ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-103 All Questions

View all questions & answers for the AZ-103 exam
Go to Exam

Exam AZ-103 topic 5 question 7 discussion

Actual exam question from Microsoft's AZ-103
Question #: 7
Topic #: 5
[All AZ-103 Questions]

HOTSPOT -
You have an Azure Active Directory (Azure AD) tenant.
You need to create a conditional access policy that requires all users to use multi-factor authentication when they access the Azure portal.
Which three settings should you configure? To answer, select the appropriate settings in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/app-based-mfa
by Bro123 at March 15, 2020, 2:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bro123
Highly Voted 5 years, 2 months ago
Users Condition Grant
upvoted 26 times
macco455
4 years, 11 months ago
WRONG, COnditions are not needed as an option. All you need to do is set the following: Users/Groups- picks what users you want Cloud Apps/Actions- chooses what app is being controlled Grant- allows you to choose MFA grant or deny.
upvoted 11 times
groy
4 years, 9 months ago
right...
upvoted 1 times
vince60370
4 years, 4 months ago
macco455 and the given answer are both right, MS just explained the case here -> https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-azure-mfa#configure-the-conditions-for-multi-factor-authentication
upvoted 1 times
...
...
...
...
certificatores
Highly Voted 5 years, 2 months ago
the given answer is correct as you can check the link in the answer. users cloud grant
upvoted 26 times
arcanjo
5 years ago
For anyone in doubt, the cloud option is the correct option because the question asks to " multi-factor authentication when they access the Azure portal", so, to do this, we need to select the Microsoft Azure Management App, so the policy applies to sign-in events to the Azure portal.
upvoted 4 times
Hanuman
4 years, 11 months ago
Correct
upvoted 1 times
...
...
...
Preeto18
Most Recent 3 years, 8 months ago
Correct Answer 1) Users and Groups 2) Cloud Apps or Actions 3) Grant https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-azure-mfa
upvoted 1 times
...
Thi
4 years, 7 months ago
Users Condition Grant
upvoted 1 times
...
Steve_az
4 years, 10 months ago
Given answer is different from this question - https://www.examtopics.com/exams/microsoft/az-102/view/15/ I think correct answer is: Users Condition Grant
upvoted 3 times
_syamantak
4 years, 10 months ago
Nope! You need to select Users (who this apply to: ALL), Cloud Apps (where would they have access: Microsoft Azure Management a.k.a Portal), Action (what the policy do: Grant or deny access. At this stage you get option to choose Grant with MFA). This policy gets applied to all users with no exceptions hence Conditions are not required at all.
upvoted 6 times
Omnipitus
4 years, 9 months ago
excellent point - the question refers to ALL users
upvoted 1 times
...
...
...
Ulrich20
5 years ago
Answer is correct. Documentation is clear: https://docs.microsoft.com/en-gb/azure/active-directory/authentication/tutorial-enable-azure-mfa MFA is set up in Grant. Conditions is related to Location, Device platform... and does nothing to do in this question
upvoted 10 times
ExamGuy01
5 years ago
I agree wit you
upvoted 1 times
...
...
lizudangxia
5 years ago
https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-risk-policies https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-mfa-policy
upvoted 1 times
...
gsbence
5 years ago
The answer is right. For the Azure Portal you have to choose Microsoft Azure Management Cloud App. See here: https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-azure-mfa
upvoted 2 times
...
Rameshrao
5 years, 2 months ago
Yes, the answer is Users, conditions and grant Check here https://www.itexams.com/exam/AZ-102
upvoted 3 times
...
ExamPrep
5 years, 2 months ago
Hmmm I'm not sure - if you follow the link in the answer: https://docs.microsoft.com/en-gb/azure/active-directory/authentication/tutorial-enable-azure-mfa ...the conditions appear to be setup in the Cloud apps section: For this tutorial, configure the Conditional Access policy to require MFA when a user signs in to the Azure portal. Select Cloud apps or actions. You can choose to apply the Conditional Access policy to All cloud apps or Select apps. To provide flexibility, you can also exclude certain apps from the policy. For this tutorial, on the Include page, choose the Select apps radio button. Choose Select, then browse the list of available sign-in events that can be used. For this tutorial, choose Microsoft Azure Management so the policy applies to sign-in events to the Azure portal. To apply the select apps, choose Select, then Done.
upvoted 5 times
...
deepu1207
5 years, 2 months ago
in portal ther is condition is noththere so in portal cloud apps/user actions were there so they give correrct answer but add this actions in that option is fine
upvoted 1 times
...
deepu1207
5 years, 2 months ago
yes i agree with you but how they give that answer we will check document
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel