ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MD-101 All Questions

View all questions & answers for the MD-101 exam
Go to Exam

Exam MD-101 topic 4 question 16 discussion

Actual exam question from Microsoft's MD-101
Question #: 16
Topic #: 4
[All MD-101 Questions]

HOTSPOT -
Your network contains an Active Directory domain. Active Directory is synced with Microsoft Azure Active Directory (Azure AD).
There are 500 Active Directory domain-joined computers that run Windows 10 and are enrolled in Microsoft Intune.
You plan to implement Microsoft Defender Exploit Guard.
You need to create a custom Microsoft Defender Exploit Guard policy, and then distribute the policy to all the computers.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/import-export-exploit-protection-emet-xml#manage-or-deploy-a- configuration https://docs.microsoft.com/en-us/intune/endpoint-protection-windows-10 https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-protection
by Perycles at June 9, 2021, 11:19 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
RodrigoT
Highly Voted 2 years, 12 months ago
The answer provided is correct. TESTED in my tenant. "This is the way" ;-)
upvoted 16 times
MR_Eliot
2 years, 11 months ago
this is correct.
upvoted 4 times
...
...
Mujja
Highly Voted 3 years, 10 months ago
App to configure settings should be the Security app. Microsoft Defender Security Center UI: In the Microsoft Defender Security Center, click on App & browser control and then scroll to the bottom of the resulting screen to find Exploit Protection. First, use the System settings and Program settings tabs to configure mitigation settings. Then, find the Export settings link at the bottom of the screen to export an XML representation of them MEM config profile > endpoint protection > exploit protection only allow distribution.
upvoted 15 times
99redeyeflight
3 years, 2 months ago
i believe this is only needed for "Exploit Protection" (one of 4 parts of Exploit Guard). The others being Network filtering, Controlled folder access, and Attack Surface reduction (these 3 can still be configured in the Intune Endpoint protection config policy. the questions doesn't specify "exploit protection", just "exploit guard" policy
upvoted 4 times
Brent0n
3 years, 1 month ago
Agree this is about Defender exploit Guard, not exploit protection which you use a custom xml which is obtained through the Windows security Centre Answer should be: Tool to use to Configure Settings: Microsoft Endpoint Manager Admin Centre Distribution Method: An Endpoint Protection Configuration Profile.
upvoted 3 times
...
...
...
Amir1909
Most Recent 1 year, 3 months ago
Correct
upvoted 1 times
...
AzureLearner01
2 years, 10 months ago
There are 2 Questions of this kind, both have the identical requirements, only the suggested answers are different. In one of the questions you deploy via GPO and in the Other via Intune. But you can choose in both Questions the Security App to Configure the settings, so i go with Security App. For sure you can configure all Exploit Guard features with an Device Configuration Profile (Device Restriction) except Exploit Protection, but you have this answer only in this question
upvoted 1 times
...
Garito
3 years, 1 month ago
Above answer is correct. Windows Security App is technically right, if you are doing it locally on an endpoint - the scenario clearly states to apply and distribute across multiple devices - therefore it is MEM admin center and Endpoint Protection Profile.
upvoted 3 times
...
jage01
3 years, 2 months ago
Many features from the Enhanced Mitigation Experience Toolkit (EMET) are included in exploit protection. You can enable each mitigation separately by using any of these methods: * Windows Security app * Microsoft Intune * Mobile Device Management (MDM) * Microsoft Endpoint Configuration Manager * Group Policy * PowerShell https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/enable-exploit-protection?view=o365-worldwide#windows-security-app Intune Endpoint Protection Configuration Profile
upvoted 1 times
...
Perycles
3 years, 10 months ago
correct
upvoted 4 times
ExamStudy101
3 years, 9 months ago
Mujja is correct
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago