Microsoft 365 Security Administration — Question 5
Your company has a main office and a Microsoft 365 subscription.
You need to enforce Microsoft Azure Multi-Factor Authentication (MFA) by using conditional access for all users who are NOT physically present in the office.
What should you include in the configuration?
Answer options
- A. a user risk policy
- B. a sign-in risk policy
- C. a named location in Azure Active Directory (Azure AD)
- D. an Azure MFA Server
Correct answer: C
Explanation
The correct answer is C because a named location in Azure Active Directory allows you to specify which users are considered to be on-site and thus exempt from MFA. Options A and B are related to risk assessments but do not directly control access based on physical location. Option D involves using an Azure MFA Server, which is not necessary for enforcing conditional access based on user location.