Microsoft Endpoint Administrator — Question 337
You have computers that run Windows 10 and are managed by using Microsoft Intune.
Users store their files in a folder named D:\Folder1.
You need to ensure that only a trusted list of applications is granted write access to D:\Folder1.
What should you configure in the device configuration profile?
Answer options
- A. Microsoft Defender Exploit Guard
- B. Microsoft Defender Application Guard
- C. Microsoft Defender SmartScreen
- D. Microsoft Defender Application Control
Correct answer: A
Explanation
The correct answer is A, Microsoft Defender Exploit Guard, as it helps control and protect against potentially harmful actions on the device. The other options, while relevant to security, do not specifically provide the capability to manage write access to folders based on trusted applications.