ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 2 question 102 discussion

Actual exam question from Microsoft's SC-300
Question #: 102
Topic #: 2
[All SC-300 Questions]

You have a Microsoft Entra tenant that contains the users shown in the following table.



Admin4 creates a Conditional Access policy named Policy1 by using the Require multifactor authentication for Azure management template.

Which users will be required to use multi-factor authentication (MFA) the next time they sign in?

  • A. Admin2 and Admin3 only
  • B. Admin1 and Admin4 only
  • C. Admin1, Admin2, and Admin3 only
  • D. Admin1, Admin2, Admin3, and Admin4
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by armid at Feb. 12, 2025, 8:33 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rvln7
6 days, 6 hours ago
Selected Answer: C
Admin1 (Global Administrator) → ✅ Affected (requires MFA) Admin2 (Conditional Access Administrator) → ✅ Affected (requires MFA) Admin3 (Authentication Policy Administrator) → ✅ Affected (requires MFA) Admin4 (Global Administrator, but POLICY CREATOR) → ❌ Not affected - Conditional Access policies do not apply to the user who creates them (Admin4), until the next sign-in session after policy creation.
upvoted 1 times
...
59e8fdb
1 week, 5 days ago
Selected Answer: D
D is correct in case the admin is not excluded from this policy which does not states anywhere that Admin 4 is excluded. Again Microsoft lacking of context to the question asked
upvoted 1 times
...
YesPlease
1 week, 6 days ago
Selected Answer: B
Answer B) Admin1 and Admin4 only If DEFAULT SECURITY was still in place, then ALL administrators will have MFA set to ENABLED. However, since a Conditional Access Policy is being used, then you can only go by the one conditional access policy and the roles listed here that will actually have access to the Template Management. In this case, only the Global Admins will have guaranteed access to it.
upvoted 1 times
...
PrismaConsultores
3 weeks, 5 days ago
Selected Answer: B
Admin2 and Admin3 not have access
upvoted 1 times
...
armid
3 weeks, 6 days ago
Selected Answer: C
when you create CA policies from template the current user who is creating them is always excluded. Hopefully this is what the question is going for
upvoted 2 times
Fijii
1 week, 5 days ago
I don't think it excludes the current user by default, I get this message when trying in my lab : Don't lock yourself out! We recommend applying a policy to a small set of users first to verify it behaves as expected. We also recommend excluding at least one administrator from this policy. This ensures that you still have access and can update a policy if a change is required. Please review the affected users and apps. Learn more
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago