Exam AZ-305 topic 1 question 3 discussion

A&E is the correct answer. Azure App proxy for connecting without vpn and Enterprise App for SSO

It's required to download connector under (Application Proxy) and create a new application under (Enterprise Application), however for (Pre Authentication) option, you can choose "Passthrough" or "Azure Active Directory", and both will work, but it's recommended to use "Azure Active Directory" so you can take advantage of using conditional access and MFA. Answer is (A) & (E) as they're both required as part of the solution to work, where as (C) is just an optional feature. Reference: https://docs.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy-add-on-premises-application

A & E are correct

Correct Answer - A: Azure AD Application Proxy Azure AD Application Proxy provides remote access and single sign-on (SSO) capabilities to on-premises web applications. The internal web app can be published to Azure AD, and users can access the app outside the company network. https://learn.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy Correct Answer - E: Azure AD enterprise applications Azure AD enterprise applications are essentially app registrations in Azure AD for cloud-based and on-premises applications. This is where we can manage authentication requirements and assign user access. https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/add-application-portal Just to clarify, the 'Application Proxy' handles the connection to the on-premises network, and the' Enterprise Applications' manages the authentication and authorization for the app.

AE is the answer. https://learn.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy Azure Active Directory's Application Proxy provides secure remote access to on-premises web applications. After a single sign-on to Azure AD, users can access both cloud and on-premises applications through an external URL or an internal application portal. https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/add-application-portal

To provide remote SSO access to an on-premises web app named WebApp1 with Integrated Windows authentication: - Use Azure AD Application Proxy to securely publish on-premises web apps to the internet without the need for a VPN. - Add WebApp1 as an Azure AD enterprise application to enable Azure AD to provide authentication and authorization for the app. - Conditional Access policies, Azure AD PIM, Azure Arc, and Azure Application Gateway are not suitable for this task. - Conditional Access policies allow defining conditions for access to Azure AD-connected apps, but do not provide a solution for remote SSO access to an on-premises web app. - Azure AD PIM is used for managing access to Azure resources, but not for remote SSO access to an on-premises web app. - Azure Arc is a hybrid cloud management solution, and Azure Application Gateway is a web traffic load balancer, neither are relevant to providing remote SSO access to an on-premises web app.

A. Azure AD Application Proxy E. Azure AD enterprise applications.

A and E are the correct answers

oops its an application proxy and not a gateway sorry for the confusion people

as there is an on premisis involved you will need an application gateway to allow access to this app that is hosted on prem

A & E are correct

A & E are right

correct

AE are right answers

A. Azure AD Application Proxy - connection without vpn - onprem scenario E. Azure AD enterprise applications

A & E is the correct answer

A and E seems to be the correct ones