Microsoft Azure Security Technologies — Question 30
Note: The question is included in a number of questions that depicts the identical set-up. However, every question has a distinctive result. Establish if the solution satisfies the requirements.
Your company has an Active Directory forest with a single domain, named weylandindustries.com. They also have an Azure Active Directory (Azure AD) tenant with the same name.
You have been tasked with integrating Active Directory and the Azure AD tenant. You intend to deploy Azure AD Connect.
Your strategy for the integration must make sure that password policies and user logon limitations affect user accounts that are synced to the Azure AD tenant, and that the amount of necessary servers are reduced.
Solution: You recommend the use of federation with Active Directory Federation Services (AD FS).
Does the solution meet the goal?
Answer options
- A. Yes
- B. No
Correct answer: B
Explanation
The proposed solution of using federation with Active Directory Federation Services (AD FS) does not meet the requirement for ensuring that password policies and user logon limitations affect synced user accounts. Instead, using Azure AD Connect with password hash synchronization would be more appropriate to achieve the desired integration while minimizing server requirements.