ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 1 question 12 discussion

Actual exam question from Microsoft's MS-500
Question #: 12
Topic #: 1
[All MS-500 Questions]

Your company has a main office and a Microsoft 365 subscription.
You need to enforce Microsoft Azure Multi-Factor Authentication (MFA) by using conditional access for all users who are NOT physically present in the office.
What should you include in the configuration?

  • A. a user risk policy
  • B. a sign-in risk policy
  • C. a named location in Azure Active Directory (Azure AD)
  • D. an Azure MFA Server
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by AmerSerhan at April 22, 2020, 1:29 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AmerSerhan
Highly Voted 5 years, 2 months ago
Named locations With named locations, you can create logical groupings of IP address ranges or countries and regions. You can access your named locations in the Manage section of the Conditional Access page.
upvoted 29 times
theboywonder
4 years ago
you are right, C is correct. This is how it's done: https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/untrusted-networks
upvoted 3 times
...
...
Patesso
Most Recent 2 years, 1 month ago
Etait a l'examen le 18/05/2023
upvoted 2 times
...
Brandon1971
2 years, 4 months ago
Selected Answer: C
Yes Named Locations, https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/untrusted-networks
upvoted 1 times
...
Jonclark
2 years, 4 months ago
Selected Answer: C
Named Locations are the way to be specific about locations in conditional access rules. While sign-in risk does consider location, the condition is based on how risky a location is for the sign-in. Higher-risk locations include anonymous IPs, locations with known malware activity, sign-ins from unusual locations etc.
upvoted 2 times
...
examdog
2 years, 6 months ago
Selected Answer: C
https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition#named-locations
upvoted 1 times
...
preeya
2 years, 11 months ago
This question appeared and can validate the answer July 27, 2022
upvoted 3 times
...
Eltooth
2 years, 12 months ago
Selected Answer: C
C is correct answer.
upvoted 1 times
...
ukutjcplcoawjutdfy
3 years ago
Selected Answer: C
C, FTW!
upvoted 1 times
...
mkoprivnj
3 years, 7 months ago
Selected Answer: C
C is correct. Named locations!
upvoted 1 times
...
kiketxu
4 years, 4 months ago
C for sure.
upvoted 2 times
...
svm_Terran
4 years, 6 months ago
C. Named Location under Azure AD.
upvoted 2 times
...
junkz
4 years, 11 months ago
clearly named locations: Organizations can use this network location for common tasks like: Requiring multi-factor authentication for users accessing a service when they are off the corporate network. Blocking access for users accessing a service from specific countries or regions. The network location is determined by the public IP address a client provides to Azure Active Directory.
upvoted 4 times
...
xofowi5140
5 years, 2 months ago
"for all users who are NOT physically present in the office" I think Sign-in risk policy is the best answer. Administrators can choose to block access, allow access, or allow access but require multi-factor authentication
upvoted 2 times
VTHAR
4 years, 11 months ago
Sign-in risk policy is extra layer of protection as stated in this link https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-risk-based-sspr-mfa Therefore, to enforce MFA for out of office access practically, you need to use "Named Locations". It's enforced in my work environment since one and half years ago.
upvoted 6 times
...
oopspruu
3 years, 10 months ago
For the question, Named Location will be the better option as its main purpose is to enforce a rule based on location condition.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel