Microsoft Security Operations Analyst — Question 43

You have a Microsoft 365 subscription that contains the following resources:

• 100 users that are assigned a Microsoft 365 E5 license
• 100 Windows 11 devices that are joined to the Microsoft Entra tenant

The users access their Microsoft Exchange Online mailbox by using Outlook on the web.

You need to ensure that if a user account is compromised, the Outlook on the web session token can be revoked. What should you configure?

Answer options

• A. security defaults in Microsoft Entra
• B. Microsoft Entra Verified ID
• C. a Conditional Access policy in Microsoft Entra
• D. Microsoft Entra ID Protection

Correct answer: C

Explanation

The correct answer is C, as a Conditional Access policy allows for session controls that can terminate access if a user account is suspected of being compromised. Options A and D do not provide session token revocation capabilities, while B is focused on identity verification rather than session management.