ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam
Go to Exam

Exam MS-102 topic 1 question 152 discussion

Actual exam question from Microsoft's MS-102
Question #: 152
Topic #: 1
[All MS-102 Questions]

HOTSPOT
-

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.



Each user has an Android device with the Microsoft Authenticator app installed and has set up phone sign-in.

The subscription has the following Conditional Access policy:

• Name: Policy1
• Assignments
• Users and groups: Group1, Group2
• Cloud apps or actions: All cloud apps
• Access controls
• Grant: Require multi-factor authentication
• Enable policy: On

From Microsoft Authenticator settings for the subscription, the Enable and Target settings are configured as shown in the exhibit. (Click the Exhibit tab.)



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by hogehogehoge at Oct. 8, 2023, 4:59 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MarkusSan
Highly Voted 1 year, 9 months ago
Answer look correct to me
upvoted 8 times
BigO76
7 months, 1 week ago
Correct...YES - User2 is in Group2, which is included in both the Conditional Access policy and the Authenticator app settings. Passwordless authentication is enforced due to the Conditional Access policy requiring MFA. User2 cannot bypass MFA using just a username and password. No - User3 is in both Group1 and Group2, so they are included in the Conditional Access policy and the Authenticator settings. However, User3 has not set up the Microsoft Authenticator app, making number matching unavailable. No - User3 is in both Group1 and Group2, so they are included in the Conditional Access policy and the Authenticator settings. However, User3 has not set up the Microsoft Authenticator app, making number matching unavailable.
upvoted 1 times
...
...
WASDowningpower
Most Recent 1 month, 2 weeks ago
I think it's NNN. Regarding the first question: number matching is only for push notifications. And the config requires the user to sign in passwordless, so they can't sign in with number matching
upvoted 1 times
WASDowningpower
1 month, 2 weeks ago
nvmd this. it's YNN
upvoted 1 times
...
...
f0f4a76
9 months, 3 weeks ago
How can you say "everyone has -THE MICROSOFT AUTHENTICATOR- and -PHONE SIGN IN- But state in the above chart that USER 3 is not configured? Given answer seems correct if reviewing the top chart, but if reading the question its Y,N,Y. User 2 cannot because he needs to use his phone as required per Conditional Access. Regardless of setting up passwordless. Passwordless just means you get a phone popup with no password, The phone is required.
upvoted 3 times
...
APK1
11 months, 2 weeks ago
Thought user3 should be Yes, but found as no MFA configured. Answer YNN
upvoted 1 times
...
Murad01
1 year ago
Given answers looks correct
upvoted 1 times
...
Scotte2023
1 year, 2 months ago
How does multifactor authentication work? Let's say you're going to sign into your Microsoft account or work or school account, and you enter your username and password. If that's all you need then anybody who knows your username and password can sign in as you from anywhere in the world! But if you have multifactor authentication enabled, things get more interesting. The first time you sign in on a device or app you enter your username and password as usual, then you get prompted to enter your second factor to verify your identity. https://support.microsoft.com/en-gb/topic/what-is-multifactor-authentication-e5e39437-121c-be60-d123-eda06bddf661 User2: It doesn`t specify that they "only" enter a username and password? With passwordless MFA optional, I`d say User2 could sign in.
upvoted 3 times
...
saurekind
1 year, 2 months ago
If all users have authenticator app, why can't user 3 use number matching?
upvoted 1 times
Khattak3143
11 months ago
User 3 does not have an authenticator app.
upvoted 1 times
...
...
Tomtom11
1 year, 3 months ago
https://learn.microsoft.com/en-ie/entra/identity/authentication/howto-authentication-passwordless-phone Recommended: Microsoft Entra multifactor authentication, with push notifications allowed as a verification method. Push notifications to your smartphone or tablet help the Authenticator app to prevent unauthorized access to accounts and stop fraudulent transactions. The Authenticator app automatically generates codes when set up to do push notifications. A user has a backup sign-in method even if their device doesn't have connectivity.
upvoted 1 times
...
Harau
1 year, 9 months ago
YYN User 2 can use username and password, since passwordless is optional
upvoted 2 times
MarkusSan
1 year, 9 months ago
User 2 cannot use username and password only, because of Conditional Access Policy 1: Grant, require MFA for Group1 and Group2
upvoted 11 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel