ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-100 All Questions

View all questions & answers for the MS-100 exam
Go to Exam

Exam MS-100 topic 4 question 1 discussion

Actual exam question from Microsoft's MS-100
Question #: 1
Topic #: 4
[All MS-100 Questions]

Your company has an Azure Active Directory (Azure AD) tenant named contoso.com and a Microsoft 365 subscription.
All users use Windows 10 devices to access Microsoft Office 365 apps.
All the devices are in a workgroup.
You plan to implement passwordless sign-in to contoso.com.
You need to recommend changes to the infrastructure for the planned implementation.
What should you include in the recommendation?

  • A. Join all the devices to contoso.com.
  • B. Deploy Azure AD Application Proxy.
  • C. Deploy X.509.3 certificates to all the users.
  • D. Deploy the Microsoft Authenticator app.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
Reference:
https://www.microsoft.com/security/blog/2021/09/15/the-passwordless-future-is-here-for-your-microsoft-account/
by [deleted] at May 2, 2022, 2:33 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
arsh807
1 year, 3 months ago
Devices are in Workgroup. How do you plan to use Authenticator without joining the devices to the domain?
upvoted 2 times
...
felipinho109
2 years, 6 months ago
How can you deploy Authenticator if the desktops are not part of the domain?
upvoted 3 times
...
Startkabels
2 years, 8 months ago
Selected Answer: D
Nobrainer D
upvoted 1 times
...
[Removed]
3 years, 3 months ago
From: https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-phone Prerequisites To use passwordless phone sign-in with the Microsoft Authenticator app, the following prerequisites must be met: Recommended: Azure AD Multi-Factor Authentication, with push notifications allowed as a verification method. Push notifications to your smartphone or tablet help the Authenticator app to prevent unauthorized access to accounts and stop fraudulent transactions. The Authenticator app automatically generates codes when set up to do push notifications so a user has a backup sign-in method even if their device doesn't have connectivity. Latest version of Microsoft Authenticator installed on devices running iOS 8.0 or greater, or Android 6.0 or greater. The device on which the Microsoft Authenticator app is installed must be registered within the Azure AD tenant to an individual user.
upvoted 1 times
vanr2000
2 years, 3 months ago
Don't take out of context what you're copying here. "The device that runs Microsoft Authenticator must be registered to an individual user." They are talking about Android devices that run the Microsoft Authenticator, not the Windows 10 computer that you want to not use Passwords. https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-phone
upvoted 2 times
...
Michman
2 years, 8 months ago
So due to the user being in workgroup they first have to join AAD correct?
upvoted 1 times
theaaronmello
2 years, 8 months ago
No. If you wanted the workstation creds to be the same as contoso.com then yes but it doesn't ask you to configure that.
upvoted 2 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel