Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
A company has an Azure AD tenant named “whizlabs.com”. The Azure AD tenant has the following users defined.
Name | Member Of | Mobile Phone | Multi-factor authentication status |
whizlabusrA | whizlabgrpA | 345 677 8900 | Disabled |
whizlabusrB | whizlabgrpA , whizlabgrpB | None | Enabled |
whizlabusrC | whizlabgrpA | 345 877 9000 | Enforced |
The company creates and enforces an Azure AD Identity Protection user risk policy that has the following settings-
- The risk policy is applied to include group “whizlabgrpA” and excludes “whizlabgrpB”.
- The conditions use a sign-in risk of Medium or above.
- The Access is mentioned to “Allow access” and requires a password change.
If the user “whizlabusrA” signs in from an unfamiliar location, would the user be required to change the password?
A. Yes
B. No
Answer — A (yes ) is correct
A is correct.
Following Conditions are met :
- The sign-in risk level is medium or above
- Access is “Allowed access” but require the user to change the password.
- The user is signing -in from an anonymous address
- MFA level at grpA is disabled.
In view of the above, userA will be allowed access but will be asked to change his password. He will not be asked for MFA, as MFA status is disabled.
For details please refer to the following link
What is Azure Active Directory Identity Protection? | Microsoft Docs
Comments are closed, but trackbacks and pingbacks are open.