You need to configure the MFA settings for users who connect from the Boston office. The solution
must meet the authentication requirements and the access requirements.
What should you configure
Correct Answer: B
Explanation:
Reference:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition
Location offer your country set, IP ranges MFA trusted IP and corporate network VPN gateway IP
address: This is the public IP address of the VPN device for your on-premises network. The VPN
device requires an IPv4 public IP address. Specify a valid public IP address for the VPN device to
which you want to connect. It must be reachable by Azure Client Address space: List the IP address
ranges that you want routed to the local on-premises network through this gateway. You can add
multiple address space ranges. Make sure that the ranges you specify here do not overlap with
ranges of other networks your virtual network connects to, or with the address ranges of the virtual
network itself.
Question 2
You need to meet the authentication requirements for leaked credentials.
What should you do?
Correct Answer: C
Explanation:
"Configure the Azure AD Password Protection proxy service on:" The relevant solution is: ✅ B. Configure Azure AD Password Protection For Azure AD Password Protection:
The proxy service is installed on member servers, not on domain controllers.
The DC agent is installed on all domain controllers.
Therefore, the proxy service should be configured on:
Configure the Azure AD Password Protection proxy service on
SERVER1
SERVER2
DC1 should not host the proxy service (unless it is also being used as a member server, which is not the recommended deployment). Answer: B. Configure Azure AD Password Protection Proxy Service Servers: SERVER1 and SERVER2.
Demo Practice Mode
You are viewing only the questions marked as Demo.