Exam MD-101 topic 1 question 31 discussion

wrong answer windows defender application control https://docs.microsoft.com/en-us/mem/configmgr/protect/deploy-use/use-device-guard-with-configuration-manager#:~:text=Windows%20Defender%20Application%20Control%20is,malware%20and%20other%20untrusted%20software.&text=Windows%20Defender%20Application%20Control%20is%20a%20software%2Dbased%20security%20layer,to%20run%20on%20a%20PC.

Its no as it should be Windows Defender Application Control.

B, Using Windows Defender Application Guard alone is not sufficient to ensure that the workstations are only able to run applications that you have explicitly permitted. Windows Defender Application Guard is a security feature of Windows 10 that helps protect against malicious websites and apps by running them in a isolated, virtualized environment. While it can help prevent malicious software from being executed on the workstations, it is not designed to control which specific applications can be run on the workstations. To meet the goal of ensuring that the workstations are only able to run applications that you have explicitly permitted, you will need to use additional controls such as AppLocker or an app deployment policy in Microsoft Intune. These tools allow you to specify a list of approved applications and block the execution of any other applications. In summary, the solution of using Windows Defender Application Guard alone does not meet the goal of ensuring that the workstations are only able to run applications that you have explicitly permitted.

Be carfeul as they sound almost identical. windows defender application control vs windows defender application guard

B is correct.

Agree B "No"|

Application Control and not Application Guard

Its B. App control would be the right answer

B - Windows Defender Application Control.

It should be Application Control?

Correct Answer is B - Windows Defender Application Control is designed to protect PCs against malware and other untrusted software. It prevents malicious code from running by ensuring that only approved code, that you know, can be run. Windows Defender Application Control is a software-based security layer that enforces an explicit list of software that is allowed to run on a PC. On its own, Application Control does not have any hardware or firmware prerequisites. Application Control policies deployed with Configuration Manager enable a policy on PCs in targeted collections that meet the minimum Windows version and SKU requirements outlined in this article. Optionally, hypervisor-based protection of Application Control policies deployed through Configuration Manager can be enabled through Group Policy on capable hardware.

Wrong. Should be Microsoft Defender Application Control.

Right answer is 'No'. Solution requires Application Control, not Application Guard.

Answer is B. Application control is a security approach designed to protect against malicious code (also known as malware) executing on systems. While application control is primarily designed to prevent the execution and spread of malicious code, it can also prevent the installation or use of unapproved applications. Application Guard, a hardware-based endpoint defense, is a security tool that is built into Microsoft Edge. Application Guard isolates enterprise-defined untrusted sites from the desktop (host) in a virtual machine (VM) to prevent malicious activity from reaching the desktop. For Microsoft Office, Application Guard helps prevents untrusted Word, PowerPoint and Excel files from accessing trusted resources. ... This container isolation means that if the untrusted site or file turns out to be malicious, the host device is protected, and the attacker can't get to your enterprise data.

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control

the answe is NO. Application Guard only affects Edge (and Office if you have a plugin= the correct anser should be App protection