ExpertMedium1 markMultiple Choice
AZ-305 · Question 05 · Domain 1.2: Authentication and Authorization
A healthcare company uses Microsoft Entra ID (Azure AD). They need to implement a security policy that requires Multi-Factor Authentication (MFA) only when users access the Azure Portal from outside the corporate network or when Microsoft Entra ID Protection detects a medium or high sign-in risk. Which feature should you design?
A healthcare company uses Microsoft Entra ID (Azure AD). They need to implement a security policy that requires Multi-Factor Authentication (MFA) only when users access the Azure Portal from outside the corporate network or when Microsoft Entra ID Protection detects a medium or high sign-in risk. Which feature should you design?
Answer options:
A.
Conditional Access policies.
B.
Per-user MFA.
C.
Azure Role-Based Access Control (RBAC).
D.
Microsoft Entra ID Identity Protection user risk policy.
How to approach this question
Identify the feature that provides if-then logic for authentication based on signals.
Full Answer
A.Conditional Access policies.✓ Correct
Conditional Access policies.
Conditional Access is the zero-trust engine in Entra ID that uses signals (location, risk, device state) to make access decisions like requiring MFA.
Common mistakes
Selecting Per-user MFA, which is a legacy, non-dynamic approach.
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 6
55 questions · hints · full answers · grading
More questions from this exam
Q01Contoso Ltd is a global manufacturing company with 50,000 employees. They operate a mix of on-pre...MediumQ02A financial institution has 500 Windows Server VMs on-premises and 200 VMs in Azure. They need to...HardQ03An enterprise uses Azure Sentinel and Log Analytics. They ingest 500 GB of logs daily. The IT bud...HardQ04You are designing a monitoring strategy for a new Azure deployment consisting of App Service, Azu...EasyQ06Your organization collaborates with 50 external partner companies. You need to grant partner empl...Hard