Free MS-101 Exam Braindumps (page: 33)

Page 33 of 104

Your company has a Microsoft 365 subscription that uses an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains computers that run Windows 10 Enterprise and are managed by using Microsoft Endpoint Manager. The computers are con gured as shown in the following table.



You plan to implement Windows Defender Application Guard for contoso.com.
You need to identify on which two Windows 10 computers Windows Defender Application Guard can be installed. Which two computers should you identify? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  1. Computer1
  2. Computer3
  3. Computer2
  4. Computer4

Answer(s): B,C


Reference:

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-guard/reqs-wd-app-guard



HOTSPOT (Drag and Drop is not supported).
Your company uses Microsoft Defender for Endpoint.
The devices onboarded to Microsoft Defender for Endpoint are shown in the following table.



The alerts visible in the Microsoft Defender for Endpoint alerts queue are shown in the following table.



You create a suppression rule that has the following settings:
Triggering IOC: Any IOC
Action: Hide alert
Suppression scope: Alerts on ATP1 machine group
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



A suppression rule will not affect alerts that are already in the alerts queue. Only new alerts will be suppressed.



HOTSPOT (Drag and Drop is not supported).
Your company has a Microsoft 365 subscription.
You need to con gure Microsoft 365 to meet the following requirements:
Malware found in email attachments must be quarantined for 20 days.
The email address of senders to your company must be veri ed.
Which two options should you con gure in the Security & Compliance admin center? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:



You have a Microsoft 365 subscription that uses Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP). All the devices in your organization are onboarded to Microsoft Defender ATP. You need to ensure that an alert is generated if malicious activity was detected on a device during the last 24 hours.
What should you do?

  1. From Alerts queue, create a suppression rule and assign an alert
  2. From the Security & Compliance admin center, create an audit log search
  3. From Advanced hunting, create a query and a detection rule
  4. From the Security & Compliance admin center, create a data loss prevention (DLP) policy

Answer(s): C


Reference:

https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/custom-detection-rules Topic 2



Page 33 of 104



Post your Comments and Discuss Microsoft MS-101 exam with other Community members:

Phil commented on December 08, 2022
i have a lot of experience but what comes in the exam is totally different from the practical day to day tasks. so i thought i would rather rely on these brain dumps rather failing the exam.
GERMANY
upvote

Marco commented on June 12, 2023
I paid and downloaded my files. So far everything looks promising.
SPAIN
upvote

Fang commented on June 04, 2023
Same exam dumps as other sites. But the 50% off make is much cheaper. I bought 2 exams to get the 50% discount. I passed one exam now preparing for my second test.
SINGAPORE
upvote

Justina commented on May 30, 2023
If you are serious about acing your exams, I urge you to give these exam dumps a try. They surpassed all my expectations, providing me with everything I needed to prepare and pass my exam. And the 50% sale is a cool deal!
UNITED STATES
upvote

Phil commented on December 08, 2022
I have a lot of experience but what comes in the exam is totally different from the practical day to day tasks. So I thought I would rather rely on these brain dumps rather failing the exam.
GERMANY
upvote