ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 5 question 44 discussion

Actual exam question from Microsoft's AZ-700
Question #: 44
Topic #: 5
[All AZ-700 Questions]

HOTSPOT -

You have an Azure subscription named Sub1 that is linked to a Microsoft Entra tenant named Tenant1. Sub1 contains an Azure VPN gateway named VNetGW1.

You manually register the Azure VPN Client in Tenant1.

You need to configure VNetGW1 to support the Microsoft Entra authentication of Point-to-Site (P2S) VPN connections. The solution must ensure that users can establish P2S VPN connections by using the Azure VPN Client.

To what should you set Tenant and Issuer in the Point-to-site configuration settings of VNetGW1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by D10SJoker at Feb. 13, 2025, 8 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Silverpro29
1 month ago
The answers are wrong: To configure **Microsoft Entra authentication** (formerly Azure AD) for **Point-to-Site (P2S)** VPN connections using the **Azure VPN Client**, you need to set the **Tenant** and **Issuer** fields correctly in the VPN gateway configuration. Tenant: https://login.microsoftonline.com/<Tenant1-GUID> > This is the correct endpoint for Microsoft Entra ID (Azure AD) authentication. It directs the Azure VPN Client to the Microsoft identity platform for login. Issuer: https://sts.windows.net/<Tenant1-GUID>/ > This is the expected issuer URI in the token issued by Microsoft Entra ID. It must match exactly what the token contains, including the trailing slash. ✅ Final Answer: - Tenant: `https://login.microsoftonline.com/<Tenant1-GUID>` - Issuer: `https://sts.windows.net/<Tenant1-GUID>/` Reference: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-entra-gateway
upvoted 1 times
...
GohanF2
1 month, 1 week ago
Tenant: This must be the Azure AD (Microsoft Entra ID) authority endpoint, which is: https://login.microsoftonline.com/<Tenant-GUID> This URL allows the Azure VPN gateway to redirect users to authenticate via Microsoft Entra. Issuer: This should be the token issuer claim from the ID token issued by Microsoft Entra. The correct value is: https://sts.windows.net/<Tenant-GUID> This is used by the VPN gateway to validate the token's issuer during authentication.
upvoted 1 times
...
cgmaxmaxcg
3 months ago
https://learn.microsoft.com/en-us/azure/vpn-gateway/openvpn-azure-ad-tenant
upvoted 1 times
...
Saba53
4 months ago
Tenant - login Issuer - sts
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel