Microsoft Azure Fundamentals — Question 47
You need to ensure that when Azure Active Directory (Azure AD) users connect to Azure AD from the Internet by using an anonymous IP address, the users are prompted automatically to change their password.
Which Azure service should you use?
Answer options
- A. Azure AD Connect Health
- B. Azure AD Privileged Identity Management
- C. Azure Advanced Threat Protection (ATP)
- D. Azure AD Identity Protection
Correct answer: D
Explanation
Azure AD Identity Protection is designed to handle risk-based conditional access policies, including prompting users to change their passwords when accessing from suspicious locations like anonymous IP addresses. The other options do not specifically address this requirement; Azure AD Connect Health focuses on monitoring, Azure AD Privileged Identity Management deals with role assignments and access, and Azure Advanced Threat Protection (ATP) is aimed at detecting and investigating advanced attacks.