Exam SC-300 topic 2 question 31 discussion

App Passwords are a legacy feature for old Office versions. Windows Hello is the way to go.

C should be the answer.

Exam has 311 questions... well minus 50 for the number of times this question pops up!

Actually, this situation won't stop to complete MFA via phone while almost all Laptops support Hotspot feature which you can turn on to share your wired internet via Laptop :) So, you can get your phone connected to the internet and continue your work... However, it is not in case for this question. If you are not able to perform 2 step verification for any reason, for example old apps do not support MFA, you still have option to use app password. So, if you set an app password for the app you will use at Laptop which will be connected to the internet via Wired internet, you can use that app password to by-pass MFA. Have good points!

A. App password is more correct according to this: When a user account is enforced for Microsoft Entra multifactor authentication, the regular sign-in prompt is interrupted by a request for additional verification. Some older applications don't understand this break in the sign-in process, so authentication fails. To maintain user account security and leave Microsoft Entra multifactor authentication enforced, app passwords can be used instead of the user's regular username and password. When an app password used during sign-in, there's no additional verification prompt, so authentication is successful. https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-app-passwords

Windows Hello for Business is the correct answer.

App Passwords was deprecated last year. https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online

In Windows 10, Windows Hello for Business replaces passwords with strong two-factor authentication on PCs and mobile devices. This authentication consists of a new type of user credential that is tied to a device and uses a biometric or PIN. After an initial two-step verification of the user during enrollment, Windows Hello is set up on the user's device and Windows asks the user to set a gesture, which can be a biometric, such as a fingerprint, or a PIN. The user provides the gesture to verify their identity. Windows then uses Windows Hello to authenticate users. Incorrect Answers: A: An app password can be used to open an application but it cannot be used to sign in to a computer.

C is correct

C. Windows Hello for Business

C is correct

C is the correct answer. A is legacy authentication and would bypass MFA

Windows Hello

App Passwords are legacy

Windows Hello for Business is the correct answer.

There is nothing in question that says these devices are enabled for 'Windows Hello for Business'. Given answer is correct.

C is the answer