Microsoft 365 Administrator — Question 194
You have a Microsoft 365 E5 subscription.
Administrators are issued FIDO2 security keys.
You need to create a Conditional Access policy that will use a FIDO2 security key as an authentication method.
Which Access controls option should you select for the policy?
Answer options
- A. Require approved client app
- B. Require token protection for sign-in sessions
- C. Require multifactor authentication
- D. Require authentication strength
Correct answer: D
Explanation
The correct answer is D, as it specifically refers to the requirement for authentication strength, which can include the use of FIDO2 security keys. Options A, B, and C do not directly relate to the specific use of FIDO2 keys as an authentication method, focusing instead on app approval, session protection, and general multifactor authentication.