ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 2 question 113 discussion

Actual exam question from Microsoft's SC-300
Question #: 113
Topic #: 2
[All SC-300 Questions]

You have a Microsoft Entra tenant.

You configure self-service password reset (SSPR) by using the following settings:

• Require users to register when signing in: Yes
• Number of methods required to reset: 1

What is a valid authentication method available to users?

  • A. a mobile app notification
  • B. an FIDO2 security token
  • C. a Microsoft Teams chat
  • D. an email to an address outside your organization
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by perkp at Jan. 21, 2025, 11:59 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
perkp
Highly Voted 3 months, 3 weeks ago
Selected Answer: D
Just tested in Azure portal. When you choose only 1 authentication method Mobile app notification is grayed out, and Email is the only of the options that are available.
upvoted 5 times
...
Obi_Wan_Jacoby
Most Recent 1 month ago
Selected Answer: A
I am going with A. Consider answer D states "an email to an address outside your organization" whereas "Email" is an option in SSPR, not what they have listed here. The Email option for Self-Service Password Reset (SSPR) can be configured for either internal or external email addresses. However, using an internal email address is generally more secure and recommended. Comparison: Email vs. Mobile App Notification Email: Pros: Easy to set up and use; familiar to most users. Cons: Can be less secure due to potential phishing attacks; relies on users having access to their email. Mobile App Notification: Pros: More secure; uses push notifications through apps like Microsoft Authenticator; less susceptible to phishing. Cons: Requires users to have the app installed and configured. Recommendation: Mobile App Notification is generally better for security and reliability. It provides a stronger defense against phishing and ensures users can securely reset their passwords using a trusted app.
upvoted 1 times
Obi_Wan_Jacoby
1 month ago
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-sspr-howitworks?source=recommendations#authentication-methods
upvoted 1 times
...
...
YesPlease
2 months, 2 weeks ago
Selected Answer: A
Answer A) a mobile app notification (This is the only one that can be used from this particular list) Remember, the settings says they have to REGISTER at least one method...but the backend admin may have setup more than one authentication method to register with. The following authentication methods are available for SSPR: - Mobile app notification (***this is valid if the admin setup more than one method to authenticate) - Mobile app code (***valid for one method only scenario) - Email (***Has to be to their company email address and not external) - Mobile phone - Office phone (available only for tenants with paid subscriptions) - Security questions https://learn.microsoft.com/en-us/entra/identity/authentication/concept-sspr-howitworks#authentication-methods
upvoted 1 times
csi_2025
2 months, 1 week ago
Nope you are wrong on two accounts: 1) You don't assume what could be configured but go by what is stated. MS doesn't do trick questions but has a problem with phrasing and wording of their questions 2) Email is obviously not the company email address. How would you be able to read the email to reset your account if you need access to the account that is currently blocked to read the email, obviously you have to send the email to a different email address. 3) From your wording you are also wrong on the mobile app notification. You can only enable that when SSPR is set up to require users to use two methods to reset their password. The question states its one, and that only allows for app code but not notification. Answer is D.
upvoted 1 times
...
...
59e8fdb
2 months, 2 weeks ago
Selected Answer: A
109 is exactly the same question with completely different answer here, wtf?
upvoted 1 times
csi_2025
2 months, 1 week ago
D is correct, YesPlease argument is wrong.
upvoted 1 times
...
YesPlease
2 months, 2 weeks ago
The people answering are not understanding what they are looking at. The answer for this one is "A" because they can not use an external email to authenticate. If this was possible, then I could register with any company in the world.
upvoted 1 times
...
...
Gmobilize
2 months, 2 weeks ago
Selected Answer: D
So from many sets of questions we assume it's D, but literally a few questions up we have the same question with a different answer - "mobile app notification", why is that?
upvoted 2 times
...
ethhacker
2 months, 3 weeks ago
Selected Answer: D
D only available in Azure
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago