Microsoft Azure Architect Technologies (2020, legacy) — Question 1

Your company has an Azure subscription.
You enable multi-factor authentication (MFA) for all users.
The company's help desk reports an increase in calls from users who receive MFA requests while they work from the company's main office.
You need to prevent the users from receiving MFA requests when they sign in from the main office.
What should you do?

Answer options

• A. From Conditional access in Azure Active Directory (Azure AD), create a named location.
• B. From the MFA service settings, create a trusted IP range.
• C. From Conditional access in Azure Active Directory (Azure AD), create a custom control.
• D. From Azure Active Directory (Azure AD), configure organizational relationships.

Correct answer: A

Explanation

The correct answer is A, as creating a named location in Conditional Access allows you to define trusted locations, which can exempt users from MFA when they are signing in from those specified locations. Option B, while it involves trusted IP ranges, does not directly utilize Conditional Access policies, and C and D do not address the requirement of modifying MFA prompts based on location.