Crucial Exams

Microsoft Security Operations Analyst Associate SC-200 Practice Question

Your organization has successfully onboarded 200 Windows 11 computers to Microsoft Defender for Endpoint (MDE). As a security operations analyst, you must ensure that MDE automatically finds other computers and network-connected devices that are not yet onboarded so you can assess and protect them. Which configuration change should you make first to enable this capability?

  • Configure threat indicators in Microsoft 365 Defender to flag unknown endpoints.

  • Create a dedicated device group that is intended to contain unmanaged devices.

  • Enable Device discovery in Microsoft Defender for Endpoint and set the discovery mode to Standard.

  • Turn on Microsoft Defender for Cloud Apps discovery for Shadow IT monitoring.

Microsoft Security Operations Analyst Associate SC-200
Manage a security operations environment
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot