AZ-500 Flashcards
Hvordan kan du lage en ny Directory?
Velg Azure Active Directory->Manage tenants->Create
- Your organization is considering multifactor authentication in Azure. Your manager asks about secondary verification methods. Which of the following options could serve as secondary verification method?
Automated phone call.
- Your organization has implemented multifactor authentication in Azure. Your goal is to provide a status report by user account. Which of the following values could be used to provide a valid MFA status?
Enforced
- Which of the following options can be used when configuring multifactor authentication in Azure?
One time bypass for a user that is locked out.
- When configuring Azure AD roles, which of the following roles would allow the user to manage all the groups in a tenant and would be able to assign other admin roles?
Global administrator
Which of the following methods enable you to automatically add or remove users to security groups or Microsoft 365 groups, so you don’t always have to do it manually?
Dynamic user
Password hash synchronization
A sign-in method that synchronizes a hash of a users on-premises AD password with Azure AD
Pass-through authentication
A sign-in method that allows users to use the same password on-premises and in the cloud, but doesn’t require the additional infrastructure of a federated environment.
Federation integration.
Federation is an optional part of Azure AD Connect and can be used to configure a hybrid environment using an on-premises AD FS infrastructure. It also provides AD FS management capabilities such as certificate renewal and additional AD FS server deployments.
Synchronization.
Responsible for creating users, groups, and other objects. As well as, making sure identity information for your on-premises users and groups is matching the cloud. This synchronization also includes password hashes.
Health Monitoring.
Azure AD Connect Health can provide robust monitoring and provide a central location in the Azure portal to view this activity
If you don’t need on-premises Active Directory integration, which authentication would you use
Cloud-Only authentication
If you need on-premises Active Directory integration, cloud authentication, password protection and your authentication requirements are natively supported by Azure AD. Which authentication do you need?
Password Hash Sync + Seamless SSO.
If you need on-premises Active Directory integration, but you do not need to use cloud authentication, password protection, and your authentication requirements are natively supported by Azure AD. Which authentication do you need?
Pass-through Authentication Seamless SSO
If you need on-premises Active Directory integration, have an existing federation provider and your authentication requirements are NOT natively supported by Azure AD. Which authentication would you need?
Federation