Question 1

An enterprise company is implementing a Zero Trust security model for its Azure environment and Microsoft 365 applications.

The security team mandates that any user attempting to access the Azure Portal must meet BOTH of the following conditions:
1. The user must successfully complete Multi-Factor Authentication (MFA).
2. The user's device must be managed by Microsoft Intune and marked as compliant with corporate security baselines.

Which TWO components must you configure to enforce these requirements? (Select TWO)

Accepted Answer

Identify the engine that enforces access controls (Conditional Access) and the system that determines device health (Intune).

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Confusing Identity Protection (risk-based) with Conditional Access (rule-based enforcement).

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 3

More questions from this exam