You have an Azure subscription that contains a virtual network named VNet1.
You plan to deploy Point-to-Site (P2S) VPN access to VNet1.
You need to recommend an authentication method for the deployment. The solution must meet the following requirements:
• Require the use of a FIDO2 security key
• Analyze user sign-in behavior
• Require a user to change their password if their sign-in behavior is identified as risky
What should you recommend?