Practice Exam Test 2 | SC-900 | Dumps | Mock Test
You are evaluating the different services available in Azure when it comes to security. Which of the following can be accomplished with the use of the Azure AD Identity Protection service?
A. Filter traffic to Azure virtual machines
B. Enable Multi-Factor Authentication for users based on detected sign-in risks
C. Provide just-in-time access to resource roles in Azure
D. Measure the security posture of resources defined in an Azure environment
B
With Azure Identity Protection, you can actually enable the use of Multi-Factor Authentication if there is a detected sign-in risk. This can be done via a Sign-in risk policy as shown below
Option A is incorrect since this can be managed with the use of Network Security groups
Option C is incorrect since this can be accomplished with the use of Azure Privileged Identity Management service.
Option D is incorrect since this can be accomplished with the use of Azure Security Center
For more information on Azure AD Identity Protection, please refer to the below URL
Comments are closed, but trackbacks and pingbacks are open.