ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-101 All Questions

View all questions & answers for the MS-101 exam
Go to Exam

Exam MS-101 topic 3 question 94 discussion

Actual exam question from Microsoft's MS-101
Question #: 94
Topic #: 3
[All MS-101 Questions]

HOTSPOT -
You have a Microsoft 365 E5 tenant that contains 500 Windows 10 devices and a Windows 10 compliance policy.
You deploy a third-party antivirus solution to the devices.
You need to ensure that the devices are marked as compliant.
Which three settings should you modify in the compliance policy? To answer, select the appropriate settings in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-create-windows
by otday at July 1, 2021, 10:51 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rogertheyoung
Highly Voted 3 years, 9 months ago
My 2 cents: If you disable 'Microsoft Defender Antimalware' setting the other Microsoft Defender options are greyed out. So you only need to configure the first one. The other two settings could be to set 'Antivirus'and 'Antispyware' to Require. These would check the third party antivirus tooling to be up-to-date.
upvoted 33 times
encxorblood
3 years, 8 months ago
Correct.
upvoted 2 times
...
hans333
3 years, 1 month ago
Agreed, and tested, its correct.
upvoted 2 times
...
Requi3m
3 years, 9 months ago
This seems to be correct. The reference link in the answer says the Microsoft Defender Antimalware setting controls the Defender service. If that's disabled, the other Defender settings wouldn't matter. The installation of 3rd party antivirus/antimalware software would disable Defender on Windows 10 automatically, but I'm not sure what the effect would be if you leave the Defender Antimalware enabled in a policy. Would that result in Defender running in passive mode, like the link IrvSus provided says it can be configured as? Or would that result in conflicts/errors? Antivirus and Antispyware allow: "Check compliance using antivirus/antispyware solutions that are registered with Windows Security Center".
upvoted 2 times
...
bac0n
2 years, 5 months ago
This does seem to be the right answer. As rogertheyoung said if you disable Microsoft Defender Antimalware it greys out the bottom options. If you highlight the info icon beside Antivirus it says "Require any Antivirus solution registered with Windows security center to be on and monitoring (e.g DigiCert, Microsoft Defender). Windwos security center is referring to the actual security center on your machine, you can search it in the task bar and it'll take you to the windows 10 settings where you can see your 3rd party antivirus is configured. This would mean that the compliance actions here will actually enforce the antivirus present in these settings.
upvoted 3 times
bac0n
2 years, 5 months ago
Also, I just checked our corporate tenant and these are the exact settings that we have configured and we use a third-party app for antivirus.
upvoted 1 times
...
...
...
TesterDude
Highly Voted 3 years, 9 months ago
Antivirus = Required Microsoft Defender Antimalware = Not Configured Microsoft Defender Antimalware security intelligence = Not Configured Question says nothing about encryption nor firewall so no need to change those. See question 288: https://www.cert2brain.com/Server/Demo.aspx?exam=MS-101
upvoted 16 times
Kalzonee3611
3 years, 2 months ago
This is correct. I have this setup in production
upvoted 1 times
...
...
Zip1
Most Recent 1 year, 11 months ago
Microsoft Defender Antimalware is the first one. This then greys out the other Defender settings. Antivirus is the second one Antispyware should be the third one
upvoted 1 times
...
imjoe
2 years, 1 month ago
Came in the exam today, to be honest, I'm not sure of the correct answer :-(
upvoted 1 times
...
lusis987
2 years, 7 months ago
Question isnt about antivirus, but - device compliance. Compliance parametters - Is there TPM, bitlocker, Antivirus.
upvoted 1 times
...
Contactfornitish
2 years, 8 months ago
On exam on 13 aug'22
upvoted 5 times
...
Contactfornitish
2 years, 9 months ago
Third party AV means you should not need Defender Animalware but its still possible to keep it in passive mode but you still need to change last two options at least. This could be the solution since other options looks overkill. Firewall, TPM, Encyryption makes no sense and anti-spyware is not talked and not always included in the product you chose.
upvoted 1 times
...
RazielLycas
2 years, 9 months ago
in the question there is nothing about TPM and encryption so... what's the point about them?
upvoted 1 times
...
L33D
2 years, 10 months ago
Still valid, on exam Jun 25, 2022
upvoted 2 times
...
xhbdfh
3 years, 4 months ago
Antivius Antispyware Microsoft Defender Antimalware
upvoted 6 times
...
us3r
3 years, 4 months ago
Modify the three Defender Settings. Microsoft Defender Antimalware Microsoft Defender Antimalware security intelligence up-to-date Real-time protection Explanation: when a third party antivirus is installed on an endpoint, it will override the Defender. As a result, if the compliance policy remains as it is, the above settings will mark the endpoint as non compliant.
upvoted 1 times
...
IrvSus
3 years, 9 months ago
I think it might be : Antivirus : require, Antispyware : Require, Microsoft Defender Antimalware : not configured based on this article : https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-worldwide
upvoted 6 times
...
donathon
3 years, 9 months ago
Turn off all setting for Windows Defender. This is a real life scenario. Our InTune machines comes with McAfee trial. It directly affects the Windows Defender as it overrides it. Hence we had to remove the McAfee to get the machine compliant. There is no way a 3rd party antivirus will work well with Windows Defender compliance turned on.
upvoted 7 times
MichaelMu
3 years, 5 months ago
I agree with you
upvoted 1 times
...
...
lucidgreen
3 years, 10 months ago
Going by what I read in the link, I'm thinking Antivirus needs to be enabled (and Antispyware) since this allows both to be required and accepts 3rd party suites, and Defender Antimalware and its security intelligence should both be "Not configured" as it has only to do with Defender. However, given that you are only trying to make the device "compliant", it would be just as easy to disable the 3 Defender requirements and call it good.
upvoted 2 times
...
ruchita89
3 years, 10 months ago
If a 3rd party AV is deployed to the devices then why do we need defender? I think defender is not required here, just that AV should be enabled. There is no demand to keep TPM also enabled.
upvoted 1 times
...
otday
3 years, 10 months ago
TPM is required for encryption and enabling antivirus seems correct.
upvoted 2 times
bk_apex
3 years, 4 months ago
The question does mot mention encryption.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago