You have an Azure virtual machine named VM1 that runs Windows Server.
You plan to deploy a new line-of-business (LOB) application to VM1.
You need to ensure that the application can create child processes.
What should you configure on VM1?
Click on the arrows to vote for the correct answer
A. B. C. D.D
https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/customize-exploit-protection?view=o365-worldwideThe correct answer to this question is D. Exploit protection.
Exploit protection is a security feature in Windows that helps to protect against exploits and other attacks. It includes various settings and mitigations that can be configured to prevent malicious code from running on a system.
When a process attempts to create a child process, Windows checks if the parent process has the necessary permissions to do so. If the parent process does not have the required permissions, the operation will fail. This is done to prevent malicious processes from spawning other processes that could cause harm.
To ensure that the LOB application can create child processes, you need to configure the appropriate exploit protection settings on VM1. This can be done by following these steps:
By enabling child process creation for the LOB application in the exploit protection settings, you are allowing it to spawn child processes without being blocked by Windows security measures. This should allow the application to function as intended.
The other options listed in the question are not relevant to this scenario:
A. Microsoft Defender Credential Guard is a feature in Windows 10 and Windows Server 2016/2019 that helps to protect against Pass-the-Hash and other credential theft attacks. It is not related to child process creation.
B. Microsoft Defender Application Control is a security feature in Windows that allows you to whitelist trusted applications and prevent untrusted applications from running. It is not related to child process creation.
C. Microsoft Defender SmartScreen is a feature in Windows that helps to protect against phishing and malware attacks by checking URLs and downloaded files against a database of known threats. It is not related to child process creation.