ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-300 All Questions

View all questions & answers for the AZ-300 exam
Go to Exam

Exam AZ-300 topic 15 question 1 discussion

Actual exam question from Microsoft's AZ-300
Question #: 1
Topic #: 15
[All AZ-300 Questions]

You need to recommend a solution to automate the configuration for the finance department users. The solution must meet the technical requirements.
What should you include in the recommendation?

  • A. an Azure logic app and the Microsoft Identity Management (MIM) client
  • B. Azure AD Identity Protection
  • C. dynamic groups and conditional access policies
  • D. Azure AD B2C
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Scenario: Ensure Azure Multi-Factor Authentication (MFA) for the users in the finance department only.
The recommendation is to use conditional access policies that can then be targeted to groups of users, specific applications, or other conditions.
References:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userstates
by Rajuuu at April 21, 2020, 1:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Rajuuu
Highly Voted 5 years, 1 month ago
Conditional access policy enable one to configure the MFA.
upvoted 12 times
...
tundervirld
Most Recent 4 years, 9 months ago
I want to think. Scenario: Ensure Azure Multi-Factor Authentication (MFA) for the users in the finance department only. Correct Answer: C Explanation: Logic App to do it, doesn't make sense, AD Identity Protection is mainly to detect and remediation of identity-based risks, AAD B2C is identity as a service to get single sign-on access to your applications and APIs. So The only option that makes sense by descarte is C. References: https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection https://docs.microsoft.com/en-us/azure/active-directory-b2c/overview
upvoted 1 times
...
YPR
4 years, 10 months ago
C is correct answer. • Azure Multi-Factor Authentication (MFA) for the users in the finance department only. The recommendation is to use conditional access policies that can then be targeted to groups of users, specific applications, or other conditions.
upvoted 1 times
...
gboyega
4 years, 11 months ago
C is the correct answer
upvoted 2 times
...
Roy1208
4 years, 12 months ago
How about is automation part of the question ?
upvoted 1 times
Harkonnen
4 years, 10 months ago
Without automation involved, B would be the correct option. After all, a conditional access policy is part of the Identity Protection functionality. When it says to automate what it is asking is that automatically, when I create a user I want him to be added to the Financial users group, so the policy is applied. With dynamic groups, you can set a rule that adds automatically users to a group based on an attribute, like the conveniently mentioned attribute "Department".
upvoted 2 times
...
...
milind8451
5 years, 1 month ago
Question asked doesn't makes sense with options.
upvoted 1 times
AnujD
5 years, 1 month ago
MFA criteria makes Option C (conditional access policy) qualified as an answer.
upvoted 4 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel