Manage Azure AD Identity Protection Flashcards
What license is required to run Azure AD Identity Protection?
Azure AD Premium P2
Review Matrices
https://docs.microsoft.com/en-us/learn/modules/manage-azure-active-directory-identity-protection/2-review-identity-protection-basics
What is sign-in risk policy?
Detects suspicious actions that come along with the sign-in event.
What is user risk policy?
Detects the probability that a user account has been compromised by detecting atypical events.
What three reports are provided by Identity Protection?
- Risky users
- Risky sign-ins
- Risk detections
What 4 remediation options exit in Identity Protection?
- Self-remediation
- Manual Password Reset
- Dismiss Risk
- Close Risk Detections Manually
What three APIs are used to expose information about risky users and sign-ins?
- riskDetection
- riskyUsers
- signIn
True or false:
The riskDetection API can be used to review events that occur while offline.
True
Which task can a user with the Security Operator role perform?
Confirm safe sign-in
There are two risk policies that can be enabled in the directory. One is user risk policy. Which is the other risk policy?
Sign-in risk policy
In Microsoft Graph, which three APIs expose information about risky users and sign-ins?
riskDetection
riskyUsers
signIn