Exam AZ-500 topic 5 question 71 discussion

Actual exam question from Microsoft's AZ-500

Question #: 71
Topic #: 5

You have an Azure AD tenant that contains the users shown in the following table.

You need to ensure that the users cannot create app passwords. The solution must ensure that User1 can continue to use the Mail and Calendar app.

What should you do?

A. Assign User1 the Authentication Policy Administrator role.
B. Enable Azure AD Password Protection.
C. Configure a multi-factor authentication (MFA) registration policy.
D. Create a new app registration.
E. From multi-factor authentication, configure the service settings.

Show Suggested Answer

Suggested Answer: E 🗳️

by cris_exam at Jan. 28, 2024, 1:26 p.m.

Comments

Submit Cancel

cris_exam

Highly Voted 10 months, 2 weeks ago

Given answer is correct. https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-app-passwords#allow-users-to-create-app-passwords 1. Sign in to the Microsoft Entra admin center as at least an Authentication Policy Administrator. 2. Browse to Conditional Access > Named locations. 3. Click on "Configure MFA trusted IPs" in the bar across the top of the Conditional Access | Named Locations window. 4. On the Multifactor authentication page, within the Service Settings tab, under "app passwords", select the "Do not allow users to create app passwords to sign in to non-browser apps"

upvoted 11 times

bohneee

8 months, 3 weeks ago

Thanks!

upvoted 1 times

...