Trusted Network Detection relies on observable network signals from the endpoint. Hostname/IP resolution, DNS server, and DNS search domain are valid criteria because they indicate whether the device is attached to a known corporate network. Option D (DNS Search Domain, DNS Server, Hostname Resolution) is correct because it lists supported trusted-network criteria.
Why the other options are incorrect:
A. Hostname Resolution, Network Adapter IP, Default Gateway: Default Gateway can identify a local network path, but it is not always one of the exact trusted-network criteria set in this item.
B. DNS Servers, DNS Search Domain, Network Adapter IP: DNS Search Domain is a trusted-network signal because corporate networks commonly push recognizable suffixes to endpoints.
C. Hostname Resolution, DNS Servers, Geo Location: DNS Server criteria identify a trusted network by checking whether the endpoint sees expected internal resolver addresses.
