ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 1 question 32 discussion

Actual exam question from Microsoft's MS-500
Question #: 32
Topic #: 1
[All MS-500 Questions]

HOTSPOT -
You have a Microsoft 365 subscription that contains the users shown in the following table.

You create and enforce an Azure Active Directory (Azure AD) Identity Protection user risk policy that has the following settings:
✑ Assignments: Include Group1, Exclude Group2
✑ User-risk: User risk level of Medium and above
✑ Access: Allow access, Require password change
The users attempt to sign in. The risk level for each user is shown in the following table.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Yes.
User1 is in Group1 which the policy applies to.

Box 2: No -
User2 is in Group2 which is excluded from the policy.

Box 3: No -
User3 is in Group1 which is included in the policy and Group2 which is excluded from the policy. In this case, the exclusion wins so the policy does not apply to
User3.
by kiketxu at March 13, 2021, 9:41 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kiketxu
Highly Voted 4 years, 5 months ago
Yes, (High and included) No, (Medium but excluded) No, (High but excluded too)
upvoted 30 times
...
DarkAndy
Highly Voted 3 years, 2 months ago
Valid on exam. Jun 10, 2022
upvoted 6 times
...
adarvasi
Most Recent 2 years, 10 months ago
Correct answer. Exclude overwrites include!
upvoted 3 times
...
pete26
2 years, 11 months ago
I think they changed the wording for this question. It says now a user risk policy. In this case the answers given are correct: Y, N, N
upvoted 5 times
...
SKam22
2 years, 11 months ago
N, N, N. Sign in risk policy on supports MFA. Password reset is for User risk policy!
upvoted 1 times
...
preeya
3 years ago
valid on exam july 27,2022
upvoted 3 times
...
Eltooth
3 years, 1 month ago
Yes No No
upvoted 2 times
...
Bulldozzer
3 years, 1 month ago
This question is not clear or this is a trap because the Password change requirement is not an available option in the sign-in risk policy.
upvoted 1 times
Bulldozzer
3 years, 1 month ago
So, for me the answers should be No, No, No
upvoted 2 times
...
...
[Removed]
3 years, 2 months ago
exclusion overrides inclusion, yes, no, no
upvoted 3 times
...
mkoprivnj
3 years, 8 months ago
Yes, (High and included) No, (Medium but excluded) No, (High but excluded too)
upvoted 2 times
...
MikeMatt2020
4 years ago
I could be wrong, but the action for a sign-in risk policy to to "Require MFA". The USER RISK POLICY action is to require a password change. Are they trying to trick us with this question? The sign-in risk policy that is mentioned would not force the user to change his/her password, it would require MFA Shouldn't it be NO, NO, NO
upvoted 4 times
...
Rstilekar
4 years, 2 months ago
Answers are correct and logical (exclusion wins over inclusions for U2 & U3)
upvoted 1 times
...
Dawid321
4 years, 4 months ago
Tricky, sign-in risk policy required MFA confirmation
upvoted 2 times
ellik
4 years, 3 months ago
I guess this is user risk policy (different than sign-in risk policy which require MFA) , which requires SSPR to be enabled.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel