Home » Microsoft » 70-346 v.2 » Which password policies will take effect?
DRAG DROP
You manage an on-premises Active Directory environment. You implement an Office 365 tenant. Password requirements for the environments are listed in the table below.
You deploy Microsoft Azure Active Directory (Azure AD) Connect and configure synchronization between Office 365 and the on-premises Active Directory.
You need to determine the resulting policies for Office 365 users.
Which password policies will take effect? To answer, drag the appropriate values to the correct policies. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:
Correct Answer:
Explanation/Reference:
Explanation:
If your organization uses the accountExpires attribute as part of user account management, be aware that this attribute is not synchronized to Azure AD. As a result, an expired Active Directory account in an environment configured for password synchronization will still be active in Azure AD.
When password synchronization is enabled, the password complexity policies in your on-premises Active Directory instance override complexity policies in the cloud for synchronized users. You can use all of the valid passwords from your on-premises Active Directory instance to access Azure AD services.
References: https://scottcroucher.com/2017/08/11/implement-password-synchronization-with-azure-ad-connect-sync/