ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 1 question 57 discussion

Actual exam question from Microsoft's SC-300
Question #: 57
Topic #: 1
[All SC-300 Questions]

HOTSPOT
-

Your network contains an on-premises Active Directory Domain Services (AD DS) domain that syncs with an Azure AD tenant.

You need to ensure that user authentication always occurs by validating passwords against the AD DS domain.

What should you configure, and what should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by sehlohomoletsane at Aug. 5, 2023, 11:46 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ServerBrain
Highly Voted 1 year, 3 months ago
Correct. PTA using AD Connect
upvoted 11 times
...
penatuna
Highly Voted 1 year, 3 months ago
PTA and Azure AD Connect. PTA: When PTA is deployed, the user provides a password on the Azure AD login page, and Azure AD validates the password with on-premises Active Directory with the help of the PTA agent deployed on-premises. Password hash sync is wrong, cause it only syncs the on-premise passwords to Azure in every too minutes. The authentication happens in Azure AD. Azure AD Connect: You can enable Pass-through Authentication through Azure AD Connect. If you're installing Azure AD Connect for the first time, choose the custom installation path. At the User sign-in page, choose Pass-through Authentication as the Sign On method. On successful completion, a Pass-through Authentication Agent is installed on the same server as Azure AD Connect. In addition, the Pass-through Authentication feature is enabled on your tenant. If you have already installed Azure AD Connect by using the express installation or the custom installation path, select the Change user sign-in task on Azure AD Connect, and then select Next. Then select Pass-through Authentication as the sign-in method. On successful completion, a Pass-through Authentication Agent is installed on the same server as Azure AD Connect and the feature is enabled on your tenant.
upvoted 5 times
...
Wicke
Most Recent 1 year, 3 months ago
MS: https://learn.microsoft.com/en-us/azure/active-directory-domain-services/synchronization#password-hash-synchronization-and-security-considerations First one should be definitely Password Hash
upvoted 2 times
Futfuyfyjfj
8 months ago
Wrong answer, wrong link: https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-password-hash-synchronization?toc=%2Fentra%2Fidentity%2Fdomain-services%2Ftoc.json&bc=%2Fentra%2Fidentity%2Fdomain-services%2Fbreadcrumb%2Ftoc.json#detailed-description-of-how-password-hash-synchronization-works
upvoted 2 times
...
...
CoSaWe
1 year, 3 months ago
password hash synchronization: https://learn.microsoft.com/en-us/azure/active-directory-domain-services/synchronization#password-hash-synchronization-and-security-considerations
upvoted 2 times
Futfuyfyjfj
8 months ago
Wrong answer, wrong link: https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-password-hash-synchronization?toc=%2Fentra%2Fidentity%2Fdomain-services%2Ftoc.json&bc=%2Fentra%2Fidentity%2Fdomain-services%2Fbreadcrumb%2Ftoc.json#detailed-description-of-how-password-hash-synchronization-works
upvoted 3 times
...
...
EmnCours
1 year, 4 months ago
Correct Answer
upvoted 2 times
...
sehlohomoletsane
1 year, 4 months ago
https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad-on-premises
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel