ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-200 All Questions

View all questions & answers for the SC-200 exam
Go to Exam

Exam SC-200 topic 1 question 63 discussion

Actual exam question from Microsoft's SC-200
Question #: 63
Topic #: 1
[All SC-200 Questions]

Note: This section contains one or more sets of questions with the same scenario and problem. Each question presents a unique solution to the problem. You must determine whether the solution meets the stated goals. More than one solution in the set might solve the problem. It is also possible that none of the solutions in the set solve the problem.

After you answer a question in this section, you will NOT be able to return. As a result, these questions do not appear on the Review Screen.

You have a Microsoft 365 subscription.

You have 1,000 Windows devices that have a third-party antivirus product installed and Microsoft Defender Antivirus in passive mode.

You need to ensure that the devices are protected from malicious artifacts that were undetected by the third-party antivirus product.

Solution: You configure Controlled folder access.

Does this meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Shingie at Dec. 30, 2024, 9:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Shingie
Highly Voted 5 months, 2 weeks ago
Selected Answer: B
Answer: B. No Configuring Controlled Folder Access does not meet the goal. Controlled Folder Access is a feature of Microsoft Defender Antivirus that protects specific folders from unauthorized changes by ransomware or other malicious apps. However, this feature requires Microsoft Defender Antivirus to be active and does not address the scenario where Defender Antivirus is in passive mode due to the presence of a third-party antivirus. To meet the goal of protecting the devices from malicious artifacts undetected by the third-party antivirus, you should enable EDR in block mode. EDR in block mode works even when Microsoft Defender Antivirus is in passive mode, allowing Microsoft Defender for Endpoint to remediate threats missed by the third-party antivirus. Thus, configuring Controlled Folder Access is not the correct solution in this scenario.
upvoted 5 times
...
a_kto_to
Most Recent 2 months, 1 week ago
Selected Answer: B
ChatGTP: ❌ No, the solution does NOT meet the goal. ⚠️ Explanation: Controlled Folder Access (CFA) is a Microsoft Defender Antivirus feature that helps protect files from unauthorized changes by ransomware and other untrusted apps. However: Controlled Folder Access only works when Microsoft Defender Antivirus is in active mode. Since Defender Antivirus is in passive mode (because a third-party antivirus is installed), CFA is not active or enforced. Therefore, CFA will not provide protection in this scenario.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel