Azure Identity management 2024 Clear Now

Azure Identity management | Course id 56104 | Fresco Play Questions & answers 2024|

1.Which Microsoft Azure Active Directory (AD) PowerShell command must you run before you can manage a Microsoft Azure AD tenant from PowerShell?
Answer: (4)Connect-MsolService

2.Which feature is provided only with Microsoft Azure Active Directory Premium P2?
Answer: (1)Identity protection

3.When creating a new user in Microsoft Azure, how is the initial password determined?
Answer: You set a value for the password when you create the user.

4.You need to implement multi-factor authentication (MFA). What is the minimum version of Microsoft Azure Active Directory (AD) that you must deploy?
Answer: Microsoft Azure AD Premium 1

5.What types of accounts does password writeback work for?
Answer: Synced IDs

6.Your company is using O365. The tenant administrator signs up for a free Azure membership and creates an Azure Active Directory (Azure AD) tenant. He then associates the Azure AD tenant with the Azure subscription. Multi-factor authentication (MFA) is not enabled. You wish to enable the self-service password reset feature for your cloud users. Which of the statements below is true regarding your tenant and the self-service password reset feature?
Answer: The self-service password reset feature is available, as it is part of your paid O365 license

7.If you create a user in Azure AD, It is called as ______ Identity
Answer: Cloud

8.What is the significant user benefit achieved by implementing SaaS application integration?
Answer: Single sign-on to SaaS applications

9.What type of SaaS gallery applications support Microsoft Azure Active Directory automatic provisioning?
Answer: Integrated apps

10.You are the administrator of your company’s Azure subscription and Azure Active Directory (Azure AD) tenant. Many Software as a Service (SaaS) apps have been published and are available to the users. Users use these apps only when connected to the corporate network. A vendor who comes in with his laptop and air card need access to the application. You create a user account for the vendor in the Azure AD tenant, assign access to the app for the vendor, and give the vendor a link to the application. The vendor is unable to access the application. You need to ensure the vendor can access the application. What should you do?
Answer: Create a federation between your organization and the vendor’s company

11.Contoso.com is your verified custom domain, then the UPN of the user1 will be ____.
Answer: user1@contoso.com

12.To manage the Azure Ad, the required privilege is ________.
Answer: Global administrator

13.How long does password writeback take to work?
Answer: Immediately

14.You are deciding between using an on-prem Multi-factor Authentication (MFA) service, and a cloud-based service hosted in Azure. Which of the following features are available only in the on-prem MFA service?
Answer: Trusted IPs

15.You have a corporate website with Anonymous access enabled. Later you configure Azure Multi-factor Authentication (MFA) and configure it to Enable IIS authentication. A user logs into the web page and is immediately presented the webpage, with no authentication requests or prompts. You need to ensure that users are prompted for MFA when accessing the webpage. What should you do?
Answer: In the IIS console, on the Default Web Site properties, enable Basic authentication and disable Anonymous authentication

16.What is a benefit of Role Basic Access Control (RBAC) in Microsoft Azure?
Answer: granular management permissions assignment

17.You are the Global Administrator for your company’s Windows Azure tenant. You enable the self-service password reset feature. You create a new Azure Active Directory (Azure AD) account for a user and give the user the temporary password. Later from his home PC, the user attempts to log in to his O365 email but can’t find the temporary password. He clicks ”Can’t access your account” but is not prompted to reset his password. Other users successfully reset their passwords during this same timeframe. You need to explain to his manager why the user was not able to reset his password when other users were able to reset their passwords. What explanation should you give the user’s manager?
Answer: Before a user can use this feature, he must first define an authentication method, such as a mobile number. This will be requested at the first successful login.

18.Your company uses Windows Azure and has published several applications. Your network team has informed you that there is much traffic coming from a specific subnet. You believe one of the most commonly used apps may be to blamed. You need to check which apps are being used the most, and where the traffic is originating. From which blade in the Azure portal should you start your search?
Answer: Enterprise Applications

19.You plan to implement self-service group management in Microsoft Azure. Who is responsible for approving requests from users to join a group?
Answer: A group Owner

20.You are the Global Administrator for your company’s Windows Azure tenant. You assign two of your coworkers as Global Administrators. You click the Azure AD Privileged Identity Management link and walk through the security wizard. You add one of the coworkers to the role of Privileged Role Administrator Later, the coworker attempts to access the Azure AD Privileged Identity Management service and cannot access it. You need to ensure that your coworker has access to this service. What should you do?
Answer: Instruct the user to activate the role

21.You are the administrator of your company’s Azure subscription, and Azure Active Directory (Azure AD) tenant. Your company has an on-prem Active Directory. Your boss asks you to research, allowing the company users to access the Line-of-business (LOB) Software as a Service (SaaS) applications using Conditional Access rules. You need to make sure your tenant meets the pre-requisites for Conditional Access to SaaS apps. What is the lowest Azure subscription level required to enable Conditional Access to SaaS apps?
Answer: Azure Premium subscription

22.What is the significant user benefit achieved by implementing SaaS application integration?
Answer: Single sign-on to SaaS applications

23.You are the administrator for your company’s Azure Active Directory (Azure AD) tenant, and on-prem Active Directory domain. A partner published a multi-tenant Software as a Service (SaaS) application, and gave your company access to the SaaS app. You configure access to several HR users in your company.
Answer: All the options

24.Later, a team member in HR moves to a new department and no longer needs access to the partner’s app. You need to remove access to the app for this user, without affecting access for other users. The user must still be able to access other Line-of-Business (LOB) SaaS apps. What should you do?
Answer: Delete the team member’s assignment to the app in the Azure portal

25.RBAC can be used _____.
Answer: For controlling application access permission and administration

26.Your company has one Azure subscription. You create 5 Resource Groups within the subscription: RG1, RG2, RG3, RG4, and RG5. You want to give a partner named John the right to manage all of the resources within RG3 fully. John’s Live ID is john@outlook.com. John should not be able to manage the resources in any other resource group. What should you do?
Answer: Log in to the Azure portal, browse to RG3 and add John’s Live ID as an Owner.

27.The basic domain of Azure AD is in the form of ___.
Answer: abc123.onmicrosoft.com

28.A domain name is an important part of the identifier for _.
Answer: All the options

You can follow us on YouTube, Blogs

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top