ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 3 question 10 discussion

Actual exam question from Microsoft's SC-300
Question #: 10
Topic #: 3
[All SC-300 Questions]

You have an Azure Active Directory (Azure AD) tenant named contoso.com that has Azure AD Identity Protection enabled.
You need to implement a sign-in risk remediation policy without blocking user access.
What should you do first?

  • A. Configure access reviews in Azure AD.
  • B. Enforce Azure AD Password Protection.
  • C. Configure self-service password reset (SSPR) for all users.
  • D. Implement multi-factor authentication (MFA) for all users.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by AS007 at June 7, 2021, 12:42 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
goape
Highly Voted 1 year, 10 months ago
MFA for sign-in risk, SSPR for user risk
upvoted 21 times
...
melatocaroca
Highly Voted 2 years, 9 months ago
to implement a sign-in risk remediation policy When a sign in risk policy triggers: Azure AD MFA can be triggered, allowing to user to prove it's them by using one of their registered authentication methods, resetting the sign in risk. https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-identity-protection-configure-risk-policies
upvoted 16 times
...
Obi_Wan_Jacoby
Most Recent 6 days, 14 hours ago
Selected Answer: D
D correct
upvoted 1 times
...
Obi_Wan_Jacoby
6 days, 14 hours ago
Selected Answer: D
Correct D:
upvoted 1 times
...
Frank9020
2 months, 2 weeks ago
Selected Answer: D
D. Implement multi-factor authentication (MFA) for all users. The goal is to implement a sign-in risk remediation policy without blocking user access. This strongly suggests using MFA as the primary remediation method for risky sign-ins. When a risky sign-in is detected, the user will be challenged with MFA.
upvoted 1 times
...
Nyamnyam
5 months, 1 week ago
Selected Answer: D
Here a better link: https://learn.microsoft.com/en-us/entra/id-protection/howto-identity-protection-remediate-unblock#self-remediation-with-risk-based-policy - perform MFA to self-remediate a sign-in risk - perform secure password change to self-remediate a user risk
upvoted 2 times
...
EmnCours
8 months, 4 weeks ago
Selected Answer: D
Correct Answer: D
upvoted 1 times
...
dule27
10 months ago
Selected Answer: D
D. Implement multi-factor authentication (MFA) for all users.
upvoted 1 times
...
estyj
1 year, 5 months ago
D Correct need to setup MFA for all users first before SSPR
upvoted 1 times
...
existingname
1 year, 7 months ago
On the exam today, D is correct
upvoted 2 times
...
TP447
2 years ago
Initially I selected C but makes sense - MFA would be configured before SSPR so D is correct :)
upvoted 1 times
martinods
1 year, 6 months ago
MFA for sign-in risk, SSPR for user risk
upvoted 2 times
...
...
stromnessian
2 years, 1 month ago
Selected Answer: D
D is right.
upvoted 5 times
...
zmlapq99
2 years, 2 months ago
On exam few days ago.
upvoted 2 times
...
NarenderSingh
2 years, 7 months ago
Correct
upvoted 4 times
...
ArielReyes27
2 years, 9 months ago
Correct.
upvoted 2 times
...
AS007
2 years, 10 months ago
Correct
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago