Microsoft Azure Architect Design (2020, legacy) — Question 60

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have an Azure Active Directory (Azure AD) tenant named contoso.com. The tenant contains a group named Group1. Group1 contains all the administrative user accounts.
You discover several login attempts to the Azure portal from countries where administrative users do NOT work.
You need to ensure that all login attempts to the Azure portal from those countries require Azure Multi-Factor Authentication (MFA).
Solution: Implement Azure AD Privileged Identity Management.
Does this solution meet the goal?

Answer options

• A. Yes
• B. No

Correct answer: B

Explanation

Implementing Azure AD Privileged Identity Management (PIM) does not directly enforce Multi-Factor Authentication (MFA) for logins from specific countries. PIM primarily manages and controls access to privileged roles, not login security policies. Therefore, while it is a useful tool for managing administrative access, it does not address the requirement for MFA based on geographic location, making 'No' the correct answer.