ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-301 All Questions

View all questions & answers for the AZ-301 exam
Go to Exam

Exam AZ-301 topic 2 question 18 discussion

Actual exam question from Microsoft's AZ-301
Question #: 18
Topic #: 2
[All AZ-301 Questions]

You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains several administrative user accounts.
You need to recommend a solution to identify which administrative user accounts have NOT signed in during the previous 30 days.
Which service should you include in the recommendation?

  • A. Azure AD Identity Protection
  • B. Azure Activity Log
  • C. Azure Advisor
  • D. Azure AD Privileged Identity Management (PIM)
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by mykolaantoniv at Feb. 17, 2020, 2:11 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Rajuuu
Highly Voted 5 years, 2 months ago
Correct Answer is D. You can use the Privileged Identity Management (PIM) audit history to see all role assignments and activations within the past 30 days for all privileged roles. If you want to see the full audit history of activity in your Azure Active Directory (Azure AD) organization, including administrator, end user, and synchronization activity, you can use the Azure Active Directory security and activity reports.
upvoted 14 times
nieuw
5 years, 1 month ago
reference: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-use-audit-log?tabs=new
upvoted 2 times
...
...
mykolaantoniv
Highly Voted 5 years, 4 months ago
Correct answer is D
upvoted 13 times
tartar
4 years, 9 months ago
D is ok
upvoted 3 times
...
...
glam
Most Recent 4 years, 5 months ago
D. Azure AD Privileged Identity Management (PIM)
upvoted 2 times
...
sanketshah
4 years, 5 months ago
D is correct answer
upvoted 2 times
...
clearexam6677
4 years, 9 months ago
D is correct
upvoted 1 times
...
AmazonAu
4 years, 9 months ago
B https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-activity-logs-azure-monitor D is wrong
upvoted 2 times
...
Wildsheep
4 years, 11 months ago
PIM is correct. You can set an alert on PIM that shows a list of Administrators aren't using their privileged roles. https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-configure-security-alerts?tabs=new Azure AD Sign In reports will give you a report of everyone who signed in to a registered application, but wil not show administrative accounts who have NOT been used.
upvoted 8 times
exam67
4 years, 4 months ago
Specifically: user who have NOT signed in recently are "users that have been assigned privileged roles they don't need". They unnecessarily extend the attack surface of the system. PIM enables to spot them and emit security alerts (see section "Administrators aren't using their privileged roles") at link provided by Wildsheep
upvoted 1 times
...
...
milind8451
5 years, 1 month ago
PIM -> My Audit history Here you can generate a report and check who didn't logged in last 30 days. D is right.
upvoted 5 times
...
AmineHZ
5 years, 1 month ago
D is the correct answer
upvoted 1 times
...
jack25
5 years, 2 months ago
it says "have NOT signed in", so the answer should be PIM Link: https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-configure-security-alerts?tabs=new
upvoted 4 times
...
starnb
5 years, 3 months ago
Not entirely sure if D is correct. However I see sign-ins report can be generated from Azure AD. https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-sign-ins
upvoted 7 times
Bluediamond
5 years, 2 months ago
I agree. You do NOT need PIM all editions of AD can create sign in reports for up to 30 days.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel