Microsoft Graph change notifications to detect emails from vendors that arrive in a designated mailbox.
– Implement single sign-on (SSO) and minimize login prompts across browser tabs.
– Secure access to the backend web service by using Azure AD.
– Ensure that all solutions use secure coding practices.
Backend Security Planned Changes
ADatum wants to use custom application roles to map user functionality to permissions granted to users.
E-invoicing will have internal logic that will dynamically identify whether the user should be allowed to call the backend API.
SSO JavaScript Script
You plan to implement SSO with Microsoft Authentication Library (MSAL) by using the following code:
Access Token JavaScript Script
You have the following JavaScript code to obtain an access token.
Change Notification JSON
You have the following JSON message that will be sent by the Microsoft Graph service to detect the vendor emails.
Which type of authentication flow should you recommend for the planned integration with Office 365?
- A . device code
- B . implicit grant
- C . authorization code
- D . client credentials
C
Explanation:
To use Microsoft Graph to read and write resources on behalf of a user, your app must get an access token from the Microsoft identity platform and attach the token to requests that it sends to Microsoft Graph.
One common flow used by native and mobile apps and also by some Web apps is the OAuth 2.0 authorization code grant flow.
Scenario: Email the generated invoices to customers on behalf of the current signed-in user. Any emails generated by the system will contain the invoiced. Use Azure AD to manage identities, authentication, and authorization.
Reference: https://docs.microsoft.com/en-us/graph/auth-v2-user
Which URI should you use to query all the email that relate to an invoice?
- A . https://graph.microsoft.com/v1.0/me/messages?$filter=contains(subject, {invoiceid})
- B . https://graph.microsoft.com/v1.0/me/messages?$subject eq {invoiceid}
- C . https://graph.microsoft.com/v1.0/me/messages?$search="{invoiceid}"
- D . https://graph.microsoft.com/v1.0/me/messages?${invoiceid}
C
Explanation:
Reference: https://docs.microsoft.com/en-us/graph/search-query-parameter
You need to implement the role functionality for the backend web service calls.
Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
- A . Upload a certificate for the application registration of the backend web service.
- B . Modify the manifest that defines the application roles and set Allowed Member Types to Apps.
- C . Modify the manifest that defines the application roles and set Allowed Member Types to Users.
- D . Assign the application roles to the Azure AD group that contains the users who are mapped to the roles.
- E . Create a new client secret in the application registration of the backed web service.
B,D
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-add-app-roles-in-azure-ad-apps
How can you validate that the JSON notification message is sent from the Microsoft Graph service?
- A . The ClientState must match the value provided when subscribing.
- B . The user_guid must map to a user ID in the Azure AD tenant of the customer.
- C . The tenant ID must match the tenant ID of the customer’s Office 365 tenant.
- D . The subscription ID must match the Azure subscription used by ADatum.
A
Explanation:
clientState specifies the value of the clientState property sent by the service in each notification. The maximum length is 128 characters. The client can check that the notification came from the service by comparing the value of the clientState property sent with the subscription with the value of the clientState property received with each notification.
Note: A subscription allows a client app to receive notifications about changes to data in Microsoft Graph.
Reference: https://docs.microsoft.com/en-us/graph/api/resources/subscription
You need to complete the MSAL.js code for SSO.
Which code segment should you insert at line 06?
- A . storeAuthStateInCookie: false
- B . storeAuthStateInCookie: true
- C . cacheLocation: ‘localStorage’
- D . cacheLocation: ‘sessionStorage’
C
Explanation:
Scenario: Implement single sign-on (SSO) and minimize login prompts across browser tabs.
When your application is open in multiple tabs and you first sign in the user on one tab, the user is also signed in on the other tabs without being prompted. MSAL.js caches the ID token for the user in the browser localStorage and will sign the user in to the application on the other open tabs.
By default, MSAL.js uses sessionStorage which does not allow the session to be shared between tabs. To get SSO between tabs, make sure to set the cacheLocation in MSAL.js to localStorage.
Reference: https://docs.microsoft.com/bs-latn-ba/Azure/active-directory/develop/msal-js-sso
DRAG DROP
You need to protect the backend web service to meet the technical requirements.
Which four actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Here is a quick overview of the steps:
Step 1: Register an application in Azure AD for the backend web service Register an application (backend-app) in Azure AD to represent the API. Step 2: Set the App ID URI for the backend service application registration
When the application is created (step 1) select Expose an API and click on Save and continue to create an Application ID URI.
Step 3: Defend the scopes in the backend web service application registration
In the Add a scope page, create a new scope supported by the API. (e.g., Read) then click on Add scope to create the scope. Repeat this step to add all scopes supported by your API.
Step 4: Register an application in Azure AD for E-invoicing.
Step 4.1 Register another application in Azure AD to represent a client application Step 4.2 Now that you have registered two applications to represent the API and the Developer Console, you need to grant permissions to allow the client-app to call the backend-app.
Scenario:
Secure access to the backend web service by using Azure AD E-invoicing will have internal logic that will dynamically identify whether the user should be allowed to call the backend API.
You need to configure the initial login request in the access token JavaScript script.
Which you insert at line 01?
- A . const scopes = [‘https://graph.microsoft.com/.default’];
- B . const accessTokenRequest = { };
- C . const scopes = [‘https://graph.microsoft.com/Files.Read.All’, ‘https://graph.microsoft.com/Mail.Send.All’];
- D . const accessTokenRequest = {
scopes: [‘https://graph.microsoft.com/Files.ReadWrite’,
‘https://graph.microsoft.com/Mail.Send’]
};
D
Explanation:
Scenario: ADatum identifies the following technical requirements for the planned E-invoicing capabilities:
✑ Ensure that all operations performed by E-invoicing against Office 365 are initiated by a user. Require that the user authorize E-invoicing to access the Office 365 data the first time the application attempts to
access Office 365 data on the user’s behalf.
Reference: https://docs.microsoft.com/en-us/graph/permissions-reference
Which URI should you use to query all the emails that relate to an invoice?
- A . Option A
- B . Option B
- C . Option C
- D . Option D
DRAG DROP
You need to implement the role functionality for the backend web service calls.
Which three actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.
What are two possible URIs that you can use to prompt the administrators for admin consent to the E-invoicing application? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . Option A
- B . Option B
- C . Option C
- D . Option D
Topic 2, Misc. Questions
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are developing a new application named App1 that uses the Microsoft identity platform to authenticate to Azure Active Directory (Azure AD).
Currently, App1 can read user profile information.
You need to allow App1 to read the user’s calendar.
Solution: Perform a POST request against https://graph.microsoft.eom/v1.0/me/events.
Does this meet the goal?
- A . Yes
- B . No
HOTSPOT
You need to create a messaging extension search command for Microsoft Teams.
How should you complete the app manifest? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
HOTSPOT
You plan to implement a new task pane in Microsoft Office.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
HOTSPOT
You are developing a Microsoft Teams tab that will capture coordinates from mobile devices and send notifications to users.
The relevant portion of the app manifest is shown in the App Manifest exhibit. (Click the App Manifest tab.)
The relevant portion of the JavaScript code for the tab is shown in the JavaScript exhibit (Click the JavaScript tab.)
While testing the tab, a user receives the message shown in the Message exhibit. (Click the Message tab.)
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
You are developing a Microsoft Office Add-in for Microsoft Word.
Which Office Ul element can contain commands from the add-in?
- A . dialog boxes
- B . the Quick Access Toolbar (QAT)
- C . context menus
- D . task panes
You use Azure Active Directory (Azure AD) to store user identities.
The user profile information is inconsistently populated.
You need to develop a web app that will provide users with a page where they can enter their interests, skill, and description. When the user click the submit button, the app will use Microsoft graph to send the data to Azure AD.
Which HTTP method should you use against the Microsoft graph endpoint?
- A . PUT
- B . POST
- C . PATCH
- D . GET
C
Explanation:
Use PATCH to update a resource with new values.
Reference: https://docs.microsoft.com/en-us/graph/use-the-api
HOTSPOT
You have an application that has the code shown in the exhibits. (Click the JavaScript Version tab or the C# Version tab.)
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
JavaScript Version
C# Version
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: No
Box 2: No
Box 3: Yes
A file is downloaded from OneDrive and saved locally.
Drive/Root is the drive resource is the top level object representing a user’s OneDrive or a document library in SharePoint.
DRAG DROP
You plan to create a bot as part of a Microsoft Teams app. The bot will use Microsoft 365 services on behalf of a user.
You add token.botframework.com to the list of valid domains in the app manifest.
You need to configure the authentication environment to ensure that the bot can access Microsoft 365 services on behalf of the user.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Graphical user interface, text, application, chat or text message
Description automatically generated
Step 1: Create a Bot Channels Registration in Azure and register the application in Azure Active Directory (Azure AD)
Register a bot by creating a Bot Channels Registration through Azure Bot Channel Registration.
The Azure AD portal provides a central platform for you to register and configure your apps. Your app must be registered in the Azure AD portal to integrate with the identity platform and call Microsoft Graph APIs.
Step 2: Create a new OAuth Connection in the Bot Channels Registration
The first step to getting an access token for many OpenID Connect (OIDC) and OAuth 2.0 flows is to redirect the user to the Microsoft identity platform /authorize endpoint. Azure AD will sign the user in and ensure their consent for the permissions your app requests. In the authorization code grant flow, after consent is obtained, Azure AD will return an authorization_code to your app that it can redeem at the Microsoft identity platform /token endpoint for an access token.
Step 3: Set the reply URL to the web service that hosts the bot.
Fill in the Webhook (for calling) where you will receive incoming notifications. E.g.
https://{your domain}/api/calls.
You have a Microsoft 365 subscription that uses Microsoft Teams
You have a custom Teams app named Appi that queries a backend database by using an Azure web app.
You publish a new version of Appi.
Users of App1 report decreased performance.
You need to identify what caused the performance issue.
What should you do first?
- A . Enable audit logging for the subscription.
- B . From the Microsoft Teams admin center, enable the app submissions alert rule.
- C . From the Microsoft Teams admin center, run an apps usage report.
- D . Enable Application insights for App1.
You need to build a SharePoint Framework (SPFx) web part that will display the contents of a user’s Microsoft Exchange Online inbox. The solution must minimize development effort.
Which object should you include in the solution?
- A . SPHttpClient
- B . the JavaScript API for Exchange Web Services (EWS)
- C . MSGraphClient
- D . AadHttpClient
C
Explanation:
MSGraphClient is a new HTTP client introduced in SharePoint Framework v1.6.0 that simplifies connecting to the Microsoft Graph inside SharePoint Framework solutions.
With MS Graph we use MSGraphClient to get information about the current user;this.context.msGraphClientFactory
getClient()
then((client: MSGraphClient): void => {
// get information about the current user from the Microsoft Graph client
api(‘/me’)
get((error, response: any, rawResponse?: any) => {
// handle the response
});
});
Reference: https://www.c-sharpcorner.com/article/show-outlook-messages-from-microsoft-graph-in-spfx-client-side-web-part/
Which tool can you use to generate a SharePoint Framework (SPFx) solution?
- A . Eclipse
- B . App Studio
- C . Yacc
- D . Yeoman
D
Explanation:
Yeoman helps you to kickstart new projects, prescribing best practices and tools to help you stay productive. Using the Yeoman SharePoint generator, developers are able to scaffold new client-side solution projects to build, package, and deploy SharePoint solutions. The generator provides common build tools, boilerplate code, and a common playground website to host web parts for testing.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/toolchain/scaffolding-projects-using-yeomansharepoint-generator
HOTSPOT
You are creating a report that will query Azure Active Directory (Azure AD) for group information by using the Microsoft Graph API.
You need to retrieve an ordered list of groups by title. The solution must minimize the amount of data returned in the response.
How should you complete the Graph API call? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Text
Description ae authorization code flow begins with the client directing the user to tutomatically generated
Box 1: $select=..
Example:
GET https://graph.microsoft.com/v1.0/groups/{id}?$select=displayName Header: Authorization:Bearer {access_token}
Box 2: &$orderBy=Displayname
Order by title.
You are developing a new Microsoft Teams app that will contain the following functionality:
✑ Start a new chat.
✑ Prompt users to install an app.
✑ Make a Microsoft Graph API call.
✑ Trigger a search-based command.
Which two functionalities can be implemented by using a deep link? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one paint.
- A . Trigger a search-based command.
- B . Make a Microsoft Graph API call.
- C . Prompt users to install an app.
- D . Start a new chat.
C,D
Explanation:
Reference: https://docs.microsoft.com/en-us/microsoftteams/platform/concepts/build-and-test/deep-links
CORRECT TEXT
You plan to create a single-tenant console app that will use the Microsoft identity platform.
You need to ensure that the app can use the device code flow to access Microsoft Graph and read email on behalf of the authenticated user.
Which three actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
A Set Supported account types to Accounts in any organizational directory
B. Add redirect URIs.
C. Set Supported account types to Accounts in this organizational directory only
D. Enable the Default client type option.
E. From the Expose an API settings, create a custom scope.
F. Generate a client secret for the app.
HOTSPOT
You receive the following JSON document when you use Microsoft Graph to query the current signed-in user.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: Yes
Syntax: GET /me/photo/$value
Get the specified profilePhoto or its metadata (profilePhoto properties).
Example: Get the photo for the signed-in user in the largest available size GET https://graph.microsoft.com/v1.0/me/photo/$value
Box 2: Yes
Syntax: GET /users/{id | userPrincipalName}/photo/$value
Get the specified profilePhoto or its metadata (profilePhoto properties).
Box 3: Yes
Syntax: GET /users/{id | userPrincipalName}/photo/$value
Get the specified profilePhoto or its metadata (profilePhoto properties).
HOTSPOT
You have a Microsoft Teams app that contains a messaging extension. The extension creates a To Do item for a user.
You need to ensure that the extension is available only when the user is viewing a message.
How should you complete the manifest? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT
You are building a Microsoft teams application by using an outgoing webhook.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
You need to develop a SharePoint Framework (SPFx) solution that interacts with Microsoft SharePoint and Teams. The solution must share the same code base.
What should you include in the solution?
- A . Include the Microsoft Authentication Library for .NET (MSALNET) in the solution.
- B . Grant admin consent to the Teams API.
- C . Make the code aware of the Teams context and the SharePoint context.
- D . Publish the solution to an Azure App Service.
A
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-overview
DRAG DROP
You are developing a server-based application that has the following requirements:
✑ Prompt the user to fill out form that contains a keyword.
✑ Search the OneDrive for Business folder for files that contain the keyword and return the results to the user.
✑ Allow the user to select one of the files from the results.
✑ Copy the selected file to an Azure Blob storage container.
Which four actions should the application perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
DRAG DROP
You need to develop a conversational bot in Microsoft Teams.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Timeline
Description automatically generated
This question requires that you evaluate the underlined BOLD text to determine if it is correct.
You develop a Microsoft Teams application that uses a messaging extension.
Users can invoke the messaging extension from the Teams sidebar menu.
Instructions: Review the underlined text. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.
- A . No change is needed
- B . from the compose box of a Teams chat
- C . by using the Manage teams option for a team
- D . by using the Add a tab option in the Teams channel
B
Explanation:
In the app manifest for your Microsoft Teams app you’ll define a single messaging extension with up to ten different commands. Each command defines a type (action or search), and the locations in the client it can be invoked from (compose message area, command bar, and/or message).
Reference: https://docs.microsoft.com/en-us/microsoftteams/platform/messaging-extensions/what-are-messaging-extensions
You have a web app that uses the Microsoft Identity Platform.
You extend the application manifest to implement the following role-based access control (RBAC).
When you attempt to save the manifest you receive a validation error.
Which key value pair should you modify to resolve the error?
- A . id
- B . isEnable
- C . appId
- D . allowedMemberTypes
HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
Box 1: No
Box 2: Yes
Partial table lists the events that your bot can receive and take action on.
Graphical user
interface, text, application, email
Description automatically generated
Box 3: Yes
The messageReaction event is sent when a user adds or removes his or her reaction to a message which was originally sent by your bot.
HOTSPOT
You are building a web app that will display the Microsoft Exchange Online Inbox of a user. The app will maintain a copy of the user’s Inbox data and regularly check for updates. You need to configure the Microsoft Graph URI for the app. The solution must minimize network traffic.
How should you complete the request URI? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
DRAG DROP
You are developing an application that will upload files that are larger than 50 MB to Microsoft OneDrive.
You need to recommend an upload solution to ensure that the file upload process can resume if a network error occurs during the upload.
Which four actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Graphical user interface, text, application
Description automatically generated
Step 1: Create an upload session that gets the uploadUrl value
To upload a file using an upload session, there are two steps:
DRAG DROP
You are developing an application that will upload files that are larger than 50 MB to Microsoft OneDrive.
You need to recommend an upload solution to ensure that the file upload process can resume if a network error occurs during the upload.
Which four actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Graphical user interface, text, application
Description automatically generated
Step 1: Create an upload session that gets the uploadUrl value
To upload a file using an upload session, there are two steps:
DRAG DROP
You are developing an application that will upload files that are larger than 50 MB to Microsoft OneDrive.
You need to recommend an upload solution to ensure that the file upload process can resume if a network error occurs during the upload.
Which four actions should you perform in sequence? To answer, move the actions from the list of actions to the answer area and arrange them in the correct order.
Explanation:
Graphical user interface, text, application
Description automatically generated
Step 1: Create an upload session that gets the uploadUrl value
To upload a file using an upload session, there are two steps:
This question requires that you evaluate the BOLD text to determine if it is correct.
Microsoft Visual Studio Code contains samples that you can use to quickly prototype a Microsoft Office Web Add-in for Microsoft Word.
Instructions: Review the underlined text. If it makes the statement correct, select "No change is needed." If the statement is incorrect, select the answer choice that makes the statement correct.
- A . No change is needed.
- B . Microsoft AppSource
- C . The Office Ul Fabric
- D . The Script Lab add-in
D
Explanation:
The Script Lab and Script Lab for Outlook add-ins, available free from AppSource, enable you to explore the Office JavaScript API while you’re working in an Office program such as Excel or Outlook. Script Lab is a convenient tool to add to your development toolkit as you prototype and verify functionality you want in your own add-in.
Reference: https://docs.microsoft.com/en-us/office/dev/add-ins/overview/explore-with-script-lab
HOTSPOT
You have an app named App1 that uses the Microsoft Graph API.
You need to identify all users who have a job title of Developer. The solution must return only the display name and email address attributes of the users.
How should you complete the Microsoft Graph API query? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface
Description automatically generated
This question requires that you evaluate the underlined BOLD text to determine if it is correct.
You can use App Studio for Microsoft Teams to develop all the components of a bot application.
Instructions: Review the underlined text. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.
- A . No change is needed
- B . configure a Teams tab in an application
- C . develop a SharePoint Framework (SPFx) web part
- D . provision a bot by using the Bot Framework
B
Explanation:
Tabs provide a place for you to display for rich interactive web content. You can define both personal and team tabs.
There can be only 1 team tab per app, but up to 16 personal tabs per app.
Reference: https://blog.thoughtstuff.co.uk/2019/04/what-is-app-studio-in-microsoft-teams-and-why-do-i-care/
You are building a Microsoft Outlook Web Add-in.
You need to persist user preferences between devices by using the minimum amount of development effort.
Which API should you use?
- A . the Microsoft Graph API
- B . the REST API for the Blob service
- C . the JavaScript API for Microsoft Office
- D . the Table service REST API
C
Explanation:
You can persist add-in state and settings with the JavaScript API for Office. The JavaScript API for Office provides the Settings, RoamingSettings, and CustomProperties objects for saving add-in state across sessions
Reference: https://docs.microsoft.com/en-us/office/dev/add-ins/develop/persisting-add-in-state-and-settings
You company has a third-party invoicing web app.
You need to display the app within Microsoft Teams for one user only. The app will not require conversational
interactions.
How should you display the app by using the minimum amount of effort?
- A . Instruct the user to add a website tab
- B . Instruct the user to add an App Studio app
- C . Create a SharePoint Framework (SPFx) web part
- D . Create a search-based messaging extension
A
Explanation:
There are currently three methods of app integration in Teams: Connectors, Bots, and Tabs. Tabs offer more extensive integration by allowing you to view entire third-party services within Microsoft Teams.
Reference: https://www.sherweb.com/blog/office-365/o365-microsoft-teams-apps/
You are building email notifications for an expensing system.
When a user receives an email notification, the email will contain a comment field. When the user submits a comment, the data will be returned to the expensing system for processing.
What should you do to implement the notification by using the minimum amount of development effort?
- A . Create a Microsoft Office Add-in that has an action pane to display the notifications
- B . Leverage Microsoft Graph notifications
- C . Leverage the Azure SignalR Service and implement web notifications
- D . Configure the expensing system to send actionable messages
D
Explanation:
Whether you are filling out a survey, approving an expense report, or updating a CRM sales opportunity, Actionable Messages enable you to take quick actions right from within Outlook. Developers can now embed actions in their emails or notifications, elevating user engagement with their services and increasing organizational productivity.
Office 365 provides two solutions to enhance productivity with Outlook Actionable Messages: actionable messages via email, and actionable messages via Office 365 Connectors.
Reference: https://docs.microsoft.com/en-us/outlook/actionable-messages/
You develop a web API named WebApi1.
When validating a token received from a client application, WebApi1 receives a MsalUiRequiredException exception from the Microsoft Identity Platform.
You need to ensure that the client application has the information required to complete the authentication.
Which header should you include in the HTTP response sent from WebApi1 to the client application?
- A . Accept
- B . Authorization
- C . WWW-Authenticate
- D . Access-Control-Allow-Credentials
C
Explanation:
Reference: https://docs.microsoft.com/en-us/dotnet/api/system.net.http.headers.httpresponseheaders.wwwauthenticate?view=net-5.0
You are building an app that will use the Microsoft Graph API and the Microsoft identity platform to enable users to perform the following tasks:
• Sign in to Azure AD.
• View all the Microsoft 365 groups that they own.
Each week, the app will also email the users a list of the Microsoft 365 groups to which
they belong.
You need to identify which permissions to assign to the app. The solution must use the principle of least privilege.
What should you identify?
- A . User.Read delegated, Group.Read application, and Mail.Send delegated permissions
- B . User.Read delegated. Group.Read delegated, and Mail.Send delegated permissions
- C . User.Read delegated, User.Read application, Group.Read application, and Mail.Send application permissions
- D . User.Read delegated. Group.Read delegated, Group.Read application, and Mail.Send application permissions
HOTSPOT
You have an app that uses the Microsoft Graph API.
The app will perform the following actions in sequence:
✑ Update a user’s city to Redmond.
✑ Retrieve the current user’s profile.
You need to implement batching for the app.
Which HTTP methods should you use in the batch request? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a custom web app that uses the Microsoft Graph API.
You receive an HTTP 403 Forbidden error when you call the Microsoft Graph endpoint.
What are two possible causes of the error? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . The access token is valid but corresponds to a different endpoint.
- B . The Authorization header is missing from the HTTP request.
- C . The requested resource does not exist.
- D . The API permissions are insufficient to call the requested resource.
- E . The access token is invalid.
A,D
Explanation:
Reference: https://docs.microsoft.com/en-us/graph/resolve-auth-errors
DRAG DROP
You have a Microsoft 365 subscription that uses Microsoft Teams.
You need to build a Teams app named Appl that has the following requirements:
• The action command must use the parameters contained in the manifest
• The search command must be run when the app is launched.
How should you complete the manifest? To answer, drag the appropriate values to the correct targets. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
You have a Microsoft Power Platform solution named Solution1 that contains a Microsoft Power Apps app named App1 and multiple Microsoft Power Automate flows.
You need to integrate Solution 1 and Microsoft Teams.
What are two ways to achieve this goal? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . Publish App1 to a Teams channel.
- B . Add a Teams tab to App1.
- C . Add a Power Automate flow message action to a Teams channel message.
- D . Use a calling bot to call a user and play an audio file when a Power Automate flow request is approved.
HOTSPOT
You are building a new tab as part of a new Microsoft Teams application. Users will experience the tab privately.
How should you complete the application manifest? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You plan to develop a new way for users to generate tickets in a support system by filling out a form that pops up in a Microsoft Teams app.
You already have the built form in an existing web app.
You need to ensure that the existing form can be hosted in a custom tab in a Microsoft Teams app.
Which three actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
- A . Invoke the microsoftTeams.tasks.startTask() function.
- B . Create a custom tab that references the Microsoft Teams JavaScript API.
- C . Point the TaskInfo.card property to the URL of the existing form.
- D . Create a configuration page.
- E . Point the TaskInfo.url property to the URL of the existing form.
A,C,E
Explanation:
Reference: https://docs.microsoft.com/en-us/microsoftteams/platform/task-modules-and-cards/task-modules/task-modules-tabs
You plan to develop a Microsoft Teams bot tghat will return product information to users by using an adaptive card.
You need to card to contain a button that will invoke a web search for the product.
What should use?
- A . An action-based messaging extension
- B . A task module
- C . A search-based messaging extension
- D . An outgoing webhook
You have a line-of-business API that is secured by using Azure Active Directory (Azure AD).
You deploy a solution to the app catalog. The solution requests permission to the API.
What should you do in the SharePoint admin center to ensure that the solution can access the API?
- A . Create a SharePoint security group and add the solution
- B . Create an access policy
- C . Enable sandbox solutions
- D . Approve a pending permission request
D
Explanation:
Developers building a SharePoint Framework solution that requires access to specific resources secured with Azure AD list these resources along with the required permission scopes in the solution manifest. When deploying the solution package to the app catalog, SharePoint creates permission requests and prompts the administrator to manage the requested permissions. For each requested permission, tenant administrators can decide whether they want to grant or deny the specific permission.
All permissions are granted to the whole tenant and not to a specific application that has requested them.
When the tenant administrator grants a specific permission, it is added to the SharePoint Online Client
Extensibility Azure AD application, which is provisioned by Microsoft in every Azure AD and which is used by the SharePoint Framework in the OAuth flow to provide solutions with valid access tokens.
HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: Yes
Using the isolated web parts capability, you can build web parts that securely communicate with APIs secured with Azure AD without exposing the access token to other components on the page or even scripts in the tenant.
When deploying these solutions to the app catalog, all API permission requests are specified as isolated.
Box 2: Yes
Even though on runtime isolated web parts will be loaded inside an iframe pointing to a unique domain, you can communicate with SharePoint REST API, the same way as you would in non-isolated web parts.
Box 3: Yes
If you’re upgrading an existing SharePoint Framework project to v1.8.0 and want to use the isolated permissions capability, you can do it, by setting in the config/package-solution.json file, the isDomainIsolated property to true. You should ensure, that your project contains only web parts.
After changing the project to use isolated permissions, you should redeploy your project. This will issue new API permission requests, isolated to your solution, which will need to be approved by the tenant admin.
This question requires that you evaluate the underlined text to determine if it is correct.
Centralized deployments for Microsoft Office Add-ins require Office Online Server.
Instructions: Review the underlined text. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.
- A . No change is needed
- B . Azure Active Directory (Azure AD)
- C . Azure AD Connect
- D . an Azure web app
A
Explanation:
Centralized deployment of add-ins requires that the users are using Office 365 ProPlus (and are signed into Office using their Organizational ID), and have Exchange Online and active Exchange Online mailboxes.
Reference: https://docs.microsoft.com/en-us/office365/admin/manage/centralized-deployment-of-add-ins
You are developing a SharePoint Framework (SPFx) web part.
Which API should you use to retrieve the Microsoft Teams memberships of a user by using the minimum
amount of code?
- A . MSGraphClient
- B . AadHttpClient
- C . SPHttpClient
- D . XMLHttpRequest
A
Explanation:
You can use the Microsoft Graph API to work with Microsoft Teams. In Microsoft Graph, Microsoft Teams is represented by a group resource.
If you are targeting Microsoft Graph, you can use the MSGraphClient client object, which provides a more
fluent syntax compared to AadHttpClient.
Note: In versions of the SharePoint Framework starting with v.1.4.1, you can access Microsoft Graph by using either the native graph client (MSGraphClient), or the low-level type used to access any Azure AD-secured REST API (AadHttpClient).
The AadHttpClient client object is useful for consuming any REST API. You can use it to consume Microsoft Graph or any other third-party (or first-party) REST API.
The MSGraphClient client object can consume the Microsoft Graph only. Internally it uses the AadHttpClient client object and supports the fluent syntax of the Microsoft Graph SDK.
References:
https://docs.microsoft.com/en-us/graph/api/resources/teams-api-overview?view=graph-rest-1.0
https://docs.microsoft.com/en-us/sharepoint/dev/spfx/use-aad-tutorial
You plan to deploy a SharePoint Framework (SPFx) solution to the tenant app catalog.
Which attribute should you configure in the package-solution.json file to ensure that the solution is available immediately to all site collections?
- A . skipFeatureDeployment
- B . zippedPackage
- C . ClientSideComponentId
- D . isDomainIsolated
A
Explanation:
You can configure your SharePoint Framework components to be immediately available across the tenant when the solution package is installed to the tenant app catalog. This can be configured by using the skipFeatureDeployment attribute in the package-solution.json file.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/tenant-scoped-deployment
DRAG DROP
You are building a Microsoft Teams bot by using the Microsoft Bot Framework SDK.
You need to configure the bot to send proactive messages to users with whom the bot has NOT interacted.
Which three actions should the bot perform m sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
You have an application that uses the Microsoft Graph API.
You need to configure the application to retrieve the groups to which the current signed-in user belongs. The results must contain the extended priorities of the groups.
Which URI should you use?
- A . https://graph.microsoft.com/v1.0/me/getMemberObjects
- B . https://graph.microsoft.com/v1.0/me/getMemberGroups
- C . https://graph.microsoft.com/v1.0/me/memberOf
- D . https://graph.microsoft.com/v1.0/me/checkMemberGroups
B
Explanation:
Get member groups returns all the groups that the specified user, group, or directory object is a member of. This function is transitive.
Reference: https://docs.microsoft.com/en-us/graph/api/directoryobject-getmembergroups
You are building a Microsoft Outlook add-in.
Which object should you use to save a user’s preferences between sessions and devices?
- A . localStorage
- B . RoamingSettlngs
- C . CustomXMLParts
- D . CustomProperties
B
Explanation:
The user’s Exchange server mailbox where the add-in is installed. Because these settings are stored in the user’s server mailbox, they can "roam" with the user and are available to the add-in when it is running in the context of any supported client accessing that user’s mailbox.
Reference: https://docs.microsoft.com/en-us/office/dev/add-ins/outlook/manage-state-and-settings-outlook
You have a Microsoft Teams app that includes a task module. You need to invoke the task module.
What should you use?
- A . a link in a tab, a deep link, Of an activity feed only
- B . a bot, a link in a tab, or a deep link only
- C . a connector, a webhook, or a bot only
- D . a link in a tab, a webhook, or a connector only
You develop a Microsoft Teams app named App1. You need to create a package for App1.
Which files should you include in the package?
- A . the executable file, an outline image, and a manifest XML file
- B . a client certificate, an outline image, and a manifest XML file
- C . the client-side code, an app icon, and a manifest JSON file
- D . an outline image, an app icon, and a manifest JSON file
You plan to develop a SharePoint Framework (SPFx) web part by using the ReactJS framework.
You need to ensure that all the web part fields and controls adopt the theme of the site when you deploy the web part. The solution must minimize development effort.
What should you include in the solution?
- A . Fluent Ul
- B . HTML5andCSS
- C . Microsoft Fluid Framework
- D . Material-UI
HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: Yes
The Adaptive Cards Designer provides a drag-and-drop experience to quickly build and tweak adaptive cards.
Outlook Actionable Messages cards are designed using the Adaptive Card format. The Adaptive Card format is a simple yet powerful declarative layout format that provides a lot of flexibility, allowing for visually rich cards. In this topic we’ll cover the Outlook-specific features of the Adaptive Card format.
Box 2: Yes
The actionable message card is in JSON format.
Box 3: No
By default, the Tenant Administrator can create, edit, clone, and delete tenants, and manage user accounts.
Note:
To enable Actionable Messages the recipient of the task must be an Office 365 customer with permissions for the SharePoint online site.
No: Office 365 administrators can disable actionable messages via the Set-OrganizationConfig cmdlet. If actionable messages do not render, check with your administrator to make sure the feature is enabled in your organization.
Adaptive Cards Designer Microsoft outlook actionable messages
References:
https://docs.microsoft.com/en-us/outlook/actionable-messages/adaptive-card
https://gingkoapp.com/create-tenant-administrator.html
You are creating a web app that will use the Microsoft Graph API to read and send email.
The app needs to have access to only the current users mailbox. The solution must use the principle of least privilege.
Which Microsoft Graph API permissions should you grant for the app?
- A . delegated mailSend
- B . delegated Mail.Read and Mail.Send
- C . application Hail.Read andMail.Send
- D . application Mail.Readwrite
You have a backend service that will access the Microsoft Graph API.
You need to configure the service to authenticate by using the most secure authentication method.
What should you configure the service to use?
- A . a certificate
- B . a client secret
- C . a shared key
- D . a hash
A
Explanation:
You can authenticate to the Graph API with two primary methods: AppId/Secret and certificate based authentication. Certificate is the preferred and more secure way of authenticating.
Reference: https://adamtheautomator.com/microsoft-graph-api-powershell/
HOTSPOT
You have a Microsoft 365 tenant that contains a Microsoft SharePoint Online site named Projects.
You need to get a list of documents in the Documents library by using the Microsoft Graph API.
How should you complete the query? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text
Description automatically generated
You have a SharePoint Framework (SPFx) web part that includes the manifest shown in the following exhibit.
Which task can the web part perform?
- A . Send an email on behalf of a mail-enabled group.
- B . Send an email as another user.
- C . Send an email as the current user.
- D . Send an email as the web part.
C
Explanation:
In SPFx we will get the user context using the object “context”. We have msGraphClientFactory available in the same object which will take care of generating the Access Token based on the user context.
Reference: https://www.c-sharpcorner.com/article/how-to-send-email-using-graph-api-in-sharepoint-framework-spfx/
HOTSPOT
You have a Microsoft 365 subscription that uses Microsoft Teams.
You create a PowerShell scrip1 named Teams.ps1 to provision Teams for a testing environment that contains the following commands.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
HOTSPOT
You are developing an app that will use the Microsoft Graph API to retrieve the emails of signed-in users. The app will return the email subject and send date of messages marked as high importance.
Which OData query options should you use to complete the HTTP GET request? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
You have a custom Microsoft Word add-in that was written by using Microsoft Visual Studio Code.
A user reports that there is an issue with the add-in.
You need to debug the add-in for Word Online.
What should you do before you begin debugging in Visual Studio Code?
- A . Disable script debugging in your web browser
- B . Sideload the add-in
- C . Publish the manifest to the Microsoft SharePoint app catalog
- D . Add the manifest path to the trusted catalogs
C
Explanation:
Debug your add-in from Excel or Word on the web
To debug your add-in by using Office on the web (see step 3):
HOTSPOT
You have a web app that uses the Microsoft Identity Platform.
You need to configure authentication for the app to allow sign-ins for the following user accounts:
✑ Users from your company
✑ Users from another company that has Azure Active Directory (Azure AD) user accounts
How should you complete the application manifest? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application
Description automatically generated
You develop a custom messaging extension to translate messages in a Microsoft Teams chat.
You need to provide users with the ability to invoke the extension from the More actions menu of a message.
What should you do?
- A . Add an Adaptive Card-based task module to a tab.
- B . Add an incoming webhook to the Microsoft Teams bot.
- C . Specify the command for the extension in the manifest file.
- D . Add an outgoing webhook to the Microsoft Teams bot.
D
Explanation:
Outgoing webhooks allow you to send messages to external systems from Teams. They are used in a very similar way to bots: you @mention them on a chat or channel, and then type your message. The difference is that when you send the message, it will go directly to the external system or service (e.g., your HR system). There isn’t a custom-built bot background service in between. The external service then completes a task based on the message and can reply back to the user in Teams.
Note: If you are just looking for a simple way of integrating an existing external system to Teams, webhooks can offer you a very quick and easy solution for that.
There are three different types of webhooks:
✑ Outgoing webhooks (for sending a message from Teams to an external system
✑ Incoming webhooks (for sending a message from an external system to Teams)
✑ Connectors (productized/packaged webhooks by you, Microsoft or third parties)
Reference: https://laurakokkarinen.com/how-we-can-extend-teams-with-custom-apps-the-non-technical-explanation/
DRAG DROP
You are developing a web app that will display emails from the Microsoft 365 mailbox of the current signed-in user.
For performance reasons, you do not want all the emails to be loaded simultaneously, rather page-by-page as the user navigates the app.
You plan to display 30 emails per page. The most recent emails must be displayed first.
How should you complete the query parameters for the REST request to display the third page of emails? To answer, drag the appropriate query parameters to the correct targets. Each query parameter may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content. NOTE: Each correct selection is worth one point.
Explanation:
A picture containing diagram
Description automatically generated
Box 1: top
Number of items to return in a result
Box 2: skip
$skip Indexes into a result set. Also used by some APIs to implement paging and can be used together with $top to manually page results.
You have a custom API that is secured by using Azure Active Directory (Azure AD). You need to call the API from within a SharePoint Framework (SPFx) web part.
Which object should you use to call the API?
- A . AadHttpClient
- B . MSGraphClient
- C . SPMttpCHent
- D . XMLHttpRequest
B
Explanation:
By using the AadHttpClient, you can easily connect to APIs secured by using Azure AD without having to implement the OAuth flow yourself.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/use-aadhttpclient
HOTSPOT
You are building an app that will use Microsoft Graph to retrieve the users in the finance department of your company.
How should you complete the request URL? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
HOTSPOT
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: No
Box 2: No
The manifest is in XML format.
Box 3: Yes
Source Location is required and specifies the source file location(s) for your Office Add-in as a URL between 1 and 2018 characters long. The source location must be an HTTPS address, not a file path.
References:
https://docs.microsoft.com/en-us/office/dev/add-ins/develop/add-in-manifests
https://docs.microsoft.com/en-us/office/dev/add-ins/reference/manifest/sourcelocation
HOTSPOT
You are creating an app manifest for Microsoft Teams.
You need to create a team tab and a personal tab. The team tab must be scoped for group chat.
How should you complete the manifest? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, email
Description automatically generated
You are developing a serveries application that reads all the emails in the Inbox of a specific Microsoft 365 mailbox. Some emails contain meeting dates and room mailbox names.
The application has the following requirements:
- A . Option A
- B . Option B
- C . Option C
- D . Option D
HOTSPOT
You have an app that queries Azure Active Directory (Azure AD) by using the Microsoft Graph API.
You need to minimize the number of times users are prompted for their credentials.
How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
HOTSPOT
You have an app that queries Azure Active Directory (Azure AD) by using the Microsoft Graph API.
You need to minimize the number of times users are prompted for their credentials.
How should you complete the code? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, application, email
Description automatically generated
11.0. You need to ensure that WebPartA can be installed as an app in Microsoft Teams.
What should you do?
- A . Update the WebPartA.manifest.json file.
- B . Update the Config.json file.
- C . Upload WebPartA to the Microsoft Teams app catalog.
- D . From a command prompt, run the yo @microsoft/sharepoint command.
A
Explanation:
Update the web part manifest to make it available for Microsoft Teams.
Locate the ./src/webparts/**/manifest.json file for the web part you’ll use as the tab for the meeting app solution. Locate the supportedHosts property to include "TeamsTab".
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/build-for-teams-meeting-app#update-the-web-part-manifest-to-make-it-available-for-microsoft-teams
You need to develop a client-side web app that will be registered with the Microsoft identity platform.
Which type of authorization flow should you use?
- A . authorization code grant
- B . device code grant
- C . implicit grant
- D . client credentials grant
HOTSPOT
For each of the following statements, select Yes, if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
Explanation:
Box 1: No
Box 2: No
The manifest is in XML format.
Box 3: Yes
source Location is required and specifies the source file location(s) for your Office Add-in as a URL between 1 and 2021 characters long. The source location must be an HTTPS address, not a file path.
HOTSPOT
You have an application that has the code shown in the exhibits. (Click the JavaScript Version tab or the C# Version tab.)
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
JavaScript Version
C# Version
Explanation:
Graphical user interface, text, application
Description automatically generated
Box 1: Yes
Unified is specified in the code.
Note: You can create the following types of groups:
Office 365 group (unified group)
Security group
Box 2: Yes
A member is added to the group.
Box 3: No
Box 4: No
You need to publish build status messages to a Microsoft Teams channel.
Solution: You create an app that monitors the build pipeline, and you configure an outgoing webhook by using the URL for the app.
Does this meet the goal?
- A . Yes
- B . No
You are developing a Microsoft Office Add-in for Word.
You need to persist the user state across sessions by using the Office JavaScript API.
Which two objects can you use to persist the state? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . CustomXMLParts
- B . RoamlngSeccings
- C . Settings
- D . CustomProperties
C,D
Explanation:
Settings: Office application support by Word, Excel, or PowerPoint.
The document, spreadsheet, or presentation the add-in is working with. Content and task pane add-in settings are available to the add-in that created them from the document where they are saved.
CustomXmlParts: Office application support by Word (using the Office JavaScript Common API) Excel (using the application-specific Excel JavaScript API.
The document, spreadsheet, or presentation the add-in is working with.
Reference: https://docs.microsoft.com/en-us/office/dev/add-ins/develop/persisting-add-in-state-and-settings
You have a third-party API that is secured by using Azure Active Directory (Azure AD).
You need to configure a SharePoint Framework (SPFx) web part to consume the third-party API.
Which method should you use?
- A . aadHccpCliencFaccory()
- B . ExecuteQuery()
- C . ClientConcexc()
- D . msGraphCliencFaccory()
A
Explanation:
The AadHttpClient client object is useful for consuming any REST API. You can use it to consume Microsoft Graph or any other third-party (or first-party) REST API.
To consume any REST API using the AadHttpClient client object, create a new instance of the AadHttpClient type by calling the context.aadHttpClientFactory.getClient() method and providing the URI of the target service.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/use-aad-tutorial
HOTSPOT
You have a Microsoft Teams app that contains a conversational bot. The bot uses task modules to reply to users. When the bot receives a new message, the following code is executed before a response is sent back to the user to decide whether the bot should continue the conversation.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, text, table
Description automatically generated
This question requires that you evaluate the bold text to determine if it is correct.
You can use a Command Set extension to develop a breadcrumb element that will appear on every Microsoft SharePoint page.
Instructions: Review the underlined text. If it makes the statement correct, select “No change is needed”. If the statement is incorrect, select the answer choice that makes the statement correct.
- A . No change is needed
- B . an Application Customizer
- C . a Field Customizer
- D . a web part
B
Explanation:
Application Customizers provide access to well-known locations on SharePoint pages that you can modify based on your business and functional requirements. For example, you can create dynamic header and footer experiences that render across all the pages in SharePoint Online.
Reference: https://docs.microsoft.com/en-us/sharepoint/dev/spfx/extensions/get-started/using-page-placeholder-with-extensions
HOTSPOT
You have a Microsoft Teams channel that has a custom incoming webhook.
You need to send a message of “Hello World!” to the channel that uses the incoming webhook.
How should you complete the PowerShell command? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user interface, application, Word
Description automatically generated
Box 1: POST
Invoke-RestMethod-Methodpost-ContentType’Application/Json’-
Body'{"text":"HelloWorld!"}’-Uri<URLofthewebhookyoucopied>
Box 2: ‘{"text":"HelloWorld!"}’
HOTSPOT
You create a personal bot that you plan to distribute as a Microsoft Teams team app.
The bot has the following app manifest.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point
