HOTSPOT (Drag and Drop is not supported)Your network contains an Active Directory Domain Services (AD DS) domain named contoso.com. The domain contains the organizational units (OUs) shown in the following table.In the domain, you create the Group Policy Objects (GPOs) shown in the following table.You need to implement IPsec authentication to ensure that only authenticated computer accounts can connect to the members in the domain. The solution must minimize administrative effort.Which GPOs should you apply to the Domain Controllers OU and the Domain Servers OU? To answer, select the appropriate options in the answer area.Note: Each correct selection is worth one point.Hot Area:
Answer(s): A
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/configure-authentication- methods
You have 100 Azure virtual machines that run Windows Server. The virtual machines are onboarded to Microsoft Defender for Cloud.You need to shut down a virtual machine automatically if Microsoft Defender for Cloud generates the "Antimalware disabled in the virtual machine" alert for the virtual machine.What should you use in Microsoft Defender for Cloud?
https://docs.microsoft.com/en-us/azure/defender-for-cloud/managing-and-responding-alerts
You have a Microsoft Sentinel deployment and 100 Azure Arc-enabled on-premises servers. All the Azure Arc- enabled resources are in the same resource group.You need to onboard the servers to Microsoft Sentinel. The solution must minimize administrative effort.What should you use to onboard the servers to Microsoft Sentinel?
Answer(s): B
https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/manage/hybrid/server/best-practices/arc- policies-mma
You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with a Microsoft Entra tenant by using password hash synchronization.You have a Microsoft 365 subscription.All devices are hybrid Azure AD-joined.Users report that they must enter their password manually when accessing Microsoft 365 applications.You need to reduce the number of times the users are prompted for their password when they access Microsoft 365 and Azure services.What should you do?
Answer(s): C
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso-quick-start
You have an Azure subscription that has Microsoft Defender for Cloud enabled.You have 50 Azure virtual machines that run Windows Server.You need to ensure that any security exploits detected on the virtual machines are forwarded to Defender for Cloud.Which extension should you enable on the virtual machines?
https://docs.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-vm
Post your Comments and Discuss Microsoft AZ-801 exam dumps with other Community members:
Ernest Commented on October 27, 2025 some answers seem to be wrong. students are advised to review any questions that they are unsure of using MS Learn. Anonymous
Mav Commented on June 10, 2025 Question 29 is missing the answers in the reveal answers section. Anonymous
BitShifter Commented on May 05, 2025 AZ-801 practice questions got updated, makin' studyin' way easier. Finland
Philippe Commented on January 22, 2023 Iam impressed with the quality of these dumps. They questions and answers were easy to understand and the Xengine App was very helpful to use. CANADA
Philippe Commented on January 22, 2023 iam impressed with the quality of these dumps. they questions and answers were easy to understand and the xengine app was very helpful to use. CANADA