ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 1 question 41 discussion

Actual exam question from Microsoft's MS-500
Question #: 41
Topic #: 1
[All MS-500 Questions]

HOTSPOT -
You have an Azure Active Directory (Azure AD) tenant named contoso.com that contains the users shown in the following table.

You assign an enterprise application named App1 to Group1 and User2.
You configure an Azure AD access review of App1. The review has the following settings:
✑ Review name: Review1
✑ Start date: 01`"15`"2020
✑ Frequency: One time
✑ End date: 02`"14`"2020
✑ Users to review: Assigned to an application
✑ Scope: Everyone
✑ Applications: App1
✑ Reviewers: Members (self)
✑ Auto apply results to resource: Enable
✑ Should reviewer not respond: Take recommendations
On February 15, 2020, you review the access review report and see the entries shown in the following table:

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/governance/perform-access-review
by billo79152718 at Sept. 18, 2022, 10:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kanag1
Highly Voted 2 years, 9 months ago
The given answers are correct. As per the link in the answer area: To make access reviews easier and faster for you, we also provide recommendations that you can accept with a single selection. There are two ways that the system generates recommendations for the reviewer. One method is by the user's sign-in activity. If a user has been inactive for 30 days or more, the system will recommend that the reviewer deny access.
upvoted 8 times
...
GatesBill
Most Recent 2 years, 3 months ago
The given answers are correct. Simply put as follows: - User1 gained (further) access through the access review. - No response was given for User2, so the recommended actions took place; which are checking last sign-in date (should be < 30 days) & checking peer's access (which is User1 in this case). As User2 HAS signed in within the past 30 days and its peer (User1) HAS access to the app, User2 will gain access also. - No response was given for User3, so the recommended actions took place. As User3 DID NOT sign in within the past 30 days and has no known peer which has access, User3's access will be revoked.
upvoted 3 times
...
josh_josh
2 years, 3 months ago
On Feb 20, 2020: User1 can access App1 - NO User2 can access App1 - NO User3 can access App1 - NO This is because User1 was reviewed as requiring access to App1 and last signed in on Feb 14, 2020, before the end of the review period. However, User2 did not respond to the review, so the "Take recommendations" option was applied, which means that their access to App1 will be revoked. User3 is a guest and was not assigned to App1, so they cannot access it.
upvoted 2 times
...
blazefather
2 years, 7 months ago
The answer should be N,N,N. They are to sign in just once and the End date: 02`"14`"2020.
upvoted 2 times
...
gaida
2 years, 8 months ago
members only and guest cannot approve access from them
upvoted 1 times
gaida
2 years, 8 months ago
reviewed the portal and guest user does have self approve. My response is incorrect and Knag1 is correct
upvoted 1 times
...
...
billo79152718
2 years, 9 months ago
Not sure about the last one
upvoted 2 times
EzeQ
2 years, 9 months ago
The user last sign-in is over 30 days and he did not reply, the recommendation will be to deny access. (as Kanag1 explains)
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel