Microsoft Azure Administrator (legacy) — Question 64

You have an Azure Active Directory (Azure AD) tenant named contoso.com. Multi-factor authentication (MFA) is enabled for all users.
You need to provide users with the ability to bypass MFA for 10 days on devices to which they have successfully signed in by using MFA.
What should you do?

Answer options

• A. From the multi-factor authentication page, configure the users' settings.
• B. From Azure AD, create a conditional access policy.
• C. From the multi-factor authentication page, configure the service settings.
• D. From the MFA blade in Azure AD, configure the MFA Server settings.

Correct answer: C

Explanation

The correct answer is C because configuring the service settings on the multi-factor authentication page allows you to set the duration for which users can bypass MFA after a successful login. Options A and B do not provide the specific functionality needed, and D is incorrect as it relates to MFA Server settings, which are not applicable in this scenario.