Microsoft 365 Fundamentals MS-900 Practice Question
An organization needs to implement security policies that evaluate signals such as user location, device compliance status, and risk level to determine whether a user should be granted access to resources. Which feature of Microsoft Entra ID provides this capability?
Conditional Access policies in Microsoft Entra ID evaluate many contextual signals-including user or group, location (network), device compliance state (from Intune), and risk levels from Microsoft Entra ID Protection-to decide whether to grant, block, or require additional controls (for example, MFA) before a user gains access.
Multi-factor Authentication (MFA) is an access control step that can be required by Conditional Access but, by itself, does not inspect context such as location or device state.
Microsoft Entra ID Protection detects and classifies user and sign-in risks and can apply risk-based policies; however, it does not evaluate other conditions like location or device compliance, so organizations typically feed its risk signals into Conditional Access for a full decision.
Self-Service Password Reset (SSPR) simply lets users reset their own passwords and does not make real-time access decisions based on contextual signals.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the key components or signals that Conditional Access evaluates?
Open an interactive chat with Bash
How does Conditional Access differ from Multi-factor Authentication?
Open an interactive chat with Bash
What is the significance of using Conditional Access in an organization's security strategy?
Open an interactive chat with Bash
Microsoft 365 Fundamentals MS-900
Describe security, compliance, privacy, and trust in Microsoft 365
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access