ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam
Go to Exam

Exam MS-102 topic 1 question 302 discussion

Actual exam question from Microsoft's MS-102
Question #: 302
Topic #: 1
[All MS-102 Questions]

You have a Microsoft 365 E5 subscription.

You plan to use Microsoft Entra ID Protection.

You need to ensure that account passwords must be changed if account credentials are leaked.

What should you configure?

  • A. a user risk policy
  • B. Password protection
  • C. a sign-in risk policy
  • D. self-service password reset (SSPR)
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Drainev at Oct. 15, 2024, 4:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
justITtopics
Highly Voted 7 months, 1 week ago
Selected Answer: A
https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-risk-based-sspr-mfa#enable-user-risk-policy-for-password-change Enable user risk policy for password change: When one of these pairs matches an account in your environment, a risk-based password change can be requested
upvoted 5 times
...
mido3100
Most Recent 7 months, 2 weeks ago
Selected Answer: A
User risk policy and in controls select allow access and require password change.
upvoted 2 times
...
Tr619899
7 months, 3 weeks ago
User risk policy - assesses the likelihood that a user's credentials have been compromised. If a high risk is detected (such as leaked credentials), you can configure the policy to require a password change as a mitigation action.
upvoted 3 times
JohnDoe47
7 months, 2 weeks ago
This should be the relevant documentation: https://learn.microsoft.com/en-us/entra/identity/authentication/tutorial-risk-based-sspr-mfa#enable-user-risk-policy-for-password-change
upvoted 1 times
...
...
0b29bdf
7 months, 3 weeks ago
leaked credential falls under user risk. thus need to configure user risk policy. this ensures that if account credentials are leaked, users are prompted to change their passwords to mitigate the risk.
upvoted 2 times
...
GetEsn
7 months, 4 weeks ago
Selected Answer: A
If the credentials are compromised, it's the user is compromised, not his session. So a user policy added to a conditional access ensure to change the user password
upvoted 1 times
...
GetEsn
8 months ago
If the credentials are compromised, it's the user is compromised, not his session. So a user policy added to a conditional access ensure to change the user password
upvoted 1 times
...
Drainev
8 months ago
Selected Answer: C
Tricky question here I guess... This should NOT be Password Protection since it only allows to use banned password lists to prevent user to use 'easy to guess' passwords. Users won't be able to reset their passwords themselves without SSPR but I guess this is not what we're asked. So I would say the answer should be sign-in risk policy. Please correct me if i'm wrong!! Source: https://learn.microsoft.com/en-us/entra/id-protection/howto-identity-protection-configure-risk-policies#microsofts-recommendation
upvoted 1 times
Ody
7 months ago
You were right, before you were wrong. ; - ) It's a User Risk policy. Sign in Risk requires MFA.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel