Microsoft Azure Architect Technologies (2020, legacy) — Question 76

You manage an Active Directory domain named contoso.local.
You install Azure AD Connect and connect to an Azure Active Directory (Azure AD) tenant named contoso.com without syncing any accounts.
You need to ensure that only users who have a UPN suffix of contoso.com in the contoso.local domain sync to Azure AD.
What should you do?

Answer options

• A. Use the Synchronization Service Manager to modify the Metaverse Designer tab.
• B. Use Azure AD Connect to customize the synchronization options.
• C. Use the Synchronization Rules Editor to create a synchronization rule.
• D. Use Synchronization Service Manager to modify the Active Directory Domain Services (AD DS) Connector.

Correct answer: C

Explanation

The correct answer is C because using the Synchronization Rules Editor allows you to create a rule that specifically filters users based on their UPN suffix. Options A and D involve modifying existing components but do not specifically address creating the necessary filtering rule. Option B suggests customizing settings, but it does not provide the precise control needed to filter by UPN suffix.