Microsoft 365 Administrator — Question 387

You have a Microsoft 365 subscription that contains an Azure AD tenant named contoso.com.

Corporate policy states that user passwords must not include the word Contoso.

What should you do to implement the corporate policy?

Answer options

• A. From the Microsoft Entra admin center, create a conditional access policy.
• B. From the Microsoft Entra admin center, configure the Password protection settings.
• C. From the Microsoft 365 admin center, configure the Password policy settings.
• D. From Azure AD Identity Protection, configure a sign-in risk policy.

Correct answer: B

Explanation

The correct answer is B because configuring Password protection settings in the Microsoft Entra admin center allows you to specify prohibited terms, such as 'Contoso', in user passwords. The other options do not address password content restrictions as effectively; conditional access policies and sign-in risk policies focus on access management rather than password requirements, and the Microsoft 365 admin center's password policy settings do not provide the same level of customization for prohibited terms.