ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 5 question 56 discussion

Actual exam question from Microsoft's AZ-500
Question #: 56
Topic #: 5
[All AZ-500 Questions]

You have an Azure Active Directory (Azure AD) tenant that contains a group named Group1.

You need to ensure that the members of Group1 sign in by using passwordless authentication.

What should you do?

  • A. Configure the sign-in risk policy.
  • B. Create a Conditional Access policy.
  • C. Configure the Microsoft Authenticator authentication method policy.
  • D. Configure the certificate-based authentication (CBA) policy.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by juandmi at Jan. 10, 2023, 1:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zellck
Highly Voted 2 years, 1 month ago
Selected Answer: C
C is the answer. https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods-manage#authentication-methods-policy The Authentication methods policy is the recommended way to manage authentication methods, including modern methods like passwordless authentication. Authentication Policy Administrators can edit this policy to enable authentication methods for all users or specific groups.
upvoted 8 times
...
NeoTactics
Most Recent 8 months, 2 weeks ago
I think nowadays the answer should be B. You define the methods the users group can use for setting up MFA with the Authentication Methods. But actually enforcing MFA is done using Conditional Access (or Security Defaults).
upvoted 3 times
...
ESAJRR
1 year, 9 months ago
Selected Answer: C
C. Configure the Microsoft Authenticator authentication method policy.
upvoted 3 times
...
ITTesters
2 years, 2 months ago
Selected Answer: C
Correct, when using the right settings from within the policy; https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-phone
upvoted 4 times
...
ITTesters
2 years, 2 months ago
Selected Answer: C
Correct, when using the right settings from within the policy; https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-phone
upvoted 1 times
...
majstor86
2 years, 3 months ago
Selected Answer: C
C. Configure the Microsoft Authenticator authentication method policy.
upvoted 2 times
...
Nick66
2 years, 4 months ago
Selected Answer: C
Authentication methods policy To check settings in the Authentication methods policy, sign in as an Authentication Policy Administrator and go to Azure Active Directory > Security > Authentication methods > Policies. A new tenant has all methods Off by default, which makes migration easier because legacy policy settings don't need to be merged with existing settings.
upvoted 1 times
...
Nickname01
2 years, 4 months ago
you need to ensure that they login with passwordless i think it should be a conditional access policy but this is still in preview at the moment. https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-strengths
upvoted 3 times
...
juandmi
2 years, 4 months ago
correct. Microsoft [...] offer the following three passwordless authentication options that integrate with Azure Active Directory (Azure AD): * Windows Hello for Business * Microsoft Authenticator * FIDO2 security keys https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-passwordless
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel