Last Updated on November 5, 2021 by Admin 3
Your network contains an on-premises Active Directory domain.
Your company has a security policy that prevents additional software from being installed on domain controllers.
You need to monitor a domain controller by using Microsoft Azure Advanced Threat Protection (ATP).
What should you do? More than once choice may achieve the goal. Select the BEST answer.
- Deploy an Azure ATP standalone sensor, and then configure port mirroring.
- Deploy an Azure ATP standalone sensor, and then configure detections.
- Deploy an Azure ATP sensor, and then configure detections.
- Deploy an Azure ATP sensor, and then configure port mirroring.
Explanation:
If you’re installing on a domain controller, you don’t need a standalone ATP sensor. You need to configure the detections to detect application installations. With an ATP sensor (non-standalone), you don’t need to configure port mirroring.
If you’re installing on a domain controller, you don’t need a standalone ATP sensor. You need to configure the detections to detect application installations. With an ATP sensor (non-standalone), you don’t need to configure port mirroring.