What should you include in the recommendation?

Posted by: Pdfprep Category: MD-101 Tags: , ,

Testlet 1

This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.

To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.

At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.

To start the case study

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question.

General Overview

Litware, Inc. is an international manufacturing company that has 3,000 employees. The company has sales, marketing, research, human resources (HR), development, and IT departments.

Litware has two main offices in New York and Los Angeles. Litware has five branch offices in Asia.

Existing Environment

Current Business Model

The Los Angeles office has 500 developers. The developers work flexible hours ranging from 11 AM to 10 PM.

Litware has a Microsoft System Center 2012 R2 Configuration Manager deployment.

During discovery, the company discovers a process where users are emailing bank account information of its customers to internal and external recipients.

Current Environment

The network contains an Active Directory domain that is synced to Microsoft Azure Active Directory (Azure AD). The functional level of the forest and the domain is Windows Server 2012 R2. All domain controllers run Windows Server 2012 R2.

Litware has the computers shown in the following table.

The development department uses projects in Azure DevOps to build applications.

Most of the employees in the sales department are contractors. Each contractor is assigned a computer that runs Windows 10. At the end of each contract, the computer is assigned to a different contractor. Currently, the computers are re-provisioned manually by the IT department.

Problem Statements

Litware identifies the following issues on the network:

– Employees in the Los Angeles office report slow Internet performance when updates are downloading. The employees also report that the updates frequently consume considerable resources when they are installed. The Update settings are configured as shown in the Updates exhibit. (Click the Updates button.)

– Management suspects that the source code for the proprietary applications in Azure DevOps in being shared externally.

– Re-provisioning the sales department computers is too time consuming.

Requirements

Business Goals

Litware plans to transition to co-management for all the company-owned Windows 10 computers. Whenever possible, Litware wants to minimize hardware and software costs.

Device Management Requirements

Litware identifies the following device management requirements:

– Prevent the sales department employees from forwarding email that contains bank account information.

– Ensure that Microsoft Edge Favorites are accessible from all computers to which the developers sign in.

– Prevent employees in the research department from copying patented information from trusted applications to untrusted applications.

Technical Requirements

Litware identifies the following technical requirements for the planned deployment:

– Re-provision the sales department computers by using Windows AutoPilot.

– Ensure that the projects in Azure DevOps can be accessed from the corporate network only.

– Ensure that users can sign in to the Azure AD-joined computers by using a PIN. The PIN must expire every 30 days.

– Ensure that the company name and logo appears during the Out of Box Experience (OOBE) when using Windows AutoPilot.

Exhibits

Updates

HOTSPOT

You need to recommend a solution to meet the device management requirements.

What should you include in the recommendation? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Answer:

Explanation:

From the scenario:

Litware identifies the following device management requirements:

– Prevent the sales department employees from forwarding email that contains bank account information.

– Ensure that Microsoft Edge Favorites are accessible from all computers to which the developers sign in.

– Prevent employees in the research department from copying patented information from trusted applications to untrusted applications.

Box 1:

Employees in the research department must be prevented from copying patented information from trusted applications to untrusted applications.

This requires an App protection policy.

– App protection policies make sure that the app-layer protections are in place. For example, you can:

– Require a PIN to open an app in a work context

– Control the sharing of data between apps

– Prevent the saving of company app data to a personal storage location

Box 2:

Employees in the sales department must be prevented from forwarding email that contains bank account information.

Azure Information Protection is a cloud-based solution that helps an organization to classify and optionally, protect its documents and emails by applying labels. Labels can be applied automatically by administrators who define rules and conditions, manually by users, or a combination where users are given recommendations.

Reference:

https://docs.microsoft.com/en-us/intune/app-protection-policy

https://docs.microsoft.com/en-us/azure/information-protection/what-is-information-protection

Leave a Reply

Your email address will not be published.