New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-800 Exam - Topic 8 Question 15 Discussion

Actual exam question for Microsoft's AZ-800 exam
Question #: 15
Topic #: 8
[All AZ-800 Questions]

You have an on-premises Active Directory Domain Services (AD DS) domain that syncs with an Azure Active Directory (Azure AD) tenant Group writeback is enabled in Azure AD Connect.

The AD DS domain contains a server named Server1 Server 1 contains a shared folder named share1.

You have an Azure Storage account named storage2 that uses Azure AD-based access control. The storage2 account contains a share named shared

You need to create a security group that meets the following requirements:

* Can contain users from the AD DS domain

* Can be used to authorize user access to share 1 and share2

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Dierdre at Aug 21, 2022, 06:26 PM

Limited Time Offer

25%

Off

Get Premium AZ-800 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Chauncey
4 months ago
I think option C is a no-go since it can't have users from AD DS.
upvoted 0 times
...
Charisse
4 months ago
Wait, can you really mix AD DS and Azure AD like that? Sounds tricky!
upvoted 0 times
...
Mee
4 months ago
Not so sure about that, B could work too if you need Azure AD control.
upvoted 0 times
...
Aja
4 months ago
Definitely option A! It fits all the requirements.
upvoted 0 times
...
Ashlyn
5 months ago
A universal security group in AD DS can include users from the domain.
upvoted 0 times
...
Raylene
5 months ago
I wonder if a Microsoft 365 group could be the answer, but I thought those were more for collaboration than access control.
upvoted 0 times
...
Tayna
5 months ago
I practiced a similar question, and I feel like dynamic membership wouldn't work here since we need to include AD DS users.
upvoted 0 times
...
Theola
5 months ago
I'm not entirely sure, but I remember something about Azure AD groups needing to have assigned membership for specific access.
upvoted 0 times
...
Elliott
5 months ago
I think we need a group that can contain users from both AD DS and Azure AD, so maybe a universal security group in AD DS?
upvoted 0 times
...
Augustine
5 months ago
Alright, this looks like a classic Azure security question. I'm pretty confident I know the right approach here. I'll start by thinking about how to integrate the WAF1 policy with the web app, and I believe the answer is to add an extension to WebApp1.
upvoted 0 times
...
Solange
5 months ago
This question seems straightforward, I think I can handle it. I'll need to focus on the criteria of targeting subscribers with failed emails in the last 60 days.
upvoted 0 times
...

Save Cancel