Microsoft Azure Security Technologies — Question 91

You have an Azure AD tenant.

You need to ensure that users cannot create passwords containing a variation of the word contoso.

What should you configure?

Answer options

• A. Microsoft Entra Verified ID
• B. Microsoft Entra Identity Governance
• C. Azure AD Privileged Identity Management (PIM)
• D. Azure AD Password Protection
• E. Azure AD Identity Protection

Correct answer: D

Explanation

The correct answer is D, Azure AD Password Protection, because it specifically allows administrators to create custom banned password lists, including variations of specific words like 'contoso'. The other options do not focus on password management or restrictions, making them unsuitable for this requirement.