Microsoft Cybersecurity Architect — Question 55

You have an on-premises server named Server1. Server1 is an FTP server that can be accessed by only the users at your company.

You have an Azure subscription.

You need to recommend a Zero Trust Network Access (ZTNA) solution to enforce Conditional Access policies when users access Server1 from the internet.

What should you include in the recommendation?

Answer options

• A. Microsoft Entra application proxy
• B. Microsoft Entra Internet Access
• C. Microsoft Entra Private Access
• D. Azure Application Gateway
• E. Azure Bastion

Correct answer: C

Explanation

The correct answer is C, Microsoft Entra Private Access, which is specifically designed to provide secure access to on-premises applications from anywhere while enforcing Conditional Access policies. Options A, B, D, and E do not focus primarily on ZTNA for on-premises resources and would not effectively enforce the necessary security policies for accessing Server1.