exam questions

Exam AZ-305 All Questions

View all questions & answers for the AZ-305 exam

Exam AZ-305 topic 1 question 12 discussion

Actual exam question from Microsoft's AZ-305
Question #: 12
Topic #: 1
[All AZ-305 Questions]

DRAG DROP -
Your on-premises network contains a server named Server1 that runs an ASP.NET application named App1.
You have a hybrid deployment of Azure Active Directory (Azure AD).
You need to recommend a solution to ensure that users sign in by using their Azure AD account and Azure Multi-Factor Authentication (MFA) when they connect to App1 from the internet.
Which three features should you recommend be deployed and configured in sequence? To answer, move the appropriate features from the list of features to the answer area and arrange them in the correct order.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Step 1: Azure AD Application Proxy
Start by enabling communication to Azure data centers to prepare your environment for Azure AD Application Proxy.
Step 2: an Azure AD enterprise application
Add an on-premises app to Azure AD.
Now that you've prepared your environment and installed a connector, you're ready to add on-premises applications to Azure AD.
1. Sign in as an administrator in the Azure portal.
2. In the left navigation panel, select Azure Active Directory.
3. Select Enterprise applications, and then select New application.
4. Etc.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy-add-on-premises-application

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Eltooth
Highly Voted 2 years, 12 months ago
Answer is correct.
upvoted 63 times
...
FrancisFerreira
Highly Voted 2 years, 8 months ago
Wait, Application Proxy is a feature of Enterprise Applications, so yeah, you would need to register an Enterprise Application before enabling an Application Proxy for it. While the items themselves are correct, I believe the order should be: 1. Enterprise Application 2. Application Proxy 3. Conditional Access
upvoted 61 times
ninjaTT
2 years, 7 months ago
If you carefully follow the link provided by @RJM you will notice that first, you need to install and register a connector, later add an on-premises app to Azure AD by selecting Enterprise application --> New application. So the given answer is correct: 1. Application Proxy 2. Enterprise Application 3. Conditional Access
upvoted 46 times
[Removed]
2 years, 2 months ago
That's for the connector, not Application Proxy itself. Enterprise Application must be the first.
upvoted 1 times
JDKJDKJDK
2 years, 2 months ago
I think ninjaTT is right. according to this page first you install a connector from the Application Proxy blade, and then you add the onprem app via Enterprise Application https://docs.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy-add-on-premises-application
upvoted 5 times
TJ001
1 year, 8 months ago
Absolutely.. create proxy first then only Enterprise can be created for that proxy...correct answers given.
upvoted 1 times
...
...
...
EnricVives
1 year, 1 month ago
Totally correct
upvoted 2 times
...
...
photon99
9 months, 1 week ago
Correct as per : https://learn.microsoft.com/en-us/entra/identity/app-proxy/application-proxy-add-on-premises-application#add-an-on-premises-app-to-microsoft-entra-id
upvoted 2 times
...
...
SeMo0o0o0o
Most Recent 3 weeks, 2 days ago
CORRECT
upvoted 1 times
...
Teerawee
2 months, 2 weeks ago
1. Azure AD Application Proxy 2. Azure AD Enterprise Application 3. Conditional Access Policy
upvoted 1 times
...
AymanGad
4 months, 1 week ago
where are you mlantonis?
upvoted 7 times
...
23169fd
5 months, 2 weeks ago
Given Answer is correct. Azure AD Application Proxy: This enables secure remote access to the on-premises web application (App1) through Azure AD. Azure AD Enterprise Application: This represents the App1 in Azure AD and allows you to configure settings like SSO and user assignments. Conditional Access Policy: This ensures that MFA is enforced when users sign in to App1, providing an additional layer of security.
upvoted 1 times
...
TonySuccess
10 months, 2 weeks ago
1.. Azure App Proxy: To publish your on-premises applications, such as App1, to be accessible from the cloud1. You need to install and register Application Proxy connectors on your on-premises network, and then publish App1 as an application in Azure AD 2.. Azure AD Ent Application: This is a representation of App1 in Azure AD that allows you to configure its identity, authentication, and authorization settings2. You need to create an enterprise application for App1 and assign users or groups that can access it3. You can also customize the branding and user experience of the sign-in page for App1 3.. CA Policy: This is a policy that defines the conditions under which users can access App1, and the actions that are required or blocked. You need to create a conditional access policy for App1 and enable Azure MFA as a grant control. You can also specify other conditions, such as user location, device state, or sign-in risk.
upvoted 4 times
...
eli117
1 year, 7 months ago
Azure AD Enterprise Application Azure AD Application Proxy Conditional Access Policy
upvoted 2 times
...
ZUMY
1 year, 8 months ago
Given answers are correct
upvoted 2 times
...
zellck
1 year, 9 months ago
1. Azure AD App Proxy 2. Azure AD enterprise app 3. Conditional Access policy https://learn.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy-add-on-premises-application https://learn.microsoft.com/en-us/azure/active-directory/app-proxy/application-proxy Azure Active Directory's Application Proxy provides secure remote access to on-premises web applications. After a single sign-on to Azure AD, users can access both cloud and on-premises applications through an external URL or an internal application portal. Azure AD Application Proxy is: - Secure. On-premises applications can use Azure's authorization controls and security analytics. For example, on-premises applications can use Conditional Access and two-step verification. Application Proxy doesn't require you to open inbound connections through your firewall.
upvoted 5 times
...
jj22222
1 year, 9 months ago
Ent App App Proxy Conditional Access
upvoted 2 times
...
DeBoer
1 year, 9 months ago
that's one of those "it depends" question, I gues. Depends on what they mean by "deploying" a "feature" Of course you'd first need to set up AADProxy in general (install a connector and create a connector group) before being able to chose using it in an Enterprise App. However, if that's been done already, then you'd create the Enterprise App first and configure the AAD Proxy settings in it (second) ... Since they're not saying anything I'd assume we're talking about a new environment and needed to set up AADProxy first - and then create the Enterprise app. Obviously, the Enterprise app would need to exist before being able to secure it using CA Policies, so the third step is not a matter of discussion.
upvoted 5 times
...
orionduo
1 year, 10 months ago
The answer is correct.
upvoted 1 times
...
JoshuaAlkar
1 year, 10 months ago
it should be 1. Enterprise Application 2. Application Proxy 3. Conditional Access see the steps clearly on this Blog https://thesleepyadmins.com/2019/02/
upvoted 3 times
...
OPT_001122
1 year, 10 months ago
1. Application Proxy 2. Enterprise Application 3. Conditional Access Policy Given ans is correct (Pro App Pol)
upvoted 2 times
...
OPT_001122
1 year, 10 months ago
Thanks all who have mentioned the exam dates
upvoted 1 times
...
ServerBrain
1 year, 11 months ago
Given answer is correct, as the url clearly explains the same steps..
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago