SC-200 · Question #88
SC-200 Question #88: Real Exam Question with Answer & Explanation
Sign in or unlock SC-200 to reveal the answer and full explanation for question #88. The question stem and answer options stay visible for context.
Question
You have the following environment: - Azure Sentinel - A Microsoft 365 subscription - Microsoft Defender for Identity - An Azure Active Directory (Azure AD) tenant You configure Azure Sentinel to collect security logs from all the Active Directory member servers and domain controllers. You deploy Microsoft Defender for Identity by using standalone sensors. You need to ensure that you can detect when sensitive groups are modified in Active Directory. Which two actions should you perform? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
Options
- AConfigure the Advanced Audit Policy Configuration settings for the domain controllers.
- BModify the permissions of the Domain Controllers organizational unit (OU).
- CConfigure auditing in the Microsoft 365 compliance center.
- DConfigure Windows Event Forwarding on the domain controllers.
Unlock SC-200 to see the answer
You've previewed enough free SC-200 questions. Unlock SC-200 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.