AZ-801 · Question #184
AZ-801 Question #184: Real Exam Question with Answer & Explanation
The solution requires selecting 'Data connectors' and 'Analytics' from the Microsoft Sentinel menu presented in the answer area to configure event collection and subsequent analysis of Windows Defender Firewall events.
Question
You have an on-premises server named Server1 that runs Windows Server. You have a Microsoft Sentinel workspace named sentinel. You need to collect Windows Defender Firewall events from Server1 to sentinel. Which two pages should you use in the Azure portal? To answer, select the appropriate pages in the answer area. NOTE: Each correct selection is worth one point.
Explanation
The solution requires selecting 'Data connectors' and 'Analytics' from the Microsoft Sentinel menu presented in the answer area to configure event collection and subsequent analysis of Windows Defender Firewall events.
Topics
Community Discussion
No community discussion yet for this question.