Microsoft Azure Administrator (legacy) — Question 42

You have an Azure Active Directory (Azure AD) tenant.
All administrators must enter a verification code to access the Azure portal.
You need to ensure that the administrators can access the Azure portal without entering a verification code when they are connecting from your on-premises network.
What should you configure?

Answer options

• A. an Azure AD Identity Protection user risk policy
• B. the multi-factor authentication service settings.
• C. the default for all the roles in Azure AD Privileged Identity Management
• D. an Azure AD Identity Protection sign-in risk policy

Correct answer: B

Explanation

The correct answer is B because adjusting the multi-factor authentication service settings can allow for trusted locations, such as your on-premises network, to bypass the verification code requirement. Options A and D relate to risk policies that do not specifically address the need to eliminate verification codes based on location. Option C pertains to role management, which does not influence MFA requirements.