# AZ-140 — Question 849

**Type:** hot_area
**Topics:** microsoft_intune, microsoft_defender, azure_virtual_desktop

## Question

HOTSPOT
-

You have a Microsoft 365 E5 subscription that uses Microsoft Intune and Microsoft Defender for Endpoint.

You have an Azure Virtual Desktop deployment that contains a personal host pool named Pool1.

Pool1 contains session hosts that have the following configurations:

• Are onboarded to Defender for Endpoint
• Have Windows 11 Enterprise installed
• Are enrolled in Intune

You need to ensure that the user connections to Pool1 meet the following security requirements:

• Users must be prevented from using the clipboard to copy and paste from a session host to a local device.
• Users must be prevented from connecting to websites that are identified as security risks by the Microsoft Defender Threat Intelligence (Defender Tl) service.
• The solution must minimize administrative effort.

What should you configure to meet each requirement? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

//IMG//

## Correct Answer

_See scenario._

**Reference:** examtopics_top_comment

---
Source: https://hiexam.net/q/microsoft/AZ-140/849  
Practice (tracked): https://hiexam.net/study/AZ-140/practice