ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 1 question 3 discussion

Actual exam question from Microsoft's SC-300
Question #: 3
Topic #: 1
[All SC-300 Questions]

You have a Microsoft 365 tenant that uses the domain named fabrikam.com. The Guest invite settings for Azure Active Directory (Azure AD) are configured as shown in the exhibit. (Click the Exhibit tab.)

A user named [email protected] shares a Microsoft SharePoint Online document library to the users shown in the following table.

Which users will be emailed a passcode?

  • A. User2 only
  • B. User1 only
  • C. User1 and User2 only
  • D. User1, User2, and User3
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Beitran at May 2, 2021, 11:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Eltooth
Highly Voted 3 years, 8 months ago
https://docs.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode#when-does-a-guest-user-get-a-one-time-passcode "When the email one-time passcode feature is enabled, newly invited users who meet certain conditions will use one-time passcode authentication. Guest users who redeemed an invitation before email one-time passcode was enabled will continue to use their same authentication method." User 1 is already a registered guest user in fabrikan.com so will not receive additional OTP. User 2 has never accessed fabrikam.com so WILL receive OTP each time they login. User 3 (providing email addy is not a typo) will not receive a OTP as they are a domain user. Answer is A.
upvoted 87 times
topipe
2 months ago
Yay! thank you! Because NONE of the three users listed here would receive a passcode according to https://docs.google.com/document/d/1nCz7jJ9Mu-J_LwfwUmeoPjzrNRZgeyfaeAACSzrBa9k User1 has an existing guest account, so no passcode. User2 has a Microsoft account, so no passcode. User3 is a tenant user, so no passcode. But a NEW user with a personal Gmail account WOULD receive a passcode!
upvoted 1 times
...
klayytech
9 months, 3 weeks ago
He asking about who will sign with Passcod he not asking about MFA OTP Passcode only allows for non-entra email users and non-Microsoft accounts like Gmail
upvoted 4 times
...
Alcpt
10 months ago
the answer is A because the one-time passcode authentication is exactly that - it is required only once to authenticate an external account onto your EntraID "forever". There no two-time passcodes required. This is only to authenticate the external account onto your Entra. Its not a repetitive invitation. "Even the older \ legacy guest users who redeemed an invitation before email one-time passcode was enabled will continue to use their same authentication method.
upvoted 3 times
...
pheb
3 years, 6 months ago
idk why this has so many upvotes. it cleary states in the link you provided, that the user won't get OTP, if they have a microsoft account. User 2 has the domain "outlook.com". user 3 is a domain user and therefore won't receive an OTP. But User 1 (at least it does not say so anywhere) does not have a microsoft account, an azure ad account or a federation with another IP. he will always use OTP to authenticate not only once. so it has to be B.
upvoted 46 times
RahulX
8 months, 1 week ago
Correct I have done the RnD.
upvoted 1 times
...
JN_311
1 year, 7 months ago
I agree, Answer should B. Reference Article: https://learn.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode#when-does-a-guest-user-get-a-one-time-passcode
upvoted 6 times
...
Kiano
2 years, 9 months ago
Just because you have an Outlook.com account does not mean you have a Microsoft account. A Microsoft account is he account you associate with microsoft services at the time of need. It can be a gmail accoount or any kind of private account. I believe the ight answer is A, Users2 only. Exactly as explianed by Eltooth
upvoted 5 times
itismadu
2 years, 1 month ago
After reading the article and googling what is qualified as a Microsoft account, I agree with @pheb. https://learn.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode
upvoted 3 times
...
...
Load full discussion...
...
Load full discussion...
...
scotty_123
Highly Voted 2 years, 11 months ago
In exam today(23/2/22) this question was changed slightly "User3 : [email protected] : personal gmail account" Options were, (a) user 1 only (b) user 2 only (c) user 3 only (d) user1 and user2 only (e) user1, user2 and user3
upvoted 16 times
SnottyPudding
2 years, 10 months ago
Yay! thank you! Because NONE of the three users listed here would receive a passcode according to https://docs.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode. User1 has an existing guest account, so no passcode. User2 has a Microsoft account, so no passcode. User3 is a tenant user, so no passcode. But a NEW user with a personal Gmail account WOULD receive a passcode!
upvoted 5 times
...
...
01b9a25
Most Recent 2 days, 18 hours ago
Selected Answer: A
What happens to my existing guest users if I enable email one-time passcode? Your existing guest users won't be affected if you enable email one-time passcode, as your existing users are already past the point of redemption. Enabling email one-time passcode will only affect future redemption process activities where new guest users are redeeming into the tenant.
upvoted 1 times
...
_marc
1 week ago
Selected Answer: A
Already existing guest user in fabrikam tenant will not be emailed a password. As an existing guest user they have already gone through the registration process, and because they have an outlook (i.e. microsoft) account, they can use their outlook account password rather than an emailed one
upvoted 1 times
...
test123123
1 month, 3 weeks ago
Selected Answer: B
The "Email One-Time Passcode for guests" feature in Microsoft Entra (formerly Azure AD) allows external users (guests) to authenticate using a temporary passcode sent to their email. Temporary Passcode: When a guest user tries to access your resources, they can request a one-time passcode, which is sent to their email address. They use this passcode to complete the sign-in process. Sign-In Process: During sign-in, the guest user selects the option to sign in with a one-time passcode. They receive the passcode via email and enter it to gain access. Enabling the Feature Sign In: Log in to the Microsoft Entra admin center as an Authentication Policy Administrator. Navigate: Go to Identity > External Identities > All identity providers. Configure: On the Built-in tab, next to email one-time passcode, select Configured. Enable: Ensure the toggle is set to Yes and click Save.
upvoted 2 times
...
Frank9020
1 month, 4 weeks ago
Selected Answer: A
User1: Will not receive a new OTP since they have logged in before. User2: Will receive a passcode because they have never accessed resources in fabrikam.com. User3: Will not receive a passcode as they are an internal user.
upvoted 1 times
Frank9020
2 weeks ago
I was so very wrong. User1 ([email protected]) Already a guest user in fabrikam.com. It does not say anything about if or how User1 authenticates to log in. If User1 previously signed in using an MSA, Entra ID, or federation, they will NOT receive a passcode. If User1 has no authentication method available, they WILL receive a one-time passcode. User2 ([email protected]) Not yet a guest user, but has a Microsoft account (MSA). When trying to access the SharePoint document library, they will authenticate using their Microsoft account credentials. Microsoft accounts do not use the email one-time passcode method—they authenticate directly with Microsoft, and won’t receive a passcode. User3 ([email protected]) A regular user in fabrikam.com (not a guest). Will log in normally using Entra ID (Azure AD) and doesn’t need a passcode.
upvoted 1 times
...
...
photon99
2 months ago
User 2 Only. Read the doc: When a user redeems a one-time passcode and later obtains an MSA, Microsoft Entra account, or other federated account, they'll continue to be authenticated using a one-time passcode
upvoted 1 times
...
survivor
2 months, 2 weeks ago
Selected Answer: B
When a guest user redeems an invitation or uses a link to a resource that has been shared with them, they’ll receive a one-time passcode if: They don't have a Microsoft Entra account. They don't have a Microsoft account. The inviting tenant didn't set up federation with social (like Google) or other identity providers. They don't have any other authentication method or any password-backed accounts. Email one-time passcode is enabled. User 1, other identity provider unkonown User 2, Microsoft Account User 3 Microsoft Entra
upvoted 3 times
...
Labelfree
3 months, 2 weeks ago
The current "Most Voted" answer is incorrect. With these settings, the behavior for each user would be as follows: [email protected]: Since User1 is already a guest user in fabrikam.com, they will not need a passcode. [email protected]: As User2 has never accessed resources in fabrikam.com, they will be emailed a one-time passcode to authenticate. [email protected]: Being an internal user of fabrikam.com, User3 will not need a passcode. Therefore, the correct answer remains: A. User2 only These settings confirm that new external users (like User2) will receive a one-time passcode for authentication, while existing guest users (like User1) and internal users (like User3) will not.
upvoted 4 times
...
AlexBrazil
3 months, 2 weeks ago
Selected Answer: A
When a guest user redeems an invitation or uses a link to a resource that has been shared with them, they’ll receive a one-time passcode if: They don't have a Microsoft Entra account. They don't have a Microsoft account. The inviting tenant didn't set up federation with social (like Google) or other identity providers. They don't have any other authentication method or any password-backed accounts. Email one-time passcode is enabled.
upvoted 3 times
...
AlexBrazil
3 months, 2 weeks ago
Selected Answer: A
User 1 is already a registered guest user in fabrikam.com so will not receive additional OTP. User 2 has never accessed fabrikam.com so WILL receive OTP each time they login. User 3 (providing email addy is not a typo) will not receive a OTP as they are a domain user.
upvoted 1 times
...
BRZSZCL
3 months, 3 weeks ago
User 2 only is correct because he is not in the company fabrikam, not even as a guest.
upvoted 1 times
...
Olami
4 months, 1 week ago
To the best of my knowledge, User 3 is A USER in the fabrikam domain so will not receive the OTP User 2 is a user who is NOT an existing guest user in fabrikam.com, nor has accessed fabrikam resources (A new guest) but meets the "any domain" category will get the invite with the OTP. User 1 is ALREADY A GUEST USER in fabrikam.com, so will continue to use its access without requiring an OTP. User 2 - A is the answer https://learn.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode#when-does-a-guest-user-get-a-one-time-passcode
upvoted 1 times
...
kkrGmail
4 months, 3 weeks ago
Selected Answer: C
When a guest user redeems an invitation https://docs.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode#when-does-a-guest-user-get-a-one-time-passcode uses a link to a resource that has been shared with them, they’ll receive a one-time passcode if: They don't have an Azure AD account They don't have a Microsoft account The inviting tenant didn't set up federation with social (like Google) or other identity providers. https://docs.microsoft.com/en-us/azure/active-directory/external-identities/one-time-passcode#when-does-a-guest-user-get-a-one-time-passcode Open for discussion.
upvoted 2 times
...
geggio
7 months, 1 week ago
B When a guest user redeems an invitation or uses a link to a resource that has been shared with them, they’ll receive a one-time passcode if: They don't have a Microsoft Entra account. They don't have a Microsoft account. The inviting tenant didn't set up federation with social (like Google) or other identity providers. They don't have any other authentication method or any password-backed accounts. Email one-time passcode is enabled.
upvoted 1 times
...
RahulX
8 months, 1 week ago
Correct Ans: A. User2 only
upvoted 1 times
...
9711d59
8 months, 4 weeks ago
The email one-time passcode feature is now turned on by default for all new tenants and for any existing tenants where you haven't explicitly turned it off. This feature provides a seamless fallback authentication method for your guest users. If you don't want to use this feature, you can disable it, in which case users will be prompted to create a Microsoft account. I vote for A - user1
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago