ExpertHard1 markMultiple Choice
AZ-305 · Question 13 · Domain 1.2: Authentication and Authorization
An enterprise requires hybrid identity. Security policy dictates that no password hashes can be synchronized to the cloud, but users must experience seamless single sign-on. Which TWO components should you configure? (Select TWO)
An enterprise requires hybrid identity. Security policy dictates that no password hashes can be synchronized to the cloud, but users must experience seamless single sign-on. Which TWO components should you configure? (Select TWO)
Answer options:
A.
Pass-through Authentication (PTA)
B.
Password Hash Synchronization (PHS)
C.
Microsoft Entra Connect
D.
Active Directory Federation Services (ADFS)
E.
Azure AD Domain Services
How to approach this question
Identify the sync tool and the auth method that avoids hash sync.
Full Answer
Entra Connect syncs the identities. PTA ensures authentication happens against on-prem AD without syncing hashes. Pillar: Security.
Common mistakes
Selecting ADFS, which is valid but PTA is the modern, simpler recommendation.
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 7
55 questions · hints · full answers · grading
More questions from this exam
Q01CASE STUDY: Contoso migrating 500 servers to Azure. RTO 2h, RPO 15m, GDPR compliance, 10Gbps Expr...HardQ02CASE STUDY: Contoso migrating 500 servers to Azure. RTO 2h, RPO 15m, GDPR compliance, 10Gbps Expr...MediumQ03CASE STUDY: Contoso migrating 500 servers to Azure. RTO 2h, RPO 15m, GDPR compliance, 10Gbps Expr...HardQ04CASE STUDY: Contoso migrating 500 servers to Azure. RTO 2h, RPO 15m, GDPR compliance, 10Gbps Expr...MediumQ05CASE STUDY: Contoso migrating 500 servers to Azure. RTO 2h, RPO 15m, GDPR compliance, 10Gbps Expr...Hard