Policies & Profiles

Question 1

<p>Traditional Management</p>

Answer 1

Question 2

<p>Modern Management</p>

Answer 2

Question 3

What is CYOD?

Answer 3

Choose your own device

Allowing users to select a device from a list of devices you provide

Question 4

How do you configure Co-Management Precedence?

Answer 4

Within SCCM:

Administration -> Cloud Services -> Co-Management -> Properties

Question 5

What is Pilot Intune?

Answer 5

A UAT group for Intune use for testing

Question 6

To configure precedence, which tab do we use in Co-Management?

Answer 6

Workloads

Question 7

Group Policy vs MDM, who wins!?

Answer 7

In 1709 Group Policy will override MDM Policies

in 1803+, there is a new Policy CSP setting called ControlPolicyConflict that includes the poolicy of MDMWinsOverGP

Question 8

To ensure that MDM settings win out over GP settings, which value should MDMWinsOverGP receive?

Answer 8

1

Question 9

What is Conditional Access

Answer 9

Control access to resources for:

User attributes, devices, application, location, risk

Question 10

What are the two types of conditional access?

Answer 10

Device-based

App-based

Question 11

Is there conditional Access in Azure AD?

Answer 11

Yes after you navigate to Azure AD then Coditional Acess

Question 12

Where can you create Device compliance policies in Intune?

Answer 12

Device compliance -> Policies -> Create policy

Question 13

What can you do what a device does not meet compliance?

Answer 13

Remediate

Quarantine

Question 14

What are the three Compliance Policy settings for devices?

Answer 14

Mark devices with no compliance policy assigned as…

Enhanced jailbreak detection

Compliance status validity period (days)

Question 15

How do you configure profiles for Intune devices?

Answer 15

Intune -> Device Configuration -> Profile

Question 16

Yes or No?

Will the OneDrive Known Folder Move Group Policy objects won’t work if you previously used Windows Folder Redirection Group Policy objects to redirect the Documents, Pictures, or Desktop folders to a location other than OneDrive?

Answer 16

No

You have to remove the Windows Group Policy objects for these folders before you enable the OneDrive Group Policy objects

Question 17

Which status of a device compliance policy is displayed if a device failed to apply one or more device compliance policy settings. Or, the user hasn’t complied with the policies?

Answer 17

In-grace period

Question 18

Which status of a device compliance policy is displayed if a device failed to report its device compliance policy status because its offline or failed to communicate with Intune or Azure AD for other reasons?

Answer 18

Device not synced

Question 19

What value should you configure for the Profile Type of a device configuration profile in Microsoft Intune if you are trying to deploy a third party ADMX file to devices managed in Intune?

Answer 19

Custom

Question 20

What do you need to configure for Windows to sync your settings across all your Windows 10 devices that you’ve signed in to with your Microsoft account?

Answer 20

Enable “Sync Settings”

Question 21

What are the two primary advantages of moving or redirecting Windows known folders (Desktop, Documents, Pictures, Screenshots, and Camera Roll) to OneDrive for Business for the users in your domain?

Answer 21

Your users don’t have to change their daily work habits to save files to OneDrive

Savings files to OneDrive backs up your user’s data in the cloud and gives them access to their files from any device

Question 22

To stop syncing your settings across all your Windows 10 devices that you’ve signed in to with your Microsoft account, what must you configure?

Answer 22

Turn the “Sync settings” to off

Question 23

What is the term to describe the object that redirects user profiles to a file share so that users receive the same operating system and application settings on multiple computers?

Answer 23

Roaming User Profile

Question 24

What are the different operating systems that are supported with Intune device profiles?

Answer 24

iOS

Android

Windows 8.1+

Windows Phone 8.1

Question 25

Which free Microsoft tool will help with the technical transition from Group Policies to MDM Policies?

Answer 25

MMAT Tool

MDM Migration Analysis Tool

Question 26

What tool is a Windows Analytics solution that allows you to see the status of Windows Defender Antivirus signatures and threats?

Answer 26

Update Compliance

Question 27

Which status of a device compliance policy is displayed if a device failed to report its device compliance policy status because one of the following reasons?

Answer 27

Device not synced

Question 28

What is the term to describe the object that makes network files available to a user, even if the network connection server is unavailable or slow?

Answer 28

Offline Files

Question 29

Yes or No:

Can you implement conditional access policies for Windows 7 and Windows 8.1 devices?

Answer 29

No

Only windows 8.1 and Windows 10+

Question 30

what action enables users and administrators to redirect path of a known folder to a new location, manually or by using group policy?

Answer 30

Folder Redirection

Question 31

What tool is a Windows Analytics solution that allows you to check bandwidth savings incurred across multiple content types by using Delivery Optimization?

Answer 31

Update Compliance

Question 32

Which type of profiles allow you to add and configure settings, and then push these settings to devices used by users in your organization?

Answer 32

Device profiles

Question 33

User profiles become mandatory profiles when administrator renames the NTuser.dat file (the registry hive) of each user’s profile in the file system of the profile server to which file name?

Answer 33

NTuser.man

Question 34

What tool is a Windows Analytics solution that allows you to view a report of device and update issues related to compliance that need attention?

Answer 34

Update compliance

Question 35

What type of profile is a roaming profile that has been pre-configured by an administrator to specify settings for users?

Answer 35

Mandatory

Question 36

Enterprise State Roaming is available to any organization with which type of subscription?

Answer 36

Premium Azure Active Directory (Azure AD) subscription

Question 37

What can you use to control how users access your cloud apps in Azure Active Directory?

Answer 37

Conditional Access Policies

Question 38

Which policy CSP setting when enabled will all MDM policy to be used and GP policy is to be blocked?

Answer 38

ControlPolicyConflict

Question 39

What are the two types of conditional access policies?

Answer 39

Baseline and Standard

Question 40

What is a roaming user profile?

Answer 40

A roaming user profile is a user profile that resides on a server and contains a user’s desktop settings and connections. A roaming profile enables a user to log on to a Windows 2000 domain and use the same user profile from any workstation in the domain

Question 41

Which free tool will generate both XML and HTML reports indicating the level of support for each Group Policy in terms of MDM equivalents?

Answer 41

MDM Migration Analysis tool

Question 42

To improve sign-in performance for users with mandatory user profiles, which three Group Policy settings should you apply?

Answer 42

Disable Show first sign-in animation

Disable Cortana

Turn off Microsoft Consumer Experience

Question 43

Which status of a device compliance policy is displayed if a devices successful applied one or more device compliance policy settings?

Answer 43

Compliant

Question 44

Which status of a device compliance policy is displayed if a device is targeted with one or more device compliance policy settings, but, the user hasn’t applied the policies yet?

Answer 44

In-grace Period

Question 45

What steps must you perform to enable Enterprise State Roaming in AD?

Answer 45

Azure Active Directory -> Devices -> Enterprise State Roaming

Select “Users may sync settings and app data across devices”

Question 46

What information is stored in a user’s appdata\roaming folder?

Answer 46

Default templates, configuration files, and other support data that applications might user