Home » Microsoft » MS-100 v.2 » What should you include in the recommendation?
Your company has three main offices and one branch office. The branch office is used for research.
The company plans to implement a Microsoft 365 tenant and to deploy multi-factor authentication.
You need to recommend a Microsoft 365 solution to ensure that multi-factor authentication is enforced only for users in the branch office.
What should you include in the recommendation?
A. Microsoft Azure Active Directory (Azure AD) conditional access.
B. Microsoft Azure Active Directory (Azure AD) password protection.
C. a Microsoft 365 Device Management device compliance policy.
D. a Microsoft 365 Device Management device configuration profile.
Correct Answer: A
Explanation/Reference:
Explanation:
With Azure Active Directory (Azure AD) Conditional Access, you can control how authorized users can access your cloud apps. The location condition of a Conditional Access policy enables you to tie access controls settings to the network locations of your users.
For this question, we need to configure a location condition in a conditional access policy and apply the policy to users in that location (the branch office). The conditional access policy can be required to ‘Allow Access’ but ‘Required MFA’.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition
