Microsoft 365 Mobility and Security (legacy) — Question 77

You have a Microsoft 365 E5 subscription.
You need to identify which users accessed Microsoft Office 365 from anonymous IP addresses during the last seven days.
What should you do?

Answer options

• A. From the Defender for Cloud Apps admin center, select Users and accounts.
• B. From the Microsoft 365 Defender, view the Threat tracker.
• C. From the Microsoft 365 admin center, view the Security & compliance report.
• D. From the Azure Active Directory admin center, view the Risky sign-ins report.

Correct answer: D

Explanation

The correct answer is D because the Risky sign-ins report in the Azure Active Directory admin center specifically identifies sign-ins that may be risky, including those from anonymous IP addresses. The other options do not provide the necessary data to identify users who accessed Office 365 from anonymous IPs within the specified timeframe.