exam questions

Exam AZ-305 All Questions

View all questions & answers for the AZ-305 exam

Exam AZ-305 topic 4 question 76 discussion

Actual exam question from Microsoft's AZ-305
Question #: 76
Topic #: 4
[All AZ-305 Questions]

Your company has the divisions shown in the following table.



Sub1 contains an Azure App Service web app named App1. App1 uses Azure AD for single-tenant user authentication. Users from contoso.com can authenticate to App1.

You need to recommend a solution to enable users in the fabrikam.com tenant to authenticate to App1.

What should you recommend?

  • A. Configure a Conditional Access policy.
  • B. Use Azure AD entitlement management to govern external users.
  • C. Configure the Azure AD provisioning service.
  • D. Configure Azure AD Identity Protection.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
yonie
Highly Voted 1 year, 7 months ago
Selected Answer: B
There are 10 variations of this question. In each question there are two possible answers. Either its - Use Azure AD entitlement management to govern external users Or - Configure Supported account types in the application registration and update the sign-in endpoint These two answers are never offered together in the same question.
upvoted 52 times
...
zellck
Highly Voted 1 year, 9 months ago
Selected Answer: B
B is the answer. https://learn.microsoft.com/en-us/azure/active-directory/governance/entitlement-management-overview#what-can-i-do-with-entitlement-management Here are some of capabilities of entitlement management: - Select connected organizations whose users can request access. When a user who isn't yet in your directory requests access, and is approved, they're automatically invited into your directory and assigned access. When their access expires, if they have no other access package assignments, their B2B account in your directory can be automatically removed.
upvoted 10 times
...
SeMo0o0o0o
Most Recent 3 weeks, 1 day ago
Selected Answer: B
B is correct
upvoted 1 times
...
Lazylinux
7 months, 2 weeks ago
Selected Answer: B
B is correct *Managed Identities are in essence 100% identical in functionality and use case than Service Principals. In fact, they are actually Service Principals. What makes them different though, is: – They are always linked to an Azure Resource, not to an application or 3rd party connector – They are automatically created for you, including the credentials; big benefit here is that no one knows the credentials
upvoted 2 times
Lazylinux
7 months, 2 weeks ago
oppps wrong typo for another answer.. Entitlement management uses Microsoft Entra business-to-business (B2B) to share access so you can collaborate with people outside your organization. With Microsoft Entra B2B, external users authenticate to their home directory, but have a representation in your directory. The representation in your directory enables the user to be assigned access to your resources.
upvoted 1 times
...
...
paulseatonsmith
1 year ago
If anyone gets this wrong in the exam there's no hope for them!
upvoted 4 times
...
joesatriani
1 year, 2 months ago
Selected Answer: B
B is right answer. This is pattern.
upvoted 1 times
...
Ario
1 year, 5 months ago
Selected Answer: B
Yes B is correct here
upvoted 1 times
...
NotMeAnyWay
1 year, 5 months ago
Selected Answer: B
B. Use Azure AD entitlement management to govern external users. Explanation: Azure AD entitlement management is an identity governance feature that enables organizations to manage identity and access lifecycle at scale, by automating access request workflows, access assignments, reviews, and expiration. In the context of the question, it can be used to enable users from the fabrikam.com tenant to authenticate to App1. Options A, C and D are not suitable for enabling users from another tenant to authenticate to App1.
upvoted 3 times
NotMeAnyWay
1 year, 4 months ago
You would create an access package in the contoso.com tenant and grant access for the fabrikam.com users. These users will then be able to authenticate to App1 in the contoso.com tenant.
upvoted 1 times
...
...
JohnPhan
1 year, 8 months ago
Selected Answer: B
B. Use Azure AD entitlement management to govern external users.
upvoted 2 times
...
zellck
1 year, 9 months ago
Same as Question 38. https://www.examtopics.com/discussions/microsoft/view/93994-exam-az-305-topic-1-question-38-discussion
upvoted 2 times
...
VBK8579
1 year, 10 months ago
Selected Answer: B
B. Use Azure AD entitlement management to govern external users.
upvoted 1 times
...
OPT_001122
1 year, 10 months ago
Selected Answer: B
B. Use Azure AD entitlement management to govern external users.
upvoted 1 times
...
Mo22
1 year, 11 months ago
Selected Answer: B
Agreed that B is the correct answer: https://learn.microsoft.com/en-us/azure/active-directory/governance/entitlement-management-external-users Keep in mind if we wanted to allow the App to be accessible to our AZ AD users then C would be correct like a SaaS
upvoted 2 times
...
ZakySama
1 year, 11 months ago
Selected Answer: B
It should be B
upvoted 1 times
...
[Removed]
1 year, 11 months ago
Selected Answer: B
B is correct
upvoted 1 times
...
Imy
1 year, 11 months ago
This appears at least 3/4 times.
upvoted 4 times
FabrityDev
1 year, 10 months ago
The question is the same but answers might not. If you know which answer is correct you probably don't notice that one or two of others answers change and it matters if you are not sure which one is correct.
upvoted 1 times
...
...
maku067
1 year, 11 months ago
Should be B?
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...