Exam AZ-305 topic 4 question 32 discussion

Given answer is WRONG. Correct ist Azure AD enterprise applications and Conditional Access Enterprise App for SSO Conditional Access for MFA

Moderator, it's been 5 months with the incorrect answer and reasoning posted. Can we please get this updated for ease of use? The correct answer is obviously C,E.

Agree with C,E

C & E are correct

Agree with CE for any SSO use Enterprise App Conditional Access for MFA as it is option to configure in there

10000% CE

I Agree with C / E

Create an enterprise app in Azure AD for SSO Conditional access for MFA

Enforce multi-factor authentication (MFA) - This can be done either by using the Identity Protection - using signed-in risk action or using the Conditional Access Policy (CAP). The only difference is that CAP needs to be applied per application and Identity Protection is for the overall user login to any of your Enterprise applications. As the problem in hand talk about a specific Application, CAP may be more appropriate answer. C and E are correct.

"C" and "E" is correct!

C. Azure AD enterprise applications E. Conditional Access policies C. Azure AD enterprise applications: You need to configure the LOB application as an enterprise application in Azure AD. This will allow you to configure SAML-based SSO for the application, enabling users to sign in using their Azure AD credentials. E. Conditional Access policies: You can create a Conditional Access policy in Azure AD to enforce MFA when users attempt to access the application from an unknown location. Conditional Access policies allow you to set specific conditions, such as location or device state, and apply security requirements, like MFA, when those conditions are met.

Answer : C&E

Enterprise App for SSO Conditional Access for MFA

Answer so clearly > Azure AD enterprise app - CAP

C. Azure AD enterprise applications E. Conditional Access policies

C and E

Given answer is WRONG.