You have an Azure subscription that contains the users shown in the following table. Which users can enable Azure AD Privileged Identity Management (PIM)?
The given answer is incorrect.
This question is asking who can enable PIM?
To enable PIM there are 3 main steps:
- Login to Azure Portal as a Global Admin.
- Consent to PIM
- You are asked to verify your identity with MFA. If you haven't set up MFA yet you are asked to complete MFA setup before you can consent PIM.
Reference: https://github.com/MicrosoftDocs/azure-docs/commit/755069f4ff7430f739b1933dc082dffe9b6d564f#diff-38273a45d682dbc4e8ca5cb8548a045af63218005855ec067b0707aaa9d406f0
In this case, User2 can enable Azure PIM. How about user3? Yes it can because when MFA is asked the MFA state is changed to Enabled and User3 just needs to complete MFA setup before it can consent and enable PIM.
The correct answer is A - User2 and User3 only.
You don't need MFA to enable it. Indeed, I have a brand new fresh AAD and the first thing I did was enable PIM. Another thing: Consent is NO LONGER needed. You just enable it, period.
As I understand it; The fact User1 is the owner of a subscription within a tenant has nothing to do with what's going on in the Azure Tenant itself - like the PIM configuration. User1 lacks the privileges to handle those. Therefore, answer A.
Ans:User2 & User3.
Considering by ...1)they are Global admin. 2)user2 already enforced with MFA ,user3 can opt for MFA when request PIM 3) refer this https://docs.microsoft.com/en-us/azure/active-directory/privileged-identity-management/pim-how-to-require-mfa
Hope there P2 licensed user above all of this. I can see many questions here are not providing complete information.It leads us to take wrong answer. Its not testing our knowledge, it is cheating...lol
This section is not available anymore. Please use the main Exam Page.AZ-500 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
teehex
Highly Voted 4 years, 1 month ago153a793
8 months, 3 weeks agofabianotrd
Highly Voted 4 years, 3 months agoOpsecDude
2 years, 9 months agopentium75
11 months agoOutbreak
3 years, 11 months agoLHU
Most Recent 1 month agoStrive_for_greatness_kc
1 year, 5 months agoESAJRR
1 year, 9 months agoArchitectX
1 year, 9 months agomajstor86
2 years, 3 months agoOpsecDude
2 years, 9 months agoNik2Quik
2 years, 11 months agoTtotheA2021
2 years, 11 months agotnagy
2 years, 11 months agoAlessandro365
3 years agoHazemSbaih
3 years agofeln
3 years agoEltooth
3 years, 3 months agosiobhan1
3 years, 3 months agogc12345
3 years, 4 months ago