Manage Identities in Microsoft Entra ID Flashcards
These are ChatGPT produced questions based off the information in this section for each Microsoft learn article.
Which of the following is NOT a risk detection method used by Microsoft Entra Identity Protection?
A. Anonymous IP address usage
B. Password spray attacks
C. Leaked credentials
D. Phishing email detection
Phishing email detection
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
What is the primary purpose of Microsoft Entra Identity Protection?
A. To manage user permissions
B. To detect, investigate, and remediate identity-based risks
C. To provide a secure email service
D. To monitor network traffic
To detect, investigate, and remediate identity-based risks
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
Which report in Microsoft Entra Identity Protection tracks sign-ins that have one or more risk detections?
A. Risk detections report
B. Risky sign-ins report
C. Risky users report
D. Sign-in activity report
Risky sign-ins report
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
True or False: Microsoft Entra Identity Protection can automatically remediate risks based on the detected risk level.
True
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
True or False: Manual remediation is required for all risks detected by Microsoft Entra Identity Protection.
False
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
You are an administrator and notice multiple risky sign-ins from anonymous IP addresses. What should be your first step in investigating these risks?
A. Block all sign-ins from the affected users
B. Review the Risky sign-ins report to understand the context of the sign-ins
C. Reset passwords for all affected users
D. Disable the users’ accounts immediately
Review the Risky sign-ins report to understand the context of the sign-ins
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
A user has been flagged as a risky user due to multiple risk detections. Which of the following actions can you take to remediate this risk?
A. Require the user to perform multifactor authentication
B. Perform a secure password reset
C. Both A and B
D. None of the above
Both A and B
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
Microsoft Entra Identity Protection uses advanced ________ to identify sign-in risks and unusual user behavior.
machine learning
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
The ________ report provides a comprehensive view of all risks detected on identities
Risk detections
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
