Manage Azure AD Identity Protection

Question 1

What license is required to run Azure AD Identity Protection?

Answer 1

Azure AD Premium P2

Question 2

Review Matrices

Answer 2

https://docs.microsoft.com/en-us/learn/modules/manage-azure-active-directory-identity-protection/2-review-identity-protection-basics

Question 3

What is sign-in risk policy?

Answer 3

Detects suspicious actions that come along with the sign-in event.

Question 4

What is user risk policy?

Answer 4

Detects the probability that a user account has been compromised by detecting atypical events.

Question 5

What three reports are provided by Identity Protection?

Answer 5

1. Risky users
2. Risky sign-ins
3. Risk detections

Question 6

What 4 remediation options exit in Identity Protection?

Answer 6

1. Self-remediation
2. Manual Password Reset
3. Dismiss Risk
4. Close Risk Detections Manually

Question 7

What three APIs are used to expose information about risky users and sign-ins?

Answer 7

1. riskDetection
2. riskyUsers
3. signIn

Question 8

True or false:

The riskDetection API can be used to review events that occur while offline.

Answer 8

True

Question 9

Which task can a user with the Security Operator role perform?

Answer 9

Confirm safe sign-in

Question 10

There are two risk policies that can be enabled in the directory. One is user risk policy. Which is the other risk policy?

Answer 10

Sign-in risk policy

Question 11

In Microsoft Graph, which three APIs expose information about risky users and sign-ins?

Answer 11

riskDetection
riskyUsers
signIn