Microsoft 365 Fundamentals — Question 359

A company subscribes to Microsoft 365 and uses Azure Active Directory. Users are required to use a corporate computer and the Microsoft Authenticator app.

The company wants to protect employee device when the employees are out of the country/region.

You need to identify the conditional access signals the company should use.

Which two signals should you identify? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

Answer options

• A. cloud apps
• B. user risk
• C. group membership
• D. named location

Correct answer: B, D

Explanation

The correct answers are B and D. 'User risk' helps assess the risk level of the user based on their behavior, which is crucial when they're traveling. 'Named location' allows the company to define trusted locations, enabling them to enforce policies based on geographic location. Options A and C are not as relevant for addressing the specific scenario of protecting devices when employees are abroad.