Installation, Storage, and Compute with Windows Server 2016 — Question 222

You have a server named Server1 that runs Windows Server 2016. Windows Defender is enabled on Server1.
Server1 runs an application named App1 that stores various types of files in Microsoft OneDrive for Business, MicrosoftOneDrive, and Microsoft SharePoint
Online. App1 also interacts with several local services.
You need to prevent Windows Defender from scanning any files opened by App1.
What should you do on Server1?

Answer options

• A. Run the Set-ExecutionPolicy cmdlet.
• B. Run the New-AppLockerPolicy cmdlet.
• C. Modify the real-time protection settings in Windows Defender.
• D. Run the Add-MpPreference cmdlet.
• E. Modify the cloud-based protection settings in Windows Defender.
• F. Run the New-CiPolicy cmdlet.

Correct answer: D

Explanation

The correct answer is D, as the Add-MpPreference cmdlet allows you to add exclusions to Windows Defender, preventing it from scanning specific files or folders opened by App1. Options A, B, C, and E do not directly address the requirement to exclude files from being scanned, while option F is related to indexing policies rather than Windows Defender exclusions.