ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 2 question 68 discussion

Actual exam question from Microsoft's SC-300
Question #: 68
Topic #: 2
[All SC-300 Questions]

You have a Microsoft 365 tenant.

An on-premises Active Directory domain is configured to sync with the Azure AD tenant. The domain contains the servers shown in the following table.



The domain controllers are prevented from communicating to the internet.

You implement Azure AD Password Protection on Server1 and Server2.

You deploy a new server named Server4 that runs Windows Server 2022.

You need to ensure that Azure AD Password Protection will continue to work if a single server fails.

What should you implement on Server4?

  • A. Azure AD Connect
  • B. Azure AD Application Proxy
  • C. Password Change Notification Service (PCNS)
  • D. the Azure AD Password Protection proxy service
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by JCkD4Ni3L at Oct. 24, 2023, 1:42 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
csi_2025
2 months ago
Selected Answer: D
I am confused, isn't Server 3 and 4 both SPoF and to satisfy the question that it still works after a single Server fails wouldn't you need to make both redundant?
upvoted 1 times
...
Sozo
8 months, 2 weeks ago
Selected Answer: D
To ensure that Azure AD Password Protection continues to work even if a single server fails, you should implement the Azure AD Password Protection proxy service on Server4. This service is responsible for relaying password validation requests from on-premises Active Directory to Azure AD, which is essential for the Azure AD Password Protection feature to work correctly, especially since your domain controllers do not have internet access. By setting up the proxy service on an additional server, you provide redundancy for this functionality.
upvoted 1 times
...
0byte
1 year ago
Selected Answer: D
Correct answer https://learn.microsoft.com/en-us/entra/identity/authentication/concept-password-ban-bad-on-premises#how-microsoft-entra-password-protection-works
upvoted 3 times
...
JCkD4Ni3L
1 year ago
Selected Answer: D
Answer is correct.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago