exam questions

Exam MS-102 All Questions

View all questions & answers for the MS-102 exam

Exam MS-102 topic 1 question 147 discussion

Actual exam question from Microsoft's MS-102
Question #: 147
Topic #: 1
[All MS-102 Questions]

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.



You plan to create a Conditional Access policy that will use GPS-based named locations.

Which users can the policy protect?

  • A. User2 and User4 only
  • B. User1, User2, User3, and User4
  • C. User1 only
  • D. User1 and User3 only
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Vincent1966
Highly Voted 1 year, 6 months ago
GPS location doesn't work with passwordless authentication methods and when the location condition of a Conditional Access policy is configured, users will be prompted by the Authenticator app to share their GPS location.
upvoted 11 times
Vaerox
1 year, 1 month ago
So the answer is D? Both User 1 and User 3?
upvoted 1 times
BigO76
3 months, 1 week ago
therefore its C: User1 Mobile/Cell Phone & Email is not supported for GPS location and GPS location doesn't work with passwordless authentication
upvoted 1 times
...
basak
10 months, 1 week ago
Mobile Phone may be used for SMS service
upvoted 2 times
...
...
...
faeem
Highly Voted 1 year, 5 months ago
Correct. GPS location doesn't work with passwordless authentication methods. Multiple Conditional Access policies may prompt users for their GPS location before all are applied. Because of the way Conditional Access policies are applied, a user may be denied access if they pass the location check but fail another policy. For more information about policy enforcement, see the article Building a Conditional Access policy. Important Users may receive prompts every hour letting them know that Microsoft Entra ID is checking their location in the Authenticator app. The preview should only be used to protect very sensitive apps where this behavior is acceptable or where access needs to be restricted to a specific country/region. Therefore, user 1 has MFA registered app but not setup for passwordless authentication.
upvoted 5 times
...
vixxx83
Most Recent 2 days, 6 hours ago
Selected Answer: C
GPS location can be used with passwordless phone sign-in only if MFA push notifications are also enabled. Users can use Microsoft Authenticator to sign in, but they also need to approve subsequent MFA push notifications to share their GPS location. GPS location doesn't work when only passwordless authentication methods are set. Answer should be User 1 and 2
upvoted 1 times
...
Frank9020
4 months ago
Selected Answer: B
User1: Uses MFA with the Microsoft Authenticator app (push notification), which supports GPS-based conditions. User2: Uses passwordless authentication with MFA push notifications enabled, which supports GPS-based conditions. User3: Uses MFA with a mobile phone, which supports GPS-based conditions. User4: Uses MFA with email, which supports GPS-based conditions. GPS location can be used with passwordless phone sign-in only if MFA push notifications are also enabled. https://learn.microsoft.com/en-us/entra/identity/conditional-access/concept-assignment-network
upvoted 1 times
...
APK1
7 months ago
Selected Answer: C
Ignore user2. From User1, User3, User4. User4 is using email, User3 is using Mobile
upvoted 3 times
...
Tomtom11
1 year ago
Selected Answer: C
https://learn.microsoft.com/en-us/entra/identity/conditional-access/location-condition GPS location doesn't work with passwordless authentication methods.
upvoted 5 times
...
Amir1909
1 year, 1 month ago
C is correct
upvoted 3 times
...
Vaerox
1 year, 1 month ago
Selected Answer: C
Given answer is correct. Iwas confused because normally a CA policy would be able to help defend all users but...using GPS named locations requires a user to have the MS Authenticator app: " If you select Determine location by GPS coordinates, the user needs to have the Microsoft Authenticator app installed on their mobile device. Every hour, the system contacts the user’s Microsoft Authenticator app to collect the GPS location of the user’s mobile device. "
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago