220-1101 · Question #791
220-1101 Question #791: Real Exam Question with Answer & Explanation
The correct answer is C: MDM. To enforce compliance controls that restrict software installation to company-approved applications on user laptops, the IT department should deploy Mobile Device Management (MDM). MDM allows centralized control over device configurations, applications, and security policies.
Question
A security team wants to implement compliance controls that only permits the installation of company-approved software on user laptops. Which of the following should the IT department deploy?
Options
- AEDR
- BVPN
- CMDM
- DSaaS
Explanation
To enforce compliance controls that restrict software installation to company-approved applications on user laptops, the IT department should deploy Mobile Device Management (MDM). MDM allows centralized control over device configurations, applications, and security policies.
Common mistakes.
- A. EDR (Endpoint Detection and Response) focuses on detecting and responding to threats on endpoints but does not primarily control software installation policies.
- B. A VPN (Virtual Private Network) provides secure remote access to a private network but does not manage software installation on end-user devices.
- D. SaaS (Software as a Service) is a software delivery model where applications are hosted by a third-party vendor and made available to users over the internet, not a solution for managing software installations on client devices.
Concept tested. Endpoint management and application control via MDM
Reference. https://learn.microsoft.com/en-us/mem/intune/fundamentals/what-is-intune
Topics
Community Discussion
No community discussion yet for this question.