Exam MD-101 topic 3 question 71 discussion

I'm thinking No, No, Yes. Here's my reasoning: There is no policy applied to device 1, which means it is counted as not-compliant. There is no policy or setting that would shift Device 1 to be compliant that applies to Device 1. The "Compliance Status Validity Period" setting is meant to change the compliance status of a device from compliant, to not compliant based upon a defined waiting or grace period, not the other way around. So, Device 1 remains not compliant throughout this whole process, which is why the first two answers are a "no". The third statement is a "yes", because Device 2 has Bitlocker disabled, which makes it not compliant. After 5 days, August 6th, it will still be noncompliant and be retired according to the applied policies in the pick. So we have our answers being no, no, yes.

No for all, for device 2- it will be marked for retirement, see below : Retire the noncompliant device: This action removes all company data off the device and removes the device from Intune management. The following platforms support this action: Android device administrator Android (AOSP) Android Enterprise: Fully Managed Dedicated Corporate-Owned Work Profile Personally Owned Work Profile iOS/iPadOS macOS Windows 10/11 When this action applies to a device, that device is added to a list of devices in the Microsoft Intune admin center at Devices > Compliance policies > Retire Noncompliant Devices. The device isn't retired until an admin takes explicit action to retire the device. reference: https://learn.microsoft.com/en-us/mem/intune/protect/actions-for-noncompliance

There are 2 ways of looking at this and I'm not sure which is correct. 1. The given Answer is correct, despite mixing up the explanation in box 3 with device 1 and device 2. The rationale makes sense. 2. If Group 2 is excluded from the compliance policy all together(which it is), wouldn't that mean than the days/grace periods of noncompliance for device 1 are irrelevant. All Devices without a compliance policy are marked uncompliant. With this reasoning, if this question appears on the exam, I'd answer NNN and know that I'm at least getting 2/3 of the question correct. Only part I'm unsure is box 2. I'll take my chance with that.

The explanation is wrong, because device 2 belongs to group 1. The explanation says device 1 is in group 1, which is wrong. Since the compliancy policy is only for group 1, it only applies to device 2. This means device 1 has no profile assigned and will be marked as non-compliant in 10 days as I understand it. So for the time being it is compliant. 1. Yes. 2. Still yes. 3. No, because device 2 is part of group 1. And the policy applies to group 1. Since device 2 has no bitlocker enabled it is not compliant. There in 5 days it will be retired. So yes, device 2 will be retired on August 6th. This is my reasoning and what I will go with

no no yes

device 1 is member of group 2 so it will not get the policy because group 2 is excluded. group 1 will get the policy so at the 6th of Auigust 5 days will have passed sice it got the policy so it will be retired.

The explaination says "The Windows 10 compliance policy applies to <<Group1 which includes Device1>>" WTH??

I think it is No, No Yes.

I think it's NNN. From the first link: Compliance status validity period (days) Specify a period in which devices must successfully report on all their received compliance policies. If a device fails to report its compliance status for a policy before the validity period expires, the device is treated as not compliant. So wouldn't Device1 be marked as compliant until August 11?