A company deploys Microsoft Azure AD. You enable multi-factor authentication.
You need to inform users about the multi-factor authentication methods that they can use.
Which of the following methods is NOT a valid multi-factor authentication method in Microsoft 365?
A. Receive an automated call on the desk phone that includes a verification code.
B. Use the Microsoft Authenticator mobile application to receive a notification and authenticate.
C. Receive a call on a phone.
D. Enter a Windows 10 PIN code when prompted.
D – https://www.microsoft.com/en-us/microsoft-365/blog/2014/02/10/multi-factor-authentication-for-office-365/
Any of the following may be used for the second factor of authentication.
Call my mobile phone. The user receives a phone call that asks them to press the pound key. Once the pound key is pressed, the user is logged in.
Text code to my mobile phone. The user receives a text message containing a six-digit code that they must enter into the portal.
Call my office phone. This is the same as Call my mobile phone, but it enables the user to select a different phone if they do not have their mobile phone with them.
Notify me through app. The user configured a smartphone app and they receive a notification in the app that they must confirm the login. Smartphone apps are available for Windows Phone, iPhone, and Android devices.
Show one-time code in app. The same smartphone app is used. Instead of receiving a notification, the user starts the app and enters the six-digit code from the app into the portal.
D
Explanation why
Azure Multi-Factor Authentication works by requiring two or more of the following authentication methods:
• Something you know, typically a password.
• Something you have, such as a trusted device that is not easily duplicated, like a phone or hardware key.
• Something you are – biometrics like a fingerprint or face scan.
https://docs.microsoft.com/es-es/azure/active-directory/authentication/concept-mfa-howitworks