Exam MS-100 topic 4 question 39 discussion

Actual exam question from Microsoft's MS-100

Question #: 39
Topic #: 4

HOTSPOT -
You have a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com that includes a user named User1.
You enable multi-factor authentication for contoso.com and configure the following two fraud alert settings:
✑ Set Allow users to submit fraud alerts: On
✑ Automatically block users who report fraud: On
You need to instruct the users in your organization to use the fraud reporting features correctly.
What should you tell the users to do? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer

Suggested Answer:

Code to report fraud during initial greeting: When users receive a phone call to perform two-step verification, they normally press # to confirm their sign-in. To report fraud, the user enters a code before pressing #. This code is 0 by default, but you can customize it.
Block user when fraud is reported: If a user reports fraud, their account is blocked for 90 days or until an administrator unblocks their account. An administrator can review sign-ins by using the sign-in report, and take appropriate action to prevent future fraud. An administrator can then unblock the user's account.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#fraud-alert

by itworxx at June 11, 2020, 6:08 p.m.

Comments

Submit Cancel

itworxx

Highly Voted 5 years ago

Using the authenticator app 90 days

upvoted 21 times

...

TonySuccess

Highly Voted 5 years ago

Yeah, pretty sure if this question appeared in a more current version of this exam, it would be: Using the Authenticator App 90 Days

upvoted 13 times

TonySuccess

5 years ago

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#:~:text=The%20fraud%20alert%20feature%20lets,app%20or%20through%20their%20phone.&text=An%20administrator%20can%20then%20unblock%20the%20user's%20account.

upvoted 2 times

...

gills

Most Recent 2 years, 4 months ago

The dialogue box looks like this. https://www.umsystem.edu/ums/is/infosec/fraud-alerts-multi-factor Answer is: Using the Authenticator App 90 Days

upvoted 2 times

...

hufflepuff

2 years, 8 months ago

Fraud alert The fraud alert feature lets users report fraudulent attempts to access their resources. When an unknown and suspicious MFA prompt is received, users can report the fraud attempt by using the Microsoft Authenticator app or through their phone. The following fraud alert configuration options are available: Automatically block users who report fraud. If a user reports fraud, the Azure AD Multi-Factor Authentication attempts for the user account are blocked for 90 days or until an administrator unblocks the account. An administrator can review sign-ins by using the sign-in report, and take appropriate action to prevent future fraud. An administrator can then unblock the user's account. https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings

upvoted 1 times

...

Nico95

3 years, 10 months ago

The fraud alert feature lets users report fraudulent attempts to access their resources. When an unknown and suspicious MFA prompt is received, users can report the fraud attempt using the Microsoft Authenticator app or through their phone. From : https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings

upvoted 1 times