Free MD-101 Exam Braindumps

- (Exam Topic 4)
You have 200 computers that run Windows 10. The computers are joined to Microsoft Azure Active Directory (Azure AD) and enrolled in Microsoft Intune.
You redirect Windows known folders to Microsoft OneDrive for Business. Which folder will be included in the redirection?

1. A. Saved Games
2. B. Desktop
3. C. Music
4. D. Downloads

Correct Answer: B

References:
https://docs.microsoft.com/en-us/onedrive/redirect-known-folders

- (Exam Topic 4)
You have a Microsoft Azure Active Directory (Azure AD) tenant. All corporate devices are enrolled in Microsoft Intune.
You have a web-based application named App1 that uses Azure AD to authenticate.
You need to prompt all users of App1 to agree to the protection of corporate data when they access App1 from both corporate and non-corporate devices.
What should you configure?

1. A. Notifications in Device compliance
2. B. Terms and Conditions in Device enrollment
3. C. Terms of use in Conditional access
4. D. an Endpoint protection profile in Device configuration

Correct Answer: C

References:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/terms-of-use

- (Exam Topic 4)
Your network contains an Active Directory domain. Active Directory is synced with Microsoft Azure Active Directory (Azure AD).
There are 500 Active Directory domain-joined computers that run Windows 10 and are enrolled in Microsoft Intune.
You plan to implement Microsoft Defender Exploit Guard.
You need to create a custom Microsoft Defender Exploit Guard policy, and then distribute the policy to all the computers.
What should you do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Solution:
Reference:
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/import-export-expl https://docs.microsoft.com/en-us/intune/endpoint-protection-windows-10
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/enable-exploit-prot

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 4)
You have a Microsoft 365 tenant
You have devices enrolled in Microsoft intune.
You assign a conditional access policy nan-ted Policy1 to a group named Group1. Policy1 restricts devices marked as noncompliant from accessing Microsoft OneDrive for Business.
You need to identify which noncompliant devices attempt to access OneDrive for Business. What should you do?

1. A. From the Microsoft Endpoint Manager admin center, review the Setting compliance report.
2. B. From the Microsoft Endpoint Manager admin center, review the Noncompliant devices reporter.
3. C. From the Microsoft Endpoint Manager admin center, review Device compliance report.
4. D. From the Azure Active Directory admin center, review the Conditional Access Insights and Reporting workbook.

Correct Answer: B
The Noncompliant devices report provides data typically used by Helpdesk or admin roles to identify problems and help remediate issues. The data found in this report is timely, calls out unexpected behavior, and is meant to be actionable.
Note: Compliance reports help you understand when devices fail to meet your compliance configurations and can help you identify compliance-related issues in your organization.
Open the compliance dashboard
Open the Intune Device compliance dashboard:
Sign in to the Microsoft Endpoint Manager admin center.
Select Devices > Overview > Compliance status tab.
When the dashboard opens, you get an overview with all the compliance reports. In these reports, you can see and check for:
Overall device compliance Per-policy device compliance Per-setting device compliance Threat agent status
Device protection status View compliance reports
In addition to using the charts on Compliance status, you can go to Reports > Device compliance.
Sign in to the Microsoft Endpoint Manager admin center.
Select Devices > Monitor, and then from below Compliance select the report you want to view. Some of the available compliance reports include:
Device compliance Noncompliant devices
Devices without compliance policy Setting compliance
Policy compliance Noncompliant policies (preview)
Windows health attestation report Threat agent status
Reference: https://docs.microsoft.com/en-us/mem/intune/protect/compliance-policy-monitor

- (Exam Topic 4)
You have groups that use the Dynamic Device membership type as shown in the following table.

You are deploying Microsoft 365 apps.
You have devices enrolled in Microsoft Intune as shown in the following table.

In the Microsoft Endpoint Manager admin center, you create a Microsoft 365 Apps app as shown in the exhibit. (Click the Exhibit tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Solution:
Graphical user interface, text, application Description automatically generated
Reference:
https://docs.microsoft.com/en-us/mem/intune/apps/apps-add-office365
https://docs.microsoft.com/en-us/mem/intune/apps/apps-deploy https://docs.microsoft.com/en-us/mem/intune/apps/apps-add

Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A