ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MD-102 All Questions

View all questions & answers for the MD-102 exam
Go to Exam

Exam MD-102 topic 1 question 23 discussion

Actual exam question from Microsoft's MD-102
Question #: 23
Topic #: 1
[All MD-102 Questions]

DRAG DROP -
You have a Microsoft 365 subscription that includes Microsoft Intune.
You need to implement a Microsoft Defender for Endpoint solution that meets the following requirements:
Enforces compliance for Defender for Endpoint by using Conditional Access
Prevents suspicious scripts from running on devices
What should you configure? To answer, drag the appropriate features to the correct requirements. Each feature may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by krzysztofbr at Aug. 15, 2023, 3:07 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
JP1900
Highly Voted 1 year, 9 months ago
Without an Intune connection, how can the policies apply? The original answer is correct.
upvoted 11 times
...
MR_Eliot
Highly Voted 1 year, 3 months ago
Enforces compliance for Defender for Endpoint by using Conditional Access - A Device Restriction policy. After which you can configure conpliance policu, and conditional access policy to disallow non-compliant devices. Prevents suspicious scripts from running on devices - An attack surface reduction. Trust me on this. I do this a lot!
upvoted 5 times
CheMetto
2 weeks, 5 days ago
compliance policy are not related to device restriction policy. I can create a compliance policy without having a device restriction. Also we are not talking about both policies! We are talking abount Compliance for defender for endpoint, which is managed by security.microsoft.com, so all it need is to turn on the connector.
upvoted 1 times
...
wakka9876
4 months, 3 weeks ago
Experience does not imply competence, please provide evidence and stop saying this every time you comment, it makes you less trustworthy every time you say it
upvoted 3 times
...
Rylz
9 months, 3 weeks ago
I've searched for the "Device Restriction policy" in intune and i did not find anything related to that name so i think that this answare is incorrect
upvoted 1 times
...
7798da3
11 months ago
I believe your logic but the Microsoft practice tests do the same thing connection before policy these exams are so convoluted. LOL
upvoted 1 times
...
Load full discussion...
...
mikekrt
Most Recent 3 months ago
First one is a device restriction policy, It asks you specifically to enforce it. an intune connection is not enforcing anything.
upvoted 1 times
...
SaiK1234
1 year, 3 months ago
The original answer is correct. Establish a connection and then you can enforce. second is ASR
upvoted 2 times
...
Amir1909
1 year, 4 months ago
Correct
upvoted 1 times
...
NoursBear
1 year, 6 months ago
Configure Microsoft Defender for Endpoint in Intune Sign-in to the Microsoft 365 Defender portal – https://security.microsoft.com/ Select Settings > Endpoints > Advanced features > enable Microsoft Intune connection. https://support.blackpointcyber.com/article/125-microsoft-intune-defender-for-endpoint-setup-guide
upvoted 3 times
OyYaGotta
1 year, 3 months ago
This comment explains the vague "an Intune Connection" answer. It's within the 365 Defender Portal. Unusual that the answers are this vague so best to take the literally.
upvoted 1 times
...
...
iTomi
1 year, 6 months ago
This is strange and tricky question, but I would choose "an intune connection" and ASR. If you go to Intune -> Endpoint security -> Microsoft Defender for Endpoint -> Allow Microsoft Defender for Endpoint to enforce Endpoint Security Configurations You need to create connection between Intune and Defender before you can use it.
upvoted 1 times
iTomi
1 year, 5 months ago
https://learn.microsoft.com/fi-fi/mem/intune/protect/advanced-threat-protection-configure Use the information and procedures in this article to configure integration of Microsoft Defender for Endpoint with Intune. CONFIGURATION INCLUDES THE FOLLOWING GENERAL STEPS: - Establish a service-to-service connection between Intune and Microsoft Defender for Endpoint. - Use Intune policy to onboard devices with Microsoft Defender for Endpoint. You onboard devices to configure them to communicate with Microsoft Defender for Endpoint and to provide data that helps assess their risk level. - Use Intune device compliance policies to set the level of risk you want to allow. Microsoft Defender for Endpoint reports a devices risk level. - Use a conditional access policy to block users from accessing corporate resources from devices that are noncompliant. - Use app protection policies for Android and iOS/iPadOS, to set device risk levels.
upvoted 2 times
...
...
VirtualJP
1 year, 8 months ago
I believe this answer to be correct
upvoted 3 times
...
mail2bala3011
1 year, 9 months ago
Seems like the answer is correct: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-conditional-access?view=o365-worldwide
upvoted 3 times
krzysztofbr
1 year, 9 months ago
You are wrong Intune connection doesn't enforce antyhing
upvoted 1 times
iTomi
1 year, 5 months ago
Question is "what should you configure?" Based on this you start configuration creating connections between defender and intune. https://learn.microsoft.com/fi-fi/mem/intune/protect/advanced-threat-protection-configure
upvoted 1 times
...
Futfuyfyjfj
1 year, 8 months ago
No you are wrong compliance policy checks are device checkin dependent. Although this answer is not very well specified, its still the best one: https://learn.microsoft.com/en-us/mem/intune/configuration/device-profile-troubleshoot
upvoted 1 times
...
...
...
krzysztofbr
1 year, 9 months ago
the second part about ASR seems correct but enforces comliance "intune connection" it should be security baseline i guess. this is set off seetings relevant for compliance requirements
upvoted 3 times
Futfuyfyjfj
1 year, 9 months ago
I agree the answer is vague, but Intune enforces online compliance checks. Therefore an active intune connection is required. So Intune connection here is the best of the worst I guess. https://learn.microsoft.com/en-us/mem/intune/configuration/device-profile-troubleshoot
upvoted 4 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel