MS-102 · Question #489
MS-102 Question #489: Real Exam Question with Answer & Explanation
The correct answer is B: No. The answer is No. Creating a trusted location and compliance policy in the Device Management (Intune/Endpoint Manager) admin center does not restrict SharePoint Online access based on network location. Device compliance policies govern the health state of devices (e.g., encryptio
Question
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 subscription. You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network. Solution: From the Device Management admin center, you create a trusted location and a compliance policy. Does this meet the goal?
Options
- AYes
- BNo
Explanation
The answer is No. Creating a trusted location and compliance policy in the Device Management (Intune/Endpoint Manager) admin center does not restrict SharePoint Online access based on network location. Device compliance policies govern the health state of devices (e.g., encryption, OS version), not the network from which users connect. To restrict SharePoint Online access to the on-premises network, the correct approach is to use the SharePoint admin center's 'Access control' settings to configure a network location policy (allowed IP ranges), or use Azure AD Conditional Access with a Named Location policy that restricts access by IP range.
Community Discussion
No community discussion yet for this question.