ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam
Go to Exam

Exam MS-102 topic 1 question 204 discussion

Actual exam question from Microsoft's MS-102
Question #: 204
Topic #: 1
[All MS-102 Questions]

HOTSPOT
-

You have a Microsoft 365 E5 tenant that connects to Microsoft Defender for Endpoint.

You have devices enrolled in Microsoft Intune as shown in the following table.



You plan to use risk levels in Microsoft Defender for Endpoint to identify whether a device is compliant. Noncompliant devices must be blocked from accessing corporate resources.

You need to identify which devices can be onboarded to Microsoft Defender for Endpoint, and which Endpoint security policies must be configured.

What should you identify? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by Casticod at Sept. 7, 2023, 9:39 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Casticod
Highly Voted 1 year, 8 months ago
I believe the answer to the second question is device configuration policy, device compliance policy and conditional access. https://www.examtopics.com/discussions/microsoft/view/65484-exam-ms-101-topic-2-question-86-discussion/
upvoted 49 times
imlearningstuffagain
1 year, 6 months ago
Yup: Configuration policy, so it will know how configure Compliance policy, so it will know what de device must meet. Conditional Access Policy, so you can block if needed
upvoted 8 times
stib
1 year, 1 month ago
Just checked in a tenant. I can create a Configuration Profile and Compliance Policy for Windows, Android, iOS and more. Then a Conditional Access policy is needed where the Grant option needs a tick in the checkbox for complaint devices.
upvoted 2 times
...
...
ExamCheater1993
1 year, 7 months ago
I agree with this guy.
upvoted 3 times
...
DiligentSam
1 year, 7 months ago
Agree with Casticod
upvoted 1 times
...
...
Frank_2022
Most Recent 3 weeks, 3 days ago
Box1: All devices Box2: A conditional access policy only
upvoted 1 times
...
Tr619899
7 months, 2 weeks ago
1. Devices that can be onboarded to Microsoft Defender for Endpoint: Device1, 2, 3 and 4 2. Endpoint security policies that must be configured: A Device Configuration profile, a CA policy, and Device Compliance policy
upvoted 2 times
...
Tomtom11
1 year ago
https://learn.microsoft.com/en-us/mem/intune/protect/advanced-threat-protection#onboard-devices-by-using-a-configuration-profile
upvoted 1 times
...
m2L
1 year, 4 months ago
For the second choice you just need a conditional access policy, By creating a conditional access Policy, you can filter devices by configuring the option "Device Filtering"
upvoted 1 times
...
itguys
1 year, 4 months ago
You cannot configure device policies for iOS and Android - they need to be App protection policies. For all devices listed - just a compliance and a CA policy will fulfill the requirement.
upvoted 1 times
BJS78
11 months, 3 weeks ago
It is about Device Configuration Profile, not a Policy, and that you can create. App protection policy is a bit different.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago