ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-303 All Questions

View all questions & answers for the AZ-303 exam
Go to Exam

Exam AZ-303 topic 2 question 1 discussion

Actual exam question from Microsoft's AZ-303
Question #: 1
Topic #: 2
[All AZ-303 Questions]

HOTSPOT -
You have an Azure Active Directory (Azure AD) tenant.
You need to create a conditional access policy that requires all users to use multi-factor authentication when they access the Azure portal.
Which three settings should you configure? To answer, select the appropriate settings in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/app-based-mfa
by xaccan at Jan. 5, 2021, 7:18 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
xaccan
Highly Voted 4 years, 7 months ago
The answer is correct https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-all-users-mfa
upvoted 24 times
...
azurecert2021
Highly Voted 4 years, 6 months ago
the answer is correct Sign in to the Azure portal as a global administrator, security administrator, or Conditional Access administrator. Browse to Azure Active Directory > Security > Conditional Access. Select New policy. Give your policy a name. Under Assignments, select Users and groups and exclude Users and groups for your organization's emergency access or break-glass accounts. Under Cloud apps or actions > Include, select All cloud apps Under Conditions > Client apps, switch Configure to Yes and under Select the client apps this policy will apply to leave all defaults Under Access controls > Grant, select Grant access, Require multi-factor authentication Enable policy to On. Create to create to enable your policy
upvoted 21 times
pentium75
4 years ago
But the answer states you must NOT configure "Conditions". It explicitly askes for THREE items to configure. Your answer mentions four: (1) Assignments, (2) Cloud apps, (3) Conditions, (4) Access controls.
upvoted 2 times
...
...
sandeepmalik
Most Recent 3 years, 4 months ago
In today's exam. Score 900+ Correct answer.
upvoted 1 times
...
nd78
3 years, 6 months ago
on Exam today 21st Jan, 2022
upvoted 1 times
...
Nands23
3 years, 7 months ago
correct.This was on today's exam. 12/29/2021
upvoted 1 times
...
tomatosis
3 years, 7 months ago
On exam 23 Dec 2021, I chose the same
upvoted 1 times
...
Jerry2096
3 years, 7 months ago
Correct. MFA in the policy is under “grant” configuration, it is not a “condition”, so there is no condition required.
upvoted 1 times
...
Dpejic
3 years, 8 months ago
On exam today 22/11/21. r. Score 839
upvoted 2 times
...
syu31svc
3 years, 11 months ago
Multi-factor authentication (MFA) is a process where a user is prompted during a sign-in event for additional forms of identification. This prompt could be to enter a code on their cellphone or to provide a fingerprint scan. When you require a second form of authentication, security is increased as this additional factor isn't something that's easy for an attacker to obtain or duplicate. We must configure the Users and Groups to whom this conditional access policy applies. We must configure the Cloud apps to apply the conditional access policy. To apply the policy for Azure portal, choose - Microsoft Azure Management Grant Access controls let you define the requirements for a user to be granted access. Select "Require multi-factor authentication" https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-azure-mfa Answer is correct
upvoted 4 times
...
VMUN
4 years, 1 month ago
26-June-21, Passed the exam. Correct Answer
upvoted 4 times
...
jd94
4 years, 1 month ago
6/12/2021. Passed the exam. Users and Groups. Cloud Apps. Grant
upvoted 4 times
heamgu
4 years, 1 month ago
Do you have an email I can contact you ?
upvoted 1 times
...
...
scruzer
4 years, 3 months ago
Why isn't condition option selected?
upvoted 3 times
scristian7111
4 years, 2 months ago
Yes, it should have been selected with MFA
upvoted 1 times
...
pentium75
4 years ago
Probably because you want it to apply always so there's no need for a condition? Condition would mean "when from unprotected network" or "when on non-domain device" or things like that, but that's probably not required in that scenario here. And "when accessing the Azure portal" is a configured under Cloud Apps.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel