Answer-first summary for fast verification
Answer: application control policies in Microsoft Defender for Endpoint
Application control policies in Microsoft Defender for Endpoint are designed to prevent unauthorized code from running on virtual machines. By ensuring that only approved applications can execute, any unauthorized application that attempts to run or be installed will be automatically blocked until an administrator authorizes it. This meets the requirement of blocking applications until proper authorization is given.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Given that you have a Microsoft 365 subscription alongside an Azure subscription, both with Microsoft 365 Defender and Microsoft Defender for Cloud enabled, consider a scenario where your Azure subscription includes 50 virtual machines, each running different applications on Windows Server 2019. You are tasked with ensuring that only authorized applications are able to execute on these virtual machines. In cases where an unauthorized application attempts to run or be installed, it must be automatically blocked until an administrator grants authorization. What security control would you recommend to achieve this?
A
app registrations in Azure AD
B
application control policies in Microsoft Defender for Endpoint
C
app discovery anomaly detection policies in Microsoft Defender for Cloud Apps
D
Azure AD Conditional Access App Control policies
No comments yet.