Question 1

Fabrikam Inc. uses Microsoft Entra ID (Azure AD). They collaborate with external partners who need access to Fabrikam's internal SharePoint Online sites and custom Azure web apps.

Security policies dictate that external partners must use Multi-Factor Authentication (MFA). However, Fabrikam does not want to manage the MFA registration lifecycle for these external users, preferring that the partners use their own organization's MFA claims if they have already authenticated strongly.

Which feature should you configure?

Accepted Answer

Look for the requirement to trust external MFA. This is a B2B scenario requiring cross-tenant trust.

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Assuming Conditional Access alone can do this. While CA enforces MFA, Cross-tenant access settings are required to *trust* the inbound claim from another tenant.

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4

More questions from this exam