Exam SC-100 topic 2 question 23 discussion

This question is on here twice. Each time it's asked the same way but the answer options are different so look out. In this case A is correct. https://docs.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference#compute-recommendations

Adaptive application controls don’t block. What am I missing here?

Answer does not meet the requirements, but it seems to be the closest answer. "If an unauthorized application attempts to run or be installed, the application must be blocked automatically until an administrator authorizes the application." "No enforcement options are currently available. Adaptive application controls are intended to provide security alerts if any application runs other than the ones you've defined as safe." https://learn.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls

C is the correct answer https://learn.microsoft.com/en-us/defender-cloud-apps/cloud-discovery-policies

Same as Question 19. https://www.examtopics.com/discussions/microsoft/view/94349-exam-sc-100-topic-4-question-19-discussion

C is the answer. https://learn.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls Adaptive application controls are an intelligent and automated solution for defining allowlists of known-safe applications for your machines. Often, organizations have collections of machines that routinely run the same processes. Microsoft Defender for Cloud uses machine learning to analyze the applications running on your machines and create a list of the known-safe software. Allowlists are based on your specific Azure workloads, and you can further customize the recommendations using the following instructions. When you've enabled and configured adaptive application controls, you'll get security alerts if any application runs other than the ones you've defined as safe.

La respuesta correcta es B. Debe recomendar políticas de protección de aplicaciones en Microsoft Endpoint Manager. Esta solución permite configurar y administrar las políticas de protección de aplicaciones en todas las máquinas virtuales de forma centralizada. Las políticas de protección de aplicaciones permiten controlar qué aplicaciones pueden ejecutarse o instalarse en las máquinas virtuales. Si una aplicación no autorizada intenta ejecutarse o instalarse, la aplicación se bloqueará automáticamente hasta que un administrador autorice la aplicación. Las políticas de protección de aplicaciones se pueden configurar para permitir aplicaciones específicas, bloquear aplicaciones específicas o permitir que los usuarios finales soliciten la instalación de aplicaciones no autorizadas.

Perfect A

Adaptive application controls are an intelligent and automated solution for defining allowlists of known-safe applications for your machine Source: https://learn.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls

Adaptive application controls are an intelligent and automated solution for defining allowlists of known-safe applications for your machines.

Correct answer. was in 20Sep2020 exam

https://docs.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls and the feature that does this is "Identify software that's banned by your organization but is nevertheless running on your machines"

A is the correct answer

The correct answer is A because you don't have any other option that will block applications from running. But accordingly, with the latest info, the option to enforce adaptive applications is not available, so it will only alert.https://docs.microsoft.com/en-us/azure/defender-for-cloud/adaptive-application-controls#are-there-any-options-to-enforce-the-application-controls The question is mentioning to block the application from running, and the adaptive application controls don't have this capability available, so the answer shouldn't be correct.

A. adaptive application controls - correct