Answer-first summary for fast verification
Answer: application control policies in Microsoft Defender for Endpoint
The correct answer is application control policies in Microsoft Defender for Endpoint. This feature allows administrators to define what applications are allowed to run on the virtual machines and block any unauthorized applications from running, thus ensuring only authorized applications can execute. This aligns with the requirement to block unauthorized applications automatically until an administrator authorizes them. Defender for Endpoint can be utilized for virtual machines and provides the necessary controls to handle application execution policies effectively.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Given that you have both a Microsoft 365 subscription and an Azure subscription, with Microsoft 365 Defender and Microsoft Defender for Cloud enabled, your Azure subscription includes 50 virtual machines, each running different applications on Windows Server 2019. To maintain security, you need to propose a solution that ensures only authorized applications are allowed to run on these virtual machines. Specifically, if any unauthorized application tries to execute or get installed, it should be automatically blocked until an administrator gives approval. What security control would meet these requirements?
A
app registrations in Azure Active Directory (Azure AD)
B
OAuth app policies in Microsoft Defender for Cloud Apps
C
Azure Security Benchmark compliance controls in Defender for Cloud
D
application control policies in Microsoft Defender for Endpoint
No comments yet.