Answer-first summary for fast verification
Answer: application control policies in Microsoft Defender for Endpoint
Application control policies in Microsoft Defender for Endpoint provide a way to prevent the execution of malicious and unauthorized applications on Windows Server 2019 machines. With these policies, only authorized applications can run on the virtual machines. Unauthorized applications are automatically blocked until an administrator authorizes them. This meets the requirement of ensuring that only authorized applications run and that unauthorized applications are blocked until approved.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
As an IT professional overseeing a Microsoft 365 subscription and an Azure subscription, you have enabled both Microsoft 365 Defender and Microsoft Defender for Cloud. In your Azure subscription, there are 50 virtual machines, each operating various applications on Windows Server 2019. Your task is to recommend a security solution that guarantees only authorized applications can execute on these virtual machines. Any unauthorized application that tries to run or install should automatically be blocked, pending administrator authorization. Which security control would you suggest to meet this requirement?
A
Azure AD Conditional Access App Control policies
B
Azure Security Benchmark compliance controls in Defender for Cloud
C
app protection policies in Microsoft Endpoint Manager
D
application control policies in Microsoft Defender for Endpoint
No comments yet.