Your company makes use of Microsoft 365 in their environment. You have been tasked with making sure that admin roles are protected. The feature you use should achieve this by requiring approvals. Which of the following is a feature you should use?
A.
Mobile application protection policy.
B.
Microsoft Azure AD Identity Protection.
C.
Microsoft Azure AD Privilege Identity Protection.
Answer is C.
You cant configure or protect Admin accounts without Privileged Identity Management.
Azure AD Identity Protection is for monitoring and protecting USER accounts not ADMIN accounts.
its either a typo here in the question or a catch question, there is no Microsoft Azure AD privilege identity protection, be aware of features and namings...
Guys some of the questions need to be updated as Microsoft has not only changed names but added new features. The answer is C. But the name is now Microsoft Entra Privileged Identity Manager (PIM)
(PIM) is the feature that can protect high-privilege accounts like Global Administrators by utilizing dynamic risk profiles. It is part of the Entra ID security suite and helps manage, control, and monitor access to privileged roles within your environment.
Key Features of PIM:
Just-in-Time (JIT) Access: Allows Global Administrators to request elevated privileges when needed, with approval workflows in place.
Dynamic Risk Profiles: PIM can evaluate risk factors dynamically based on user activity and conditions (e.g., geographic location or unusual sign-ins). If suspicious activity is detected, PIM can enforce additional security measures, such as multi-factor authentication (MFA) or just-in-time activation for global administrators.
Correct Answer: B
Microsoft Azure AD Identity Protection. = Protection of roles.
Microsoft Azure AD Privilege Identity Protection. = Just-in-time activate privileged role assignments.
See Also: https://learn.microsoft.com/en-us/entra/id-protection/how-to-deploy-identity-protection
Para garantir que as funções administrativas estejam protegidas exigindo aprovações, você deve usar a "Proteção de Identidade do Microsoft Azure AD" (opção B). Essa é uma solução que ajuda a proteger as identidades e contas dos administradores, tornando o acesso mais seguro e garantindo a integridade das credenciais administrativas.
A Proteção de Identidade do Microsoft Azure AD oferece recursos para proteger contra ameaças de segurança, como autenticação multifator, políticas de senha e verificações de identidade, que podem ser configuradas para exigir aprovações ou aprovações adicionais para atividades administrativas críticas.
The B is correct, Privileged Identity Management is for have admin right / roles for a specific time.
https://learn.microsoft.com/en-us/answers/questions/127057/what-is-the-key-difference-between-priviledged-ide
Answer : C
The only answer where it is possible to require approval is PIM.
Seems a lot of people think it should be Conditional Access. Conditional Access is used to protect the login eg. MFA. But you cannot require approval.
This section is not available anymore. Please use the main Exam Page.MS-900 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
rabadonqz
Highly Voted 3 years, 5 months agoPizzaPasta
Highly Voted 3 years, 6 months agoOyYaGotta
1 year, 1 month agobigdaddyzaddy
Most Recent 6 months, 2 weeks agoROSEMARIE
11 months agokiik32
1 year, 3 months agoNoursBear
1 year, 3 months agopk191
1 year, 7 months agoDhelailla
1 year, 8 months agoDu_MS900
1 year, 8 months agoTyffty
1 year, 9 months agoSnakad
1 year, 10 months agoStorm
1 year, 10 months agoUzziTheOne
1 year, 11 months agoTyffty
1 year, 9 months agoUzziTheOne
1 year, 11 months agoRahulX
1 year, 11 months agoTyffty
1 year, 11 months agoLeonelexamtopicsnic
2 years ago