ExpertMedium1 markMultiple Choice
AZ-900 · Question 35 · Domain 2.5: Azure Identity, Access, and Security
A company wants to require users to perform Multi-Factor Authentication (MFA) ONLY when they are logging in from outside the corporate network. Which Microsoft Entra ID feature should they use?
A company wants to require users to perform Multi-Factor Authentication (MFA) ONLY when they are logging in from outside the corporate network. Which Microsoft Entra ID feature should they use?
Answer options:
A.
Single Sign-On (SSO)
B.
Role-Based Access Control (RBAC)
C.
Conditional Access
D.
Passwordless authentication
How to approach this question
Look for the feature that applies 'if-then' logic to login attempts.
Full Answer
C.Conditional Access✓ Correct
Conditional Access is the tool used by Microsoft Entra ID to bring signals together, to make decisions, and enforce organizational policies. It acts as an 'if-then' statement for access (e.g., IF location is untrusted, THEN require MFA).
Common mistakes
Choosing RBAC. RBAC is for authorization (what you can do), Conditional Access is for authentication (how you prove who you are).
Practice the full Azure Fundamentals AZ-900 Practice Exam 4
60 questions · hints · full answers · grading
More questions from this exam
Q01What is the primary definition of cloud computing?EasyQ02Under the shared responsibility model, which of the following is ALWAYS the responsibility of the...MediumQ03True or False: In a public cloud deployment model, you must purchase and manage your own physical...EasyQ04A company wants to move away from purchasing physical servers and instead pay monthly for the com...MediumQ05Which TWO of the following are primary benefits of using cloud computing? (Select TWO)Easy