Designing and Implementing Microsoft Azure Networking Solutions — Question 3

You are planning an Azure Point-to-Site (P2S) VPN that will use OpenVPN.
Users will authenticate by an on-premises Active Directory domain.
Which additional service should you deploy to support the VPN authentication?

Answer options

• A. an Azure key vault
• B. a RADIUS server
• C. a certification authority
• D. Azure Active Directory (Azure AD) Application Proxy

Correct answer: B

Explanation

The correct answer is B, as a RADIUS server is required to facilitate authentication for users connecting via the VPN using Active Directory credentials. The other options, while useful for different purposes, do not provide the necessary authentication mechanism for this scenario.