ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MD-102 All Questions

View all questions & answers for the MD-102 exam
Go to Exam

Exam MD-102 topic 1 question 257 discussion

Actual exam question from Microsoft's MD-102
Question #: 257
Topic #: 1
[All MD-102 Questions]

You have a Microsoft 365 subscription that contains 500 computers that run Windows 11. The computers are Azure AD joined and are enrolled in Microsoft Intune.

You plan to manage Microsoft Defender Antivirus on the computers.

You need to prevent users from disabling Microsoft Defender for Endpoint.

What should you do?

  • A. From the Microsoft Intune admin center, create an attack surface reduction (ASR) policy.
  • B. From the Microsoft 365 Defender portal, enable tamper protection.
  • C. From the Microsoft Intune admin center, create an account protection policy.
  • D. From the Microsoft Entra admin center, create a Conditional Access policy.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by mp34 at Jan. 19, 2024, 10:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
OigresMG
8 months, 2 weeks ago
It seems that the correct option is: B. From the Microsoft 365 Defender portal, enable tamper protection.
upvoted 1 times
...
Nizhnoynovogorod
1 year ago
Selected Answer: B
B - Enable Tamer Protection
upvoted 2 times
...
MR_Eliot
1 year, 3 months ago
B is correct.
upvoted 1 times
...
Krayzr
1 year, 4 months ago
Is this the LAST QUESTION you see? And leave a comment if you took the exam pls
upvoted 1 times
Krayzr
1 year, 3 months ago
Total Questions are 269 as of 2024.03.08
upvoted 5 times
...
...
Merrybob
1 year, 4 months ago
Selected Answer: B
B. From the Microsoft 365 Defender portal, enable tamper protection. Ref: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/manage-tamper-protection-intune?view=o365-worldwide#:~:text=Tamper%20protection%20helps%20protect%20certain%20security%20settings%2C%20such%20as%20virus%20and%20threat%20protection%2C%20from%20being%20disabled%20or%20changed.
upvoted 3 times
...
Pasado
1 year, 4 months ago
Chatgpt: The correct option to prevent users from disabling Microsoft Defender for Endpoint is B. From the Microsoft 365 Defender portal, enable tamper protection.
upvoted 2 times
...
Krayzr
1 year, 4 months ago
Selected Answer: B
To prevent users from disabling Microsoft Defender for Endpoint, you can use Group Policy to hide the Microsoft Defender Antivirus interface from users and prevent them from pausing scans 12. This will ensure that users cannot disable Microsoft Defender Antivirus on their endpoints. Therefore, the correct answer is B. From the Microsoft 365 Defender portal, enable tamper protection 3. Tamper protection is a feature that prevents malicious actors from disabling Microsoft Defender Antivirus and other security features on endpoints. It is available in Microsoft Defender for Endpoint Plan 1 and Plan 2 3. Option A is incorrect because attack surface reduction (ASR) policies are used to reduce the attack surface of an organization’s devices by blocking or restricting certain types of activities 1. Option C is incorrect because account protection policies are used to protect user accounts from unauthorized access 1. Option D is incorrect because Conditional Access policies are used to control access to cloud apps and services based on specific conditions 1. Bing AI said ...
upvoted 2 times
...
algar6767
1 year, 4 months ago
Respuesta correcta es la C: hay que crear un politica desde endpoint security/antivirus No existe el portal de microsft 365 defender y te ponen al final lo de tamper protecion para que te equivoques ENDPOINT ADMIN CENTER /ENDPOINT SECURITY/ANTIVIRUS /CREAR POLICY/ WINDOWS SECURITY ENTERPRISE/CONFIGURATON SETTINGS, DEFENDER, TAAMPERPROTECTION ENDPOINT ADMIN CENTER /ENDPOINT SECURITY/ANTIVIRUS /CREAR POLICY/ WINDOWS SECURITY ENTERPRISE/CONFIGURATON SETTINGS, DEFENDER, TAAMPERPROTECTION
upvoted 1 times
...
IcE
1 year, 5 months ago
Selected Answer: B
Tamper protection
upvoted 3 times
...
NoursBear
1 year, 5 months ago
It's B without a doubt, this question is event a few pages before
upvoted 1 times
...
mp34
1 year, 5 months ago
I think it is tamper protection. I have just checked the account protection settings, and you can configure Windows Hello, security keys for sign in and Credential Guard
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel