Microsoft 365 Security Administration — Question 102

You have a Microsoft 365 E5 subscription and a hybrid Microsoft Exchange Server organization.
Each member of a group named Executive has an on-premises mailbox. Only the Executive group members have multi-factor authentication (MFA) enabled. Each member of a group named Research has a mailbox in Exchange Online.
You need to use Microsoft Office 365 Attack simulator to model a spear-phishing attack that targets the Research group members.
What should you do first?

Answer options

• A. From the Microsoft Defender for Identity portal, configure the primary workspace settings.
• B. From the Microsoft Azure portal, configure the user risk policy settings in Azure AD Identity Protection.
• C. Enable MFA for the Research group members.
• D. Migrate the Executive group members to Exchange Online.

Correct answer: C

Explanation

The correct answer is C because enabling MFA for the Research group members is essential to enhance their security before simulating a spear-phishing attack, as it provides an additional layer of protection. Options A and B do not directly address the requirement to secure the Research group members for the simulation, while option D is irrelevant as it pertains to a different group altogether.