AZ-500 Exam - Question 76

Question

HOTSPOT -You work at a company named Contoso, Ltd. that has the offices shown in the following table. Contoso has an Azure Active Directory (Azure AD) tenant named contoso. com. All contoso. com users have Azure Multi-Factor Authentication (MFA) enabled. The tenant contains the users shown in the following table. The multi-factor authentication settings for contoso. com are configured as shown in the following exhibit. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Hot Area:.

Examice · Accepted Answer

.

RameshSesetti · Answer

Answer is : No-No-Yes.

Pinto · Answer

Box1: No. because user1 had already signed in from device1 and had selected the 14 day period hence, won't be asked for MFA. 
Box2: No because Boston IP range is trusted. 
Box3: Yes because new device and Seattle IP  is not trusted.

Gesbie · Answer

In Exam April 11, 2023

wardy1983 · Answer

Box1: No. because user1 had already signed in from device1 and had selected the 14 day period hence, won't
be asked for MFA.
Box2: No because Boston IP range is trusted.
Box3: Yes because new device and Seattle IP is not trusted.

heatfan900 · Answer

N = USER 1 CHECKED THE 'DON NOT ASK ME FOR 14 DAYS' CHECKBOX
N = USER 2 IS SIGNING IN FROM A TRUSTED LOCATION WHICH BYPASSES MFA
Y = USER 1 SIGNING IN AFTER THE 14 DAYS FROM A UNTRUSTED LOCATION.

fonte · Answer

Hi all,
Passed my exam (13JAN2023) with 918. 
50 questions (45 + 5 of a case study).
Around 95% of the questions are here.
I've compiled the questions and my answers in a ppt, feel free to check it out and hope it helps.
https://www.dropbox.com/s/ay00xp2fnloq1ex/AZ%20500%20-%20Exam%20Topics.pptx?dl=0
Use pass az500prep to open the file.

Thanks to all the people that comment on questions, I wouldn't have passed without them :)

ArchitectX · Answer

No-No-Yes

josh_josh · Answer

The trusted IPs feature of Azure AD Multi-Factor Authentication bypasses multi-factor authentication prompts for users who sign in from a defined IP address range. You can set trusted IP ranges for your on-premises environments. When users are in one of these locations, there's no Azure AD Multi-Factor Authentication prompt.

majstor86 · Answer

NO
NO
YES

pekay · Answer

the answer is no no yes

TheProfessor · Answer

NNY is the answer. Boston's IPs are trusted.

Obama_boy · Answer

in exam 08/12/23

F117A_Stealth · Answer

Box1: No. because user1 had already signed in from device1 and had selected the 14 day period hence, won't be asked for MFA.
Box2: No because Boston IP range is trusted.
Box3: Yes because new device and Seattle IP is not trusted.

gschneck · Answer

On test 12/16/2022

r_git · Answer

No = User1 on Device1 selected Don't ask again for 14 days on June 1.

No = User2 on Device2 signs in from the Boston office IP address subnet 180.15.10.0/24 which is added in trusted ips textbox
https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#trusted-ips

Yes = User1 signs in to a new device which triggers MFA since it is a new sign in from a new device. The previous 14 days selection was tied to session on Device1

zellck · Answer

NNY is the answer.

https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings#trusted-ips
The trusted IPs feature of Azure AD Multi-Factor Authentication bypasses multi-factor authentication prompts for users who sign in from a defined IP address range. You can set trusted IP ranges for your on-premises environments. When users are in one of these locations, there's no Azure AD Multi-Factor Authentication prompt. The trusted IPs feature requires Azure AD Premium P1 edition.

ESAJRR · Answer

No-Yes-Yes.
The second answer will be yes. Skip multifactor authentication for trusted locations is not enabled.

AZ-500 Exam - Question 76

Discussion