Microsoft 365 Endpoint Administrator Associate MD-102 Practice Question
You manage Intune for a company that lets employees access Microsoft 365 data from unmanaged iOS and Android devices. You create an Intune app protection policy that blocks copy and paste of corporate data. You must ensure the policy is enforced whenever users connect to Exchange Online or SharePoint Online from these devices.
In Azure AD Conditional Access, which grant control should you configure to meet the requirement?
Select the Require app protection policy grant control.
This control forces authentication through mobile apps that have an Intune Mobile Application Management (MAM) policy assigned. When applied to Exchange Online and SharePoint Online, any session from an unmanaged iOS or Android device must use an app with the Intune app protection policy, ensuring the copy-and-paste restriction is enforced.
Other controls do not guarantee MAM enforcement:
Require device to be marked as compliant targets fully enrolled (MDM-managed) devices, which these BYOD devices are not.
Require approved client app merely checks that the app is on Microsoft's approved list and is being deprecated.
Require multi-factor authentication improves sign-in security but does not apply Intune app protection policies.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an Intune app protection policy?
Open an interactive chat with Bash
How does Azure AD Conditional Access enforce app protection policies?
Open an interactive chat with Bash
Why is 'Require app protection policy' better than other grant controls for BYOD scenarios?
Open an interactive chat with Bash
Microsoft 365 Endpoint Administrator Associate MD-102
Manage applications
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .