MD-101 Exam QuestionsBrowse all questions from this exam
Go to Exam

MD-101 Exam - Question 290

Your company implements Microsoft Azure Active Directory (Azure AD), Microsoft 365, Microsoft Intune, and Azure Information Protection.

The company's security policy states the following:

✑ Personal devices do not need to be enrolled in Intune.

✑ Users must authenticate by using a PIN before they can access corporate email data.

✑ Users can use their personal iOS and Android devices to access corporate cloud services.

✑ Users must be prevented from copying corporate email data to a cloud storage service other than Microsoft OneDrive for Business.

You need to configure a solution to enforce the security policy.

What should you create?

Show Answer
Correct Answer: C

To enforce the security policy that allows users to access corporate cloud services using their personal iOS and Android devices without the need to enroll these devices in Intune, you should create an app protection policy from the Endpoint Manager admin center. An app protection policy allows you to enforce conditions such as requiring a PIN to access certain apps and preventing data from being copied to unauthorized cloud storage services. This approach ensures that corporate data is protected at the app level and that users' personal data is not affected, aligning with the company's security requirements without the need for device enrollment.

Discussion

3 comments
Sign in to comment
AVP_Riga
Nov 16, 2021

Seems correct ☺️

ModeratorOption: C
Feb 1, 2022

Correctamundo! Just look at the reference provided :)

moobdoob
Jan 16, 2022

Very good!