You have set up a conditional access policy in Microsoft Intune to limit access to a Customer Data application for use by Marketing employees.A Human Resources employee attempts to access this application. What will happen?answerThe employee receives a message to contact the administrator.The employee's device is locked down.The employee must provide a username and password to access the app.The employee is denied access to the application.

Which of the following are steps you need to complete in order to use app-based conditional access in Intune? (Select three.)answerDeploy the protection policies to all users.Configure the protection policies in Microsoft Intune.Define the protection policies.Define the conditions under which users can access those apps.Test the protection policies.Create a conditional access policy.Define the apps that the policy should apply to.

You are creating an app protection policy in Microsoft Intune for an application that you want to make accessible to employees in the Marketing department.Which of the following are items that can help you define the level of protection for the application? (Select two.)answerApp protection policy testingApp protection policy deployment to usersData protection setting for data encryptionMulti-factor authentication (MFA) for accessPolicy protection monitoring

Listen to exam instructionsYour company devices are all enrolled in Microsoft Intune, and you have created and rolled out your first app protection policy to the Finances department for an inhouse financial tracking tool.However, some employees in the Marketing department also have access to the tracking tool on their devices.Which of the following steps is the MOST likely step you forgot to complete when preparing and implementing the app protection policy with Microsoft Intune?answerDeploy the app protection policy to all users who need access.Test the protection policy.Configure the app protection policy in Microsoft Intune.Define the app protection policy.

You're the systems administrator for an international sports equipment retail company that uses Azure Active Directory (AD) and Microsoft Intune to manage their mobile devices. All company-owned Windows 11 mobile devices are registered in Azure AD and enrolled in Microsoft Intune.You decide that you want to create an Intune conditional access policy that:Applies the policy to the Office 365, Microsoft Teams, and SharePoint cloud apps.Assigns the policy to Windows platforms.Requires the Windows 11 devices to be marked as Compliant.To properly configure this Intune conditional access policy, you need to perform several tasks. From the list of tasks on the left, drag the tasks to the right in the proper order for creating the policy. (Not all listed tasks are part of creating the policy.)Give the policy a name.Enable the policy.Send an email to the users.Assign users and user groups.Select cloud apps or user actions.Grant or block access based on controls.Select conditions.Set up network fencing.Determine the OS version.move rightmove left

You're the systems administrator for an international trading company that uses Azure Active Directory (AD) and Microsoft Intune to manage their mobile devices. All company-owned mobile devices are registered in Azure AD and enrolled in Microsoft Intune.You've created the following dynamic user groups to manage access to company resources:Managers: jobTitle = "Manager"Consultants: jobTitle = "Customer Consultant"OfficeAdmin: jobTitle = "Office Administrator"SalesReps: jobTitle = "Sales Representative"You've created a conditional access policy that:Includes the SalesReps and Consultants user groups.Excludes the Managers user group.Applies the policy to the Microsoft 365, Microsoft Teams, and SharePoint cloud apps.Assigns the policy to Windows platforms.Requires that the Windows devices be marked as Compliant.Has a Location condition assigned to a Blocked Countries named location that blocks access from several countries based on IPv4 address.Is enabled.In addition, there is a device compliance policy that requires BitLocker to be installed and running on a Windows 11 device for the device to be marked as Compliant.After deploying the conditional access policy, you receive a support call from a customer consultant out in the field. She states that she's unable to access Microsoft Teams to join an important meeting. She's using a Windows 11 mobile device that's marked as Compliant in Intune.SOLUTION: You ask the consultant where she's located. She's in an airport in a country that's blocked by the named location. You inform her that she'll need to call into the Teams meeting using her cell phone.DragYesNoDropDoes this action resolve the device compliance policy issue?