Microsoft 365 Fundamentals — Question 74

A company uses Microsoft 365.
The company wants users to be prompted for additional verification when they access a federated third-party application. However, users must not be prompted for additional verification when they access Microsoft Outlook.
You need to identify a solution that meets the requirements.
Which solution should you choose?

Answer options

• A. Conditional Access
• B. Multi-factor authentication (MFA)
• C. Active Directory Federation Services (AD FS)
• D. Self-service password reset (SSPR)

Correct answer: A

Explanation

The correct answer is A, Conditional Access, as it allows for specific rules to be set for when additional verification is required, like for third-party applications, while exempting Microsoft Outlook from such prompts. The other options do not provide the same level of fine-grained control over when verification is requested; for instance, Multi-factor authentication (MFA) applies broadly, and Active Directory Federation Services (AD FS) is focused on identity federation rather than access control policies.