Policies & Profiles Flashcards by Dylan Tran

<p>Traditional Management</p>

How well did you know this?

Not at all

Perfectly

<p>Modern Management</p>

How well did you know this?

Not at all

Perfectly

What is CYOD?

Choose your own device

Allowing users to select a device from a list of devices you provide

How well did you know this?

Not at all

Perfectly

How do you configure Co-Management Precedence?

Within SCCM:

Administration -> Cloud Services -> Co-Management -> Properties

How well did you know this?

Not at all

Perfectly

What is Pilot Intune?

A UAT group for Intune use for testing

How well did you know this?

Not at all

Perfectly

To configure precedence, which tab do we use in Co-Management?

Workloads

How well did you know this?

Not at all

Perfectly

Group Policy vs MDM, who wins!?

In 1709 Group Policy will override MDM Policies

in 1803+, there is a new Policy CSP setting called ControlPolicyConflict that includes the poolicy of MDMWinsOverGP

How well did you know this?

Not at all

Perfectly

To ensure that MDM settings win out over GP settings, which value should MDMWinsOverGP receive?

How well did you know this?

Not at all

Perfectly

What is Conditional Access

Control access to resources for:

User attributes, devices, application, location, risk

How well did you know this?

Not at all

Perfectly

What are the two types of conditional access?

Device-based

App-based

How well did you know this?

Not at all

Perfectly

Is there conditional Access in Azure AD?

Yes after you navigate to Azure AD then Coditional Acess

How well did you know this?

Not at all

Perfectly

Where can you create Device compliance policies in Intune?

Device compliance -> Policies -> Create policy

How well did you know this?

Not at all

Perfectly

What can you do what a device does not meet compliance?

Remediate

Quarantine

How well did you know this?

Not at all

Perfectly

What are the three Compliance Policy settings for devices?

Mark devices with no compliance policy assigned as…

Enhanced jailbreak detection

Compliance status validity period (days)

How well did you know this?

Not at all

Perfectly

How do you configure profiles for Intune devices?

Intune -> Device Configuration -> Profile

How well did you know this?

Not at all

Perfectly

Yes or No?

Will the OneDrive Known Folder Move Group Policy objects won’t work if you previously used Windows Folder Redirection Group Policy objects to redirect the Documents, Pictures, or Desktop folders to a location other than OneDrive?

You have to remove the Windows Group Policy objects for these folders before you enable the OneDrive Group Policy objects

How well did you know this?

Not at all

Perfectly

Which status of a device compliance policy is displayed if a device failed to apply one or more device compliance policy settings. Or, the user hasn’t complied with the policies?

In-grace period

How well did you know this?

Not at all

Perfectly

Which status of a device compliance policy is displayed if a device failed to report its device compliance policy status because its offline or failed to communicate with Intune or Azure AD for other reasons?

Device not synced

How well did you know this?

Not at all

Perfectly

What value should you configure for the Profile Type of a device configuration profile in Microsoft Intune if you are trying to deploy a third party ADMX file to devices managed in Intune?

Custom

What do you need to configure for Windows to sync your settings across all your Windows 10 devices that you’ve signed in to with your Microsoft account?

Enable “Sync Settings”

What are the two primary advantages of moving or redirecting Windows known folders (Desktop, Documents, Pictures, Screenshots, and Camera Roll) to OneDrive for Business for the users in your domain?

Your users don’t have to change their daily work habits to save files to OneDrive

Savings files to OneDrive backs up your user’s data in the cloud and gives them access to their files from any device

To stop syncing your settings across all your Windows 10 devices that you’ve signed in to with your Microsoft account, what must you configure?

Turn the “Sync settings” to off

What is the term to describe the object that redirects user profiles to a file share so that users receive the same operating system and application settings on multiple computers?

Roaming User Profile

What are the different operating systems that are supported with Intune device profiles?

iOS

Android

Windows 8.1+

Windows Phone 8.1

Which free Microsoft tool will help with the technical transition from Group Policies to MDM Policies?

MMAT Tool MDM Migration Analysis Tool

What tool is a Windows Analytics solution that allows you to see the status of Windows Defender Antivirus signatures and threats?

Update Compliance

Which status of a device compliance policy is displayed if a device failed to report its device compliance policy status because one of the following reasons?

Device not synced

What is the term to describe the object that makes network files available to a user, even if the network connection server is unavailable or slow?

Offline Files

Yes or No: Can you implement conditional access policies for Windows 7 and Windows 8.1 devices?

No Only windows 8.1 and Windows 10+

what action enables users and administrators to redirect path of a known folder to a new location, manually or by using group policy?

Folder Redirection

What tool is a Windows Analytics solution that allows you to check bandwidth savings incurred across multiple content types by using Delivery Optimization?

Update Compliance

Which type of profiles allow you to add and configure settings, and then push these settings to devices used by users in your organization?

Device profiles

User profiles become mandatory profiles when administrator renames the NTuser.dat file (the registry hive) of each user's profile in the file system of the profile server to which file name?

NTuser.man

What tool is a Windows Analytics solution that allows you to view a report of device and update issues related to compliance that need attention?

Update compliance

What type of profile is a roaming profile that has been pre-configured by an administrator to specify settings for users?

Mandatory

Enterprise State Roaming is available to any organization with which type of subscription?

Premium Azure Active Directory (Azure AD) subscription

What can you use to control how users access your cloud apps in Azure Active Directory?

Conditional Access Policies

Which policy CSP setting when enabled will all MDM policy to be used and GP policy is to be blocked?

ControlPolicyConflict

What are the two types of conditional access policies?

Baseline and Standard

What is a roaming user profile?

A roaming user profile is a user profile that resides on a server and contains a user's desktop settings and connections. A roaming profile enables a user to log on to a Windows 2000 domain and use the same user profile from any workstation in the domain

Which free tool will generate both XML and HTML reports indicating the level of support for each Group Policy in terms of MDM equivalents?

MDM Migration Analysis tool

To improve sign-in performance for users with mandatory user profiles, which three Group Policy settings should you apply?

Disable Show first sign-in animation Disable Cortana Turn off Microsoft Consumer Experience

Which status of a device compliance policy is displayed if a devices successful applied one or more device compliance policy settings?

Compliant

Which status of a device compliance policy is displayed if a device is targeted with one or more device compliance policy settings, but, the user hasn't applied the policies yet?

In-grace Period

What steps must you perform to enable Enterprise State Roaming in AD?

Azure Active Directory -> Devices -> Enterprise State Roaming Select "Users may sync settings and app data across devices"

What information is stored in a user's appdata\roaming folder?

Default templates, configuration files, and other support data that applications might user