Practice Test 3 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
A company has an Azure subscription and a tenant associated with the subscription. They have Azure Premium P2 licenses. They have defined the following conditional access policy.
This is for a specific user – userB
The application for the conditional access policy is the “Microsoft Azure Management application”.
The condition specifies a location named “whizlablocation” – This maps to an IP address range.
The following grant controls are in place.
The userB tries to pull the list of VMs deployed in the Azure Portal using PowerShell cmdLet from an IP address belonging to the “whizlablocation” location. Would the user need to perform Multi-factor authentication?
A. Yes
B. No
Answer – A
Yes, since the condition does specify the location. And the Access control mentions “Require multi-factor authentication”. The user needs to perform this authentication operation.
PowerShell is not on the list of “Require approved client app”.
How to configure Azure as Managed Application: https://docs.microsoft.com/en-us/azure/azure-resource-manager/managed-applications/deploy-service-catalog-quickstart
For more information on collecting Windows event logs, one can visit the below URL-
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/overview
Comments are closed, but trackbacks and pingbacks are open.