Home » Microsoft » MS-100 v.2 » Does this meet the goal?
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 subscription.
You need to prevent users from accessing your Microsoft SharePoint Online sites unless the users are connected to your on-premises network.
Solution: From the Azure Active Directory admin center, you create a trusted location and a conditional access policy.
Does this meet the goal?
A. Yes
B. No
Correct Answer: A
Explanation/Reference:
Explanation:
Conditional Access in SharePoint Online can be configured to use an IP Address white list to allow access.
With named locations, you can create logical groupings of IP address ranges, for example your office IP range. You can then mark the named location as a trusted location.
Mark as trusted location – A flag you can set for a named location to indicate a trusted location. Typically, trusted locations are network areas that are controlled by your IT department.
You would then configure the conditional access policy to allow access only from the trusted location.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition
https://techcommunity.microsoft.com/t5/Microsoft-SharePoint-Blog/Conditional-Access-in-SharePoint-Online-and-OneDrive-for/ba-p/46678