Question 1

Your company wants to eliminate passwords for all employee authentications to Azure and Microsoft 365 to mitigate phishing attacks.

You need to design a passwordless authentication strategy. The solution must support employees who work entirely from personal mobile devices (BYOD) and do not have company-issued laptops or hardware security keys.

Which passwordless authentication method should you recommend?

Accepted Answer

Match the passwordless options to the constraints: no laptops (rules out Windows Hello), no hardware keys (rules out FIDO2).

Question 2

What mistakes do candidates make on this AZ-305 question?

Accepted Answer

Selecting FIDO2 because it is highly secure, ignoring the constraint that users do not have hardware keys.

How to approach this question

Full Answer

Common mistakes

Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4

More questions from this exam