Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
A company has two offices. These offices connect to the Internet via NAT devices. The offices use the following IP addresses.
| Location | IP address space | Public NAT segment |
| Ohio | 10.12.0.0/16 | 180.10.1.0/24 |
| North Virginia | 172.16.0.0/16 | 190.20.2.0/24 |
The company has two users defined in their Azure AD tenant, as shown below.
| Name | Multi-factor authentication status |
| whizlabusrA | Enabled |
| whizlabusrB | Enforced |
The MFA service settings are shown below.
If the user whizlabusrA signs into Azure from a device that has an IP address of 13.18.1.10, then do the user would require to be authenticated by using a phone?
A. Yes
B. No
Answer – A
Here resources on-premises are using the Internet using NAT Devices. This means outbound for the Internet is NAT Devices. But Inbound request from resources on the Internet is accessible or not depends on if public IP or public DNS name has been assigned to NAT Devices, which is not clear in the question.
Additionally, as you know following are 3 ways to establish a connection between On-premises and Azure VNet
Point-to-site virtual private network (VPN)
Site-to-site VPN
Azure ExpressRoute
This means NAT Devices is not used to establish a connection between On-Premises and Azure VNet.
Here Multi-Factor authentication is enabled for the user. The user uses a device whose IP address does not fall in the range of allowable IP address ranges that can be skipped. Hence Multi-Factor authentication is required.
For more information on multi-factor authentication, one can visit the below URL-
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-mfa-howitworks
Comments are closed, but trackbacks and pingbacks are open.