ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-100 All Questions

View all questions & answers for the MS-100 exam
Go to Exam

Exam MS-100 topic 4 question 52 discussion

Actual exam question from Microsoft's MS-100
Question #: 52
Topic #: 4
[All MS-100 Questions]

HOTSPOT -
You have a Microsoft 365 Enterprise E5 subscription.
You add a cloud-based app named App1 to the Microsoft Azure Active Directory (Azure AD) enterprise applications list.
You need to ensure that two-step verification is enforced for all user accounts the next time they connect to App1.
Which three settings should you configure from the policy? To answer, select the appropriate settings in the answer area.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
In the Cloud Apps section, you need to select the name of the app (App1) that the policy will apply to.
In the Grant section under Access Controls, there is a checkbox named ג€Require Multi-factor Authenticationג€. That checkbox needs to be ticked.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/best-practices https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Conditional-Access-now-in-the-new-Azure-portal/ba-p/250060
by Jhill777 at May 21, 2020, 4:03 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
itmp
Highly Voted 4 years, 11 months ago
1. Cloud Apps 2. Grant 3. Enable policy
upvoted 23 times
Dimonchik
4 years, 8 months ago
How about exclude all users settings enabled?
upvoted 4 times
Joshing
4 years, 6 months ago
I believe it's not excluding users and is still on the including tab. Looking on the left hand side it just says all users as well. If it were excluding all users you would need 4 steps to complete the task.
upvoted 3 times
...
Paolo2022
2 years, 5 months ago
The text for "Exclude" is blue, so it's a link that can be clicked. That means that the page is focused on "Include" and so all users are included.
upvoted 1 times
...
...
...
One111
Most Recent 2 years, 4 months ago
1. Remove exclusion on all users. 2. Select target application. 3. Grant access but require mfa. 4. Enable policy.
upvoted 1 times
...
Downstar
2 years, 5 months ago
Don't understand why exclude all users option, should be changed aswell...
upvoted 1 times
...
Mr01z0
3 years, 11 months ago
This policy will still not work, you still need a condition, a condition determines when the conditional access policy will apply, so for instance you could set any location. Since the condition is 0 there are none set.
upvoted 2 times
...
cowpoo
4 years, 3 months ago
Pretty sure you have to set Condition (such as location) otherwise MFA wont trigger
upvoted 1 times
Startkabels
2 years, 4 months ago
no condition means always
upvoted 1 times
...
PD1885
4 years, 2 months ago
Locations appear to be optional and the question doesn't state any requirement around location base: https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-all-users-mfa
upvoted 2 times
...
...
mkoprivnj
4 years, 4 months ago
1. Cloud Apps 2. Grant 3. Enable policy
upvoted 2 times
...
Jhill777
4 years, 11 months ago
This seems correct. Require MFA is in Access Controls.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago