Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-900 Exam - Topic 16 Question 6 Discussion

When security defaults are enabled for an Azure Active Directory (Azure AD) tenant, which two requirements are enforced? Each correct answer presents a complete solution.NOTE: Each correct selection is worth one point.
B) Administrators must always use Azure Multi-Factor Authentication (MFA). and C) Azure Multi-Factor Authentication (MFA) registration is required for all users.
A) All users must authenticate from a registered device.
D) All users must authenticate by using passwordless sign-in.
E) All users must authenticate by using Windows Hello.

Microsoft SC-900 Exam - Topic 16 Question 6 Discussion

Actual exam question for Microsoft's SC-900 exam
Question #: 6
Topic #: 16
[All SC-900 Questions]

When security defaults are enabled for an Azure Active Directory (Azure AD) tenant, which two requirements are enforced? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer: B, C

Security defaults make it easy to protect your organization with the following preconfigured security settings:

Requiring all users to register for Azure AD Multi-Factor Authentication.

Requiring administrators to do multi-factor authentication.

Blocking legacy authentication protocols.

Requiring users to do multi-factor authentication when necessary.

Protecting privileged activities like access to the Azure portal.


https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-security-defaults

by Pamella at May 10, 2022, 02:42 AM

Limited Time Offer

25%

Off

Get Premium SC-900 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Micaela
7 months ago
D and E seem unnecessary for most users.
upvoted 0 times
...
Mozell
7 months ago
A is not a requirement, just a recommendation.
upvoted 0 times
...
Lemuel
8 months ago
Wait, are all users really required to register for MFA? Sounds a bit extreme.
upvoted 0 times
...
Latia
8 months ago
Totally agree with B! MFA is a must for admins.
upvoted 0 times
...
Josefa
8 months ago
B and C are the correct answers.
upvoted 0 times
...
Sherrell
8 months ago
I feel like there was something about registered devices, but I can't recall if it was mandatory for all users or just a specific group.
upvoted 0 times
...
Paris
8 months ago
I remember practicing a question about security defaults, and I think it mentioned that MFA registration is required for all users. That sounds right to me.
upvoted 0 times
...
Judy
8 months ago
I think one of the requirements is that administrators must always use Azure MFA, but I'm not completely sure if that's the only one.
upvoted 0 times
...
Nieves
8 months ago
I don't think passwordless sign-in is enforced for all users, but I could be wrong. I remember it being a part of some discussions.
upvoted 0 times
...
Ariel
8 months ago
The IAM operator is used for managing AWS Identity and Access Management (IAM) resources, so that's probably not the right answer here. I'm leaning towards the Operand Deployment Lifecycle Manager as the most likely solution for this question.
upvoted 0 times
...
Marilynn
8 months ago
This one seems pretty straightforward. I'm pretty sure the Pareto Principle is the concept they're looking for here.
upvoted 0 times
...
Hubert
8 months ago
I remember that infant industries often need protection until they can compete. So, I think A might be a strong choice.
upvoted 0 times
...

Save Cancel