Microsoft Cybersecurity Architect — Question 51

You have a Microsoft 365 subscription that contains a group named Group1. The subscription is linked to a Microsoft Entra ID P1 tenant.

You have an external software as a service (SaaS) application named App1. App1 is managed by using a web-based admin portal and supports the use of Microsoft Entra ID credentials.

You need to ensure that only the members of Group1 who sign in from Microsoft Entra joined devices can access the admin portal of App1.

What should you create first in Microsoft Entra?

Answer options

• A. an enterprise application
• B. a Microsoft Entra application proxy connector group
• C. a Conditional Access policy
• D. an access package

Correct answer: A

Explanation

Creating an enterprise application in Microsoft Entra is the first step necessary to manage access to App1. The other options, such as Conditional Access policies and access packages, are important for defining access controls, but the enterprise application must be established first to link App1 with Microsoft Entra for proper management.