Microsoft 365 Certified Endpoint Administrator (MD-102) Practice Test

Which Intune feature ensures users can access corporate data only through approved applications?

• A. Intune app protection policies
• B. Intune device configuration profiles
• C. Intune device compliance policies
• D. Intune mobile application management policies

The correct answer is: Intune app protection policies

The correct approach to ensuring that users can access corporate data solely through approved applications is through Intune app protection policies. These policies allow administrators to define how apps can be used, specifically regulating how corporate data is accessed and shared. With app protection policies in place, sensitive information within the applications can be safeguarded by requiring certain conditions, such as authentication and encryption, thus restricting access only to applications that meet specified security and compliance standards. This feature is crucial in environments where data security is paramount, as it fosters a secure application ecosystem while allowing users the flexibility to use their personal devices. It effectively manages risks associated with data leaks while ensuring end-user productivity. In contrast, device configuration profiles focus more on settings and configurations that can be applied to devices, device compliance policies monitor device health and adherence to security requirements, and mobile application management policies involve the deployment and management of mobile applications without necessarily focusing explicitly on safeguarding access to corporate data. While all of these are vital components of managing devices and applications within an organization, app protection policies are specifically designed for controlling access to corporate data through designated applications.