HOTSPOT
Your network contains an Active Directory domain.
The Default Domain Policy contains the AppLocker settings configured as shown in the AppLocker Settings
exhibit. (Click the Exhibit button.)
The Default Domain Policy contains the AppLocker properties configured as shown in the AppLocker properties
exhibit. (Click the Exhibit button.)
Use the drop-down menus to select the answer choice that completes each statement.
NOTE: Each correct selection is worth one point.
Hot Area:
Answer: 
Explanation:
App1.exe will be denied for everyone.
The rule configured for App1.exe is an Executable rule.
https://docs.microsoft.com/en-us/windows/device-security/applocker/understand-applocker-enforcementsettings
https://docs.microsoft.com/en-us/windows/device-security/applocker/determine-your-application-controlobjectives
Allowed for Everyone and an Executable
Executables isn’t enforced in properties
0
5
The three AppLocker enforcement modes are described in the following table. The enforcement mode setting defined here can be overwritten by the setting derived from a linked Group Policy Object (GPO) with a higher precedence.
Enforcement mode
Description
Not configured
This is the default setting which means that the rules defined here will be enforced unless a linked GPO with a higher precedence has a different value for this setting.
Enforce rules
Rules are enforced.
Audit only
Rules are audited but not enforced. When a user runs an app that is affected by an AppLocker rule, the app is allowed to run and the info about the app is added to the AppLocker event log. The Audit-only enforcement mode helps you determine which apps will be affected by the policy before the policy is enforced. When the AppLocker policy for a rule collection is set to Audit only, rules for that rule collection are not enforced
When AppLocker policies from various GPOs are merged, the rules from all the GPOs are merged and the enforcement mode setting of the winning GPO is applied.
1
0