Microsoft 365 Certified Endpoint Administrator (MD-102) Practice Test

Disable ads (and more) with a membership for a one time $4.99 payment

Prepare for the Microsoft 365 Certified Endpoint Administrator exam. Utilize flashcards and multiple choice questions with hints and explanations. Get exam-ready now!

Practice this question and more.

Which group type should an Endpoint Administrator use to manage access for users in a merged organization?

Dynamic groups
Assigned groups
Mail-enabled security groups
Distribution groups

The correct answer is: Dynamic groups

In a merged organization scenario, dynamic groups are the most suitable choice for managing access for users. Dynamic groups automatically adjust membership based on user attributes defined within Azure Active Directory, such as department, location, or job title. This is particularly beneficial in a merged organization where user profiles may change frequently due to organizational restructuring or policy updates. Using dynamic groups allows for efficient management of user access without requiring manual intervention for updates. As new users are added to the organization or existing users' attributes change (for example, after a merger), the membership of the dynamic group will automatically reflect these changes. This promotes better security and access management by ensuring that users have the correct permissions based on their current roles and responsibilities. In contrast, assigned groups require manual assignment of users and do not adjust membership dynamically, which can be cumbersome in a rapidly changing organizational landscape. Mail-enabled security groups and distribution groups are primarily used for sending communications to a group of users rather than managing their access to resources, making them less suitable for the specific requirement of managing access in a merged organization.