You are a global administrator in a company with a Microsoft 365 subscription with Microsoft Defender for Office 365 Plan 1 license assigned to your users. You have configured Safe Attachments and Safe Links policies for your users, and you want to simulate a phishing attack on your users using the Credential harvest technique within the Microsoft Defender platform. What should you do?

Answer options:

A.Upgrade to Microsoft Defender for Office 365 Plan 2
B.In the Microsoft 365 Defender portal – Email and collaboration – Attack simulation training, Launch a simulation
C.Hire a consultant to perform the attacks manually
D.Create an anti-phishing protection policy

Correct Answer: A 
The attack simulation training feature requires a Microsoft Defender for Office 365 Plan 2 license. See exhibit from Microsoft documentation: 

Option B is incorrect. This is way to enable attack simulation, but first you need a Plan 2 license assigned to your users.
Option C is incorrect. Not correct, you want to utilize the attack simulation feature within Defender for Office 365.
Option D is incorrect. This will help prevent phishing attempts but will not enable you to simulate an attack.
Reference: 
To know more about attack simulator possibilities, please refer to the link below: 

https://docs.microsoft.com/en-us/microsoft-365/security/office-365-security/attack-simulation-training?view=o365-worldwide