- (Exam Topic 5)
Your company has a Microsoft Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com that contains a user named User1.
You suspect that an imposter is signing in to Azure AD by using the credentials of User1.
You need to ensure that an administrator named Admin1 can view all the sign in details of User1 from the past 24 hours.
To which three roles should you add Admin1? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
Correct Answer:
AEF
Users in the Security Administrator, Security Reader, Global Reader, and Report Reader roles can view the sign in details.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-sign-ins
- (Exam Topic 5)
You plan to develop a diem-side JavaScript web app that will be registered to the Microsoft identity platform and use Microsoft Authentication Library (MSAL) v2.0. Which type of authorization flow should you use?
Correct Answer:
C
- (Exam Topic 5)
Your company has 3.000 users all the assigned Microsoft 365 E3 licenses.
Some users are assigned for all Microsoft365 services, Other users are assigned licensees for only certain Microsoft 365 services.
You need to determine whether a user named User1 is licensed for Exchange Online only. Solution: You launch the Microsoft 365 admin center, and then review the Active users blade. Does this meet the goal?
Correct Answer:
B
- (Exam Topic 5)
Your on-premises network hosts an app named App1.
You have a hybrid Microsoft 365 environment that contains 100 users. The users are assigned Microsoft 36S E5 licenses.
You need to enable Azure Active Directory Seamless Single Sign-On (Azure AD Seamless SSO) for App1 Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the connect order.
Solution:
Graphical user interface, text, application, email Description automatically generated
Does this meet the goal?
Correct Answer:
A
- (Exam Topic 5)
Your company has a hybrid deployment of Microsoft 36S.
Users authenticate by using pass-through authentication. Several Microsoft Azure AD Connect Authentication Agents are deployed.
You need to verify whether all the Authentication Agents are used for authentication. What should you do?
Correct Answer:
A
On the Troubleshoot page, you can view how many agents are configured. If you click on the agents link, you can view the status of each agent. Each agent will have a status of Active or Inactive.
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/hybrid/tshoot-connect-pass-through-authentication