Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Microsoft Exam AZ-801 Topic 11 Question 61 Discussion

Actual exam question for Microsoft's AZ-801 exam
Question #: 61
Topic #: 11
[All AZ-801 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an on-premises server named Server1 that runs Windows Server.

You have a Microsoft Sentinel instance.

You add the Windows Firewall data connector in Microsoft Sentinel.

You need to ensure that Microsoft Sentinel can collect Windows Firewall logs from Server1.

Solution: You onboard Server1 to Microsoft Defender for Endpoint.

Does this meet the goal?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Val at Aug 24, 2024, 08:12 AM

Limited Time Offer

25%

Off

Get Premium AZ-801 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Blossom
3 months ago
Ah, I see what they're going for here. Trying to kill two birds with one stone, eh? But nah, this isn't the way to do it. Time to think outside the box.
upvoted 0 times
...
Sharika
3 months ago
That's a good point, we should consider other options before making a final decision.
upvoted 0 times
...
Theresia
3 months ago
Hold up, you want me to onboard the server to Microsoft Defender? That's like using a sledgehammer to crack a nut. There must be a simpler way to get those logs into Sentinel.
upvoted 0 times
Annelle
2 months ago
Hold up, you want me to onboard the server to Microsoft Defender? That's like using a sledgehammer to crack a nut. There must be a simpler way to get those logs into Sentinel.
upvoted 0 times
...
Audrie
3 months ago
A) Yes
upvoted 0 times
...
...
Leana
3 months ago
But what if there is another way to achieve the goal without onboarding to Microsoft Defender for Endpoint?
upvoted 0 times
...
Kayleigh
3 months ago
Hmm, I'm not sure this is the correct approach. Isn't there a more direct way to get those Windows Firewall logs into Microsoft Sentinel?
upvoted 0 times
Fernanda
2 months ago
I agree with User2, there might be a more direct way to get the logs
upvoted 0 times
...
Delila
2 months ago
B) No
upvoted 0 times
...
Lawanda
3 months ago
A) Yes
upvoted 0 times
...
...
Audry
3 months ago
I agree with Sharika, onboarding Server1 to Microsoft Defender for Endpoint should allow Microsoft Sentinel to collect Windows Firewall logs.
upvoted 0 times
...
Sharika
4 months ago
I think the solution is to onboard Server1 to Microsoft Defender for Endpoint.
upvoted 0 times
...
Tomas
4 months ago
Onboarding Server1 to Microsoft Defender for Endpoint won't help collect Windows Firewall logs in Microsoft Sentinel. That's not the right solution.
upvoted 0 times
Deeann
3 months ago
Onboarding Server1 to Microsoft Defender for Endpoint won't help collect Windows Firewall logs in Microsoft Sentinel. That's not the right solution.
upvoted 0 times
...
Willodean
3 months ago
B) No
upvoted 0 times
...
Carmelina
3 months ago
A) Yes
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77