You have an Azure subscription that contains a virtual machine named VM1 and uses Microsoft Defender for Cloud. Microsoft Defender for Cloud has automatic provisioning configured to use Azure Monitor Agent. You need to create a custom alert suppression rule that will suppress false positive alerts for suspicious use of PowerShell on VM1. What should you do first? A. From Microsoft Defender for Cloud, export the alerts to a Log Analytics workspace. B. From Microsoft Defender for Cloud, add a workflow automation. C. On VM1, trigger a PowerShell alert. D. On VM1, run the Get-MPThreatCatalog cmdlet. Â Suggested Answer: C This question is in SC-200 Exam For getting Microsoft Security Operations Analyst Associate Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Microsoft. The website does not contain actual questions and answers from Microsoft's Certification Exams. Trademarks, certification & product names are used for reference only and belong to Microsoft.
Please login or Register to submit your answer