Uncategorized

You have an Azure Active Directory (Azure AD) tenant named contoso.com that has Azure AD Identity Protection policies enforced. You create an Azure Sentinel instance and configure the Azure Active Directory connector. You need to ensure that Azure Sentinel can generate incidents based on the risk alerts raised by Azure AD Identity Protection. What should […]
Continue reading…

HOTSPOT Your company has an Azure Active Directory (Azure AD) tenant named contoso.com. The company has a business partner named Fabrikam, Inc. Fabrikam uses Azure AD and has two verified domain names of fabrikam.com and litwareinc.com. Both domain names are used for Fabrikam email addresses. You plan to create an access package named package1 that […]
Continue reading…

HOTSPOT You have an Azure Active Directory (Azure AD) tenant that contains the following group: – Name: Group1 – Members: User1, User2 – Owner: User3 On January 15, 2021, you create an access review as shown in the exhibit. (Click the Exhibit tab.) Users answer the Review1 question as shown in the following table. For […]
Continue reading…

You have an Azure Active Directory (Azure AD) tenant that contains the objects shown in the following table. Which objects can you add as eligible in Azure AD Privileged Identity Management (PIM) for an Azure AD role? User1, Guest1, and Identity1 User1 and Guest1 only User1 only User1 and Identity1 only
Continue reading…

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this […]
Continue reading…

You have an Azure Active Directory (Azure AD) tenant that uses conditional access policies. You plan to use third-party security information and event management (SIEM) to analyze conditional access usage. You need to download the Azure AD log by using the administrative portal. The log file must contain changes to conditional access policies. What should […]
Continue reading…

You have an Azure subscription that contains the resources shown in the following table. For which resources can you create an access review? Group1, Role1, and Contributor only Group1 only Group1, App1, Contributor, and Role1 Role1 and Contributor only Explanation: Access reviews require an Azure AD Premium P2 license. Access reviews for Group1 and App1 […]
Continue reading…

You have an Azure Active Directory (Azure AD) tenant. You need to review the Azure AD sign-in logs to investigate sign-ins that occurred in the past. For how long does Azure AD store events in the sign-in logs? 14 days 30 days 90 days 365 days
Continue reading…

You have an Azure Active Directory (Azure AD) tenant named contoso.com. You implement entitlement management to provide resource access to users at a company named Fabrikam, Inc. Fabrikam uses a domain named fabrikam.com. Fabrikam users must be removed automatically from the tenant when access is no longer required. You need to configure the following settings: […]
Continue reading…

You have a Microsoft 365 tenant. The Azure Active Directory (Azure AD) tenant syncs to an on-premises Active Directory domain. You plan to create an emergency-access administrative account named Emergency1. Emergency1 will be assigned the Global administrator role in Azure AD. Emergency1 will be used in the event of Azure AD functionality failures and on-premises […]
Continue reading…