Microsoft Cybersecurity Architect — Question 1

Your company develops several applications that are accessed as custom enterprise applications in Azure Active Directory (Azure AD).
You need to recommend a solution to prevent users on a specific list of countries from connecting to the applications.
What should you include in the recommendation?

Answer options

• A. activity policies in Microsoft Defender for Cloud Apps
• B. sign-in risk policies in Azure AD Identity Protection
• C. Azure AD Conditional Access policies
• D. device compliance policies in Microsoft Endpoint Manager
• E. user risk poticies in Azure AD Identity Protection

Correct answer: C

Explanation

The correct answer is C, Azure AD Conditional Access policies, as they can specifically enforce restrictions based on geographic locations. The other options, while related to security and access management, do not provide location-based access control as effectively as Conditional Access policies do.