Which Windows PowerShell cmdlet should you run?

You plan to deploy an Office 365 tenant to multiple offices around the country.
You need to modify the users and groups who are authorized to administer the Rights Management service.
Which Windows PowerShell cmdlet should you run?

You plan to deploy an Office 365 tenant to multiple offices around the country.
You need to modify the users and groups who are authorized to administer the Rights Management service.
Which Windows PowerShell cmdlet should you run?

A.
Add-MsolGroupMember

B.
Get-Add rm Role Based Administrator

C.
Remove-AadrmRoleBasedAdministrator

D.
Enable AadrmSuperUserFeature

Explanation:
The Enable-AadrmSuperUserFeature cmdlet enables the super user feature. With this feature enabled, you
can add or remove super users for Azure Rights Management. By default, the super users feature is not
enabled, and no users are assigned to this feature. By enabling this feature we can modify the users and
groups that are able to administer the Rights Management service.

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *

five × 2 =

danajo

danajo

C. Remove-AadrmRoleBasedAdministrator

You need to modify the users and groups who are authorized to administer the Rights Management service.

You don’t need to enable the aadrmsuperuserfeauture
When this feature is enabled, any users that are defined as super users for your organization (individually or by the super user group) can decrypt content that your organization protected, and can remove protection from this content, even if an expiration date has been set and expired.

Reply

Hitokiri

Hitokiri

The trick is in the first part of the question “You plan to deploy an Office 365 tenant to multiple offices around the country” so you don’t have any user that can administer the Rights Management service, in that order of ideas the correct answer is Enable AadrmSuperUserFeature because you need add them not remove them

Reply