Prepare Better for the MS-102 Exam with Our Free and Reliable MS-102 Exam Questions – Updated for 2025.

At Cert Empire, we are committed to offering the most accurate and up-to-date exam questions for students preparing for the Microsoft MS-102 Exam. To support effective preparation, we’ve made parts of our MS-102 exam resources free for everyone. You can practice as much as you want with Free MS-102 Practice Test.

Get MS-102 Exam Dumps

Microsoft MS-102 Free Exam Questions

Disclaimer

Please keep a note that the demo questions are not frequently updated. You may as well find them in open communities around the web. However, this demo is only to depict what sort of questions you may find in our original files.

Nonetheless, the premium exam dumps files are frequently updated and are based on the latest exam syllabus and real exam questions.

1 / 60

You have a Microsoft 365 subscription.
All users are assigned Microsoft 365 Apps for enterprise licenses.
You need to ensure that reports display the names of users that have activated Microsoft 365 apps and on how many devices.
What should you modify in the Microsoft 365 admin center?

The Reports reader role

Organization information

Org settings for Reports

Org settings for Privacy profile

2 / 60

You have a Microsoft 365 subscription.
You need to be notified to your personal email address when a Microsoft Exchange Online service issue occurs.
What should you do?

From the Exchange admin center, create a contact

From the Microsoft Outlook client, configure an Inbox rule

From the Microsoft 365 admin center, update the technical contact details

From the Microsoft 365 admin center, customize the Service health settings

3 / 60

You have a Microsoft 365 E5 subscription that uses Endpoint security.
You need to create a group and assign the Endpoint Security Manager role to the group.
Which type of group can you use?

Security only

Microsoft 365 only

Mail-enabled security and security only

Mail-enabled security, Microsoft 365, and security only

Distribution, mail-enabled security, Microsoft 365, and security

4 / 60

You have a Microsoft 365 E5 subscription that is linked to an Azure AD tenant named contoso.com.

You purchase 100 Microsoft 365 Business Voice add-on licenses.

You need to ensure that the members of a group named Voice are assigned a Microsoft 365 Business Voice add-on license automatically.

What should you do?

From the Microsoft 365 admin center, modify the settings of the Voice group

From the Licenses page of the Microsoft 365 admin center, assign the licenses

From the Microsoft Entra admin center, modify the settings of the Voice group

5 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the users shown in the following table.

The domain syncs to an Azure AD tenant named contoso.com as shown in the exhibit. (Click the Exhibit tab.)

User2 fails to authenticate to Azure AD when signing in as [email protected].
You need to ensure that User2 can access the resources in Azure AD.
Solution: From the on-premises Active Directory domain, you assign User2 the Allow logon locally user right. You instruct User2 to sign in as [email protected].
Does this meet the goal?

Yes

6 / 60

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the Exchange Administrator role.
Does this meet the goal?

Yes

7 / 60

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft Entra admin center, you assign SecAdmin1 the Security Administrator role.
Does this meet the goal?

Yes

8 / 60

You have a Microsoft 365 E5 subscription.
You create an account for a new security administrator named SecAdmin1.
You need to ensure that SecAdmin1 can manage Microsoft Defender for Office 365 settings and policies for Microsoft Teams, SharePoint, and OneDrive.
Solution: From the Microsoft 365 admin center, you assign SecAdmin1 the SharePoint Administrator role.
Does this meet the goal?

Yes

9 / 60

You have a Microsoft 365 E5 subscription.
You define a retention label that has the following settings:

Retention period: 7 years -
Start the retention period based on: When items were created
You need to prevent the removal of the label once the label is applied to a file.
What should you select in the retention label settings?

Mark items as a record

Mark items as a regulatory record

Retain items forever or for a specific period

Retain items even if users delete

10 / 60

You have a Microsoft 365 subscription.
Your company has a customer ID associated to each customer. The customer IDs contain 10 numbers followed by 10 characters. The following is a sample customer ID: 12-456-7890-abc-de-fghij.
You plan to create a data loss prevention (DLP) policy that will detect messages containing customer IDs.
What should you create to ensure that the DLP policy can detect the customer IDs?

A sensitivity label

A retention label

A PowerShell script

A sensitive information type

11 / 60

You have a Microsoft 365 E5 tenant.
You create a retention label named Retention1 as shown in the following exhibit.

When users attempt to apply Retention1, the label is unavailable.
You need to ensure that Retention1 is available to all the users.
What should you do?

Create a new label policy

Modify the Authority type setting for Retention1

Use a file plan CSV template to import Retention1

Modify the Business function/department setting for Retention1

12 / 60

You have a Microsoft 365 subscription.
You have the retention policies shown in the following table.

Both policies are applied to a Microsoft SharePoint site named Site1 that contains a file named File1.docx.
File1.docx was created on January 1, 2022 and last modified on January 31,2022. The file was NOT modified again.
When will File1.docx be deleted automatically?

January 1, 2023

January 1, 2024

January 31, 2023

January 31, 2024

Never

13 / 60

Your network contains an on-premises Active Directory domain named contoso.com.
For all user accounts, the Logon Hours settings are configured to prevent sign-ins outside of business hours.
You plan to sync contoso.com to an Azure AD tenant
You need to recommend a solution to ensure that the logon hour restrictions apply when synced users sign in to Azure AD.
What should you include in the recommendation?

Conditional access policies

Password synchronization

Pass-through authentication

Azure AD Identity Protection policies

14 / 60

You have a Microsoft 365 E5 subscription that has published sensitivity labels shown in the following exhibit.

Which labels can users apply to content?

Label1, Label2, and Label5 only

Label3, Label4, and Label6 only

Label1, Label3, Label4, and Label6 only

Label1, Label2, Label3, Label4, Label5, and Label6

15 / 60

You have a Microsoft 365 subscription.
You configure a data loss prevention (DLP) policy.
You discover that users are incorrectly marking content as false positive and bypassing the DLP policy.
You need to prevent the users from bypassing the DLP policy.
What should you configure?

Actions

Exceptions

User overrides

Incident reports

16 / 60

You have a Microsoft 365 E5 subscription that contains the groups shown in the following table.

You plan to publish a sensitivity label named Label1.
To which groups can you publish Label1?

Group1 only

Group1 and Group2 only

Group1 and Group4 only

Group1, Group2, and Group3 only

Group1, Group2, Group3, and Group4

17 / 60

Your network contains three Active Directory forests. There are forests trust relationships between the forests.
You create an Azure AD tenant.
You plan to sync the on-premises Active Directory to Azure AD.
You need to recommend a synchronization solution. The solution must ensure that the synchronization can complete successfully and as quickly as possible if a single server fails.
What should you include in the recommendation?

One Azure AD Connect sync server and one Azure AD Connect sync server in staging mode

Three Azure AD Connect sync servers and one Azure AD Connect sync server in staging mode

Six Azure AD Connect sync servers and three Azure AD Connect sync servers in staging mode

Three Azure AD Connect sync servers and three Azure AD Connect sync servers in staging mode

18 / 60

You have a hybrid deployment of Microsoft 365 that contains the users shown in the following table.

Azure AD Connect has the following settings:

Password Hash Sync: Enabled -
Pass-through authentication: Enabled
You need to identify which users will be able to authenticate by using Azure AD if connectivity between on-premises Active Directory and the internet is lost.
Which users should you identify?

User1 only

User1 and User2 only

User1, User2, and User3

None

19 / 60

Your network contains an Active Directory domain.
You deploy an Azure AD tenant.
Another administrator configures the domain to synchronize to Azure AD.
You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to Azure AD. All the other user accounts synchronized successfully.
You review Azure AD Connect Health and discover that all the user account synchronizations completed successfully.
You need to ensure that the 10 user accounts are synchronized to Azure AD.
Solution: You run idfix.exe and export the 10 user accounts.
Does this meet the goal?

Yes

20 / 60

Your network contains an Active Directory domain.
You deploy an Azure AD tenant.
Another administrator configures the domain to synchronize to Azure AD.
You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to Azure AD. All the other user accounts synchronized successfully.
You review Azure AD Connect Health and discover that all the user account synchronizations completed successfully.
You need to ensure that the 10 user accounts are synchronized to Azure AD.
Solution: From the Synchronization Rules Editor, you create a new outbound synchronization rule.
Does this meet the goal?

Yes

21 / 60

Your network contains an Active Directory domain.
You deploy an Azure AD tenant.
Another administrator configures the domain to synchronize to Azure AD.
You discover that 10 user accounts in an organizational unit (OU) are NOT synchronized to Azure AD. All the other user accounts synchronized successfully.
You review Azure AD Connect Health and discover that all the user account synchronizations completed successfully.
You need to ensure that the 10 user accounts are synchronized to Azure AD.
Solution: From Azure AD Connect, you modify the Azure AD credentials.
Does this meet the goal?

Yes

22 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the users shown in the following table.

The domain syncs to an Azure AD tenant named contoso.com as shown in the exhibit. (Click the Exhibit tab.)

User2 fails to authenticate to Azure AD when signing in as [email protected].
You need to ensure that User2 can access the resources in Azure AD.
Solution: From the Microsoft Entra admin center, you add fabrikam.com as a custom domain. You instruct User2 to sign in as [email protected].
Does this meet the goal?

Yes

23 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the users shown in the following table.

The domain syncs to an Azure AD tenant named contoso.com as shown in the exhibit. (Click the Exhibit tab.)

User2 fails to authenticate to Azure AD when signing in as [email protected].
You need to ensure that User2 can access the resources in Azure AD.
Solution: From the on-premises Active Directory domain, you set the UPN suffix for User2 to @contoso.com. You instruct User2 to sign in as [email protected].
Does this meet the goal?

Yes

24 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the users shown in the following table.

The domain syncs to an Azure AD tenant named contoso.com as shown in the exhibit. (Click the Exhibit tab.)

User2 fails to authenticate to Azure AD when signing in as [email protected].
You need to ensure that User2 can access the resources in Azure AD.
Solution: From the Microsoft Entra admin center, you assign User2 the Security Reader role. You instruct User2 to sign in as [email protected].
Does this meet the goal?

Yes

25 / 60

Your on-premises network contains an Active Directory domain.
You have a Microsoft 365 subscription.
You need to sync the domain with the subscription. The solution must meet the following requirements:
On-premises Active Directory password complexity policies must be enforced.
Users must be able to use self-service password reset (SSPR) in Azure AD.
What should you use?

Azure AD Identity Protection

Password hash synchronization

Pass-through authentication

Azure AD Seamless Single Sign-On (Azure AD Seamless SSO)

26 / 60

You have a Microsoft 365 E5 subscription that contains a user named User1.
User1 exceeds the default daily limit of allowed email messages and is on the Restricted entities list.
You need to remove User1 from the Restricted entities list.
What should you use?

The Exchange admin center

The Microsoft Entra admin center

The Microsoft 365 Defender portal

The Microsoft Purview compliance portal

27 / 60

You have a Microsoft 365 tenant that contains two users named User1 and User2.
You create the alert policy shown in the following exhibit.

User2 runs a script that modifies a file in a Microsoft SharePoint library once every four minutes and runs for a period of two hours.
How many alerts will User1 receive?

28 / 60

You have an Azure AD tenant and a Microsoft 365 E5 subscription. The tenant contains the users shown in the following table.

You plan to implement Microsoft Defender for Endpoint.
You verify that role-based access control (RBAC) is turned on in Microsoft Defender for Endpoint.
You need to identify which user can view security incidents from the Microsoft 365 Defender portal.
Which user should you identify?

User1

User2

User3

User4

29 / 60

You are reviewing alerts in the Microsoft 365 Defender portal.
How long are the alerts retained in the portal?

30 days

60 days

3 months

6 months

12 months

30 / 60

You have a Microsoft 365 subscription that contains the domains shown in the following exhibit.

Which domain name suffixes can you use when you create users?

only Sub1.contoso221018.onmicrosoft.com

onlycontoso221018.onmicrosoft.com and Sub2.contoso221018.onmicrosoft.com

only contoso221018.onmicrosoft.com, Sub.contoso221018.onmicrosoft.com, and Sub2.contoso221018.onmicrosoft.com

all the domains in the subscription

31 / 60

You have a Microsoft 365 subscription.
You need to add additional onmicrosoft.com domains to the subscription. The additional domains must be assignable as email addresses for users.
What is the maximum number of onmicrosoft.com domains the subscription can contain?

32 / 60

You have a Microsoft 365 E5 subscription.
You plan to implement Microsoft Purview policies to meet the following requirements:
Identify documents that are stored in Microsoft Teams and SharePoint that contain Personally Identifiable Information (PII).
Report on shared documents that contain PII.
What should you create?

An alert policy

A retention policy

A data loss prevention (DLP) policy

A Microsoft Defender for Cloud Apps policy

33 / 60

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Endpoint.
When users attempt to access the portal of a partner company, they receive the message shown in the following exhibit.

You need to enable user access to the partner company's portal.
Which Microsoft Defender for Endpoint setting should you modify?

Indicators

Advanced hunting

Alert suppression

Alert notifications

Custom detections

34 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains the objects shown in the following table.

You configure Azure AD Connect to sync contoso.com to Azure AD.
Which objects will sync to Azure AD?

Group1 only

User1 and User2 only

Group1 and User1 only

Group1, User1, and User2

35 / 60

You have a Microsoft 365 E5 subscription.
You need to compare the current Safe Links configuration to the Microsoft recommended configurations.
What should you use?

Microsoft Purview

The configuration analyzer

Microsoft Secure Score

Azure AD Identity Protection

36 / 60

Your network contains an on-premises Active Directory domain named contoso.com. The domain contains 1,000 Windows 10 devices.
You perform a proof of concept (PoC) deployment of Microsoft Defender for Endpoint for 10 test devices. During the onboarding process, you configure Microsoft Defender for Endpoint-related data to be stored in the United States.
You plan to onboard all the devices to Microsoft Defender for Endpoint.
You need to store the Microsoft Defender for Endpoint data in Europe.
What should you do first?

Create a workspace

Delete the workspace

Offboard the test devices

Onboard a new device

37 / 60

You have a Microsoft 365 subscription.
You configure a new Azure AD enterprise application named App1. App1 requires that a user be assigned the Reports Reader role.
Which type of group should you use to assign the Reports Reader role and to access App1?

A security group that has assigned membership

A security group that has dynamic user membership

A Microsoft 365 group that has assigned membership

A Microsoft 365 group that has dynamic user membership

38 / 60

You have a Microsoft 365 subscription.
You have an Azure AD tenant that contains the users shown in the following table.

You configure Tenant properties as shown in the following exhibit.

Which users will be contacted by Microsoft if the tenant experiences a data breach?

User1 only

User2 only

User3 only

User1 and User2 only

User2 and User3 only

39 / 60

You have a Microsoft 365 subscription that contains the users shown in the following table.

You need to configure group-based licensing to meet the following requirements:
To all users, deploy an Office 365 E3 license without the Power Automate license option.
To all users, deploy an Enterprise Mobility + Security E5 license.
To the users in the research department only, deploy a Power BI Pro license.
To the users in the marketing department only, deploy a Visio Plan 2 license.
What is the minimum number of deployment groups required?

40 / 60

You have a Microsoft 365 E5 subscription.
Conditional Access is configured to block high-risk sign-ins for all users.
All users are in France and are registered for multi-factor authentication (MFA).
Users in the media department will travel to various countries during the next month.
You need to ensure that if the media department users are blocked from signing in while traveling, the users can remediate the issue without administrator intervention.
What should you configure?

Named locations

An exclusion group

The MFA registration policy

Self-service password reset (SSPR)

41 / 60

You have a Microsoft 365 E5 subscription that contains the following user:

Name: User1 -

UPN: [email protected] -
Email address: [email protected]

MFA enrollment status: Disabled -
When User1 attempts to sign in to Outlook on the web by using the [email protected] email address, the user cannot sign in.
You need to ensure that User1 can sign in to Outlook on the web by using [email protected].
What should you do?

Reset the password of User1

Modify the UPN of User1

Add an alternate email address for User1

Assign an MFA registration policy to User1

42 / 60

You have a Microsoft 365 E5 subscription.
Users access Microsoft 365 from both their laptop and a corporate Virtual Desktop Infrastructure (VDI) solution.
From Azure AD Identity Protection, you enable a sign-in risk policy.
Users report that when they use the VDI solution, they are regularly blocked when they attempt to access Microsoft 365.
What should you configure?

A trusted location

A Conditional Access policy exclusion

The Tenant restrictions settings in Azure AD

The Microsoft 365 network connectivity settings

43 / 60

You have a Microsoft 365 E5 subscription.
From the Microsoft 365 Defender portal, you plan to export a detailed report of compromised users.
What is the longest time range that can be included in the report?

1 day

7 days

30 days

90 days

44 / 60

Your company has 10,000 users who access all applications from an on-premises data center.
You plan to create a Microsoft 365 subscription and to migrate data to the cloud.
You plan to implement directory synchronization.
User accounts and group accounts must sync to Azure AD successfully.
You discover that several user accounts fail to sync to Azure AD.
You need to resolve the issue as quickly as possible.
What should you do?

Run idfix.exe, and then click Edit

Run idfix.exe, and then click Complete

From Windows PowerShell, run the start-AdSyncSyncCycle -PolicyType Delta command

From Active Directory Administrative Center, search for all the users, and then modify the properties of the user accounts

45 / 60

You have a Microsoft E5 subscription.
You need to ensure that administrators who need to manage Microsoft Exchange Online are assigned the Exchange Administrator role for five hours at a time.
What should you implement?

A conditional access policy

Azure AD Identity Protection

Groups that have dynamic membership

A communication compliance policy

Azure AD Privileged Identity Management (PIM)

46 / 60

You have a Microsoft 365 subscription.
You plan to implement Microsoft Purview Privileged Access Management.
Which Microsoft Office 365 workloads support privileged access?

Microsoft Teams only

Microsoft Exchange Online only

Microsoft Teams and SharePoint Online only

Microsoft Exchange Online and SharePoint Online only

Microsoft Teams, Exchange Online, and SharePoint Online

47 / 60

Your network contains an Active Directory domain named adatum.com that is synced to Azure AD.
The domain contains 100 user accounts.
The city attribute for all the users is set to the city where the user resides.
You need to modify the value of the city attribute to the three-letter airport code of each city.
What should you do?

From Azure Cloud Shell, run the Get-ADUser and Set-ADUser cmdlets

From Azure Cloud Shell, run the Get-MgUser and Update-MgUser cmdlets

From Windows PowerShell on a domain controller, run the Get-ADUser and Set-ADUser cmdlets

From Windows PowerShell on a domain controller, run the Get-MgUser and Update-MgUser cmdlets

48 / 60

You have a Microsoft 365 subscription that contains a user named User1.
User1 requires admin access to perform the following tasks:
Manage Microsoft Exchange Online settings.
Create Microsoft 365 groups.
You need to ensure that User1 only has admin access for eight hours and requires approval before the role assignment takes place.
What should you use?

Conditional Access

Microsoft Entra Verified ID

Azure AD Identity Protection

Azure AD Privileged Identity Management (PIM)

49 / 60

You have a Microsoft 365 E5 tenant.
Users store data in the following locations:

Microsoft Teams -

Microsoft OneDrive -

Microsoft Exchange Online -

Microsoft SharePoint -
You need to retain Microsoft 365 data for two years.
What is the minimum number of retention policies that you should create?

50 / 60

You have a Microsoft 365 subscription.
You register two applications named App1 and App2 to Azure AD.
You need to ensure that users who connect to App1 require multi-factor authentication (MFA). MFA is required only for App1. What should you do?

From Multi-Factor Authentication, configure the service settings

From the Microsoft Entra admin center, create a conditional access policy

From the Microsoft 365 admin center, configure the Modem authentication settings

From the Enterprise applications blade of the Microsoft Entra admin center, configure the Users settings

51 / 60

You have a Microsoft 365 E5 subscription that contains the resources shown in the following table.

You create a sensitivity label named Label1.
To which resource can you apply Label1?

Site1 only

Group1 only

Group2 only

Group1 and Group2 only

Group1, Group2, and Site1

52 / 60

You have a Microsoft 365 E5 subscription.
You plan to create a data loss prevention (DLP) policy that will be applied to all available locations.
Which conditions can you use in the DLP rules of the policy?

Keywords

Sensitivity labels

Sensitive info types

Content search queries

53 / 60

You have a Microsoft 365 subscription that uses Microsoft Defender for Office 365.
You need to ensure that users are prevented from opening or downloading malicious files from Microsoft Teams, OneDrive, or SharePoint Online.
What should you do?

Create a new Anti-phishing policy

Create a new Anti-malware policy

Configure the Safe Links global settings

Configure the Safe Attachments global settings

54 / 60

You have a Microsoft 365 tenant.
You plan to manage incidents in the tenant by using the Microsoft 365 Defender.
Which Microsoft service source will appear on the Incidents page of the Microsoft 365 Defender portal?

Azure Arc

Microsoft Sentinel

Microsoft Defender for Identity

Microsoft Defender for Cloud

55 / 60

You have a Microsoft 365 E5 subscription.
You need to create Conditional Access policies to meet the following requirements:
All users must use multi-factor authentication (MFA) when they sign in from outside the corporate network.
Users must only be able to sign in from outside the corporate network if the sign-in originates from a compliant device.
All users must be blocked from signing in from outside the United States and Canada.
Only users in the R&D department must be blocked from signing in from both Android and iOS devices.
Only users in the finance department must be able to sign in to an Azure AD enterprise application named App1. All other users must be blocked from signing in to App1.
What is the minimum number of Conditional Access policies you should create?

56 / 60

Your network contains an Active Directory forest named contoso.local.
You purchase a Microsoft 365 subscription.
You plan to move to Microsoft 365 and to implement a hybrid deployment solution for the next 12 months.
You need to prepare for the planned move to Microsoft 365.
What is the best action to perform before you implement directory synchronization? More than one answer choice may achieve the goal. Select the BEST answer.

Create an external forest trust

Purchase a custom domain name

Rename the Active Directory forest

Purchase a third-party X.509 certificate

57 / 60

You have a new Microsoft 365 E5 tenant.
You need to enable an alert policy that will be triggered when an elevation of Microsoft Exchange Online administrative privileges is detected.
What should you do first?

Enable auditing

Enable Microsoft 365 usage analytics

Create an Insider risk management policy

Create a communication compliance policy

58 / 60

Your company has a Microsoft 365 E5 subscription.
Users in the research department work with sensitive data.
You need to prevent the research department users from accessing potentially unsafe websites by using hyperlinks embedded in email messages and documents. Users in other departments must not be restricted.
What should you do?

Create a new safe links policy

Modify the safe links policy Global settings

Create a data loss prevention (DLP) policy that has a Content is shared condition

Create a data loss prevention (DLP) policy that has a Content contains condition

59 / 60

Your company has a Microsoft 365 subscription.
You need to identify all the users in the subscription who are licensed for Office 365 through a group membership. The solution must include the name of the group used to assign the license.
What should you use?

Reports in the Microsoft 365 admin center

Active users in the Microsoft 365 admin center

Reports in Microsoft Purview compliance portal

The Licenses blade in the Microsoft Entra admin center

60 / 60

You have a Microsoft 365 subscription.
You view the Service health Overview as shown in the following exhibit.

You need to ensure that a user named User1 can view the advisories to investigate service health issues.
Which role should you assign to User1?

Reports Reader

Message Center Reader

Compliance Administrator

Service Support Administrator

Your score is

The average score is 72%

By Wordpress Quiz plugin

Free MS-102 Practice Questions – 2025 Updated

Prepare Better for the MS-102 Exam with Our Free and Reliable MS-102 Exam Questions – Updated for 2025.

Disclaimer

[email protected]

Helpful links

top Vendors

Contact Us

[email protected]

FLASH OFFER

avail $6 DISCOUNT on YOUR PURCHASE