Microsoft Azure Security Technologies — Question 52

You have an Azure Active Directory (Azure AD) tenant that contains a user named Admin1. Admin1 is assigned the Application developer role.
You purchase a cloud app named App1 and register App1 in Azure AD.
Admin1 reports that the option to enable token encryption for App1 is unavailable.
You need to ensure that Admin1 can enable token encryption for App1 in the Azure portal.
What should you do?

Answer options

• A. Upload a certificate for App1.
• B. Modify the API permissions of App1.
• C. Add App1 as an enterprise application.
• D. Assign Admin1 the Cloud application administrator role.

Correct answer: A

Explanation

The correct answer is A because uploading a certificate is necessary for enabling token encryption in Azure AD. The other options do not directly relate to granting the capability to enable token encryption; modifying API permissions, adding as an enterprise application, or changing the role of Admin1 won't provide the necessary functionality.