Exam MS-102 All QuestionsBrowse all questions from this exam
Go to Exam
Question 152

HOTSPOT

-

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

Each user has an Android device with the Microsoft Authenticator app installed and has set up phone sign-in.

The subscription has the following Conditional Access policy:

• Name: Policy1

• Assignments

• Users and groups: Group1, Group2

• Cloud apps or actions: All cloud apps

• Access controls

• Grant: Require multi-factor authentication

• Enable policy: On

From Microsoft Authenticator settings for the subscription, the Enable and Target settings are configured as shown in the exhibit. (Click the Exhibit tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

    Correct Answer:

Discussion
MarkusSan

Answer look correct to me

Murad01

Given answers looks correct

Scotte2023

How does multifactor authentication work? Let's say you're going to sign into your Microsoft account or work or school account, and you enter your username and password. If that's all you need then anybody who knows your username and password can sign in as you from anywhere in the world! But if you have multifactor authentication enabled, things get more interesting. The first time you sign in on a device or app you enter your username and password as usual, then you get prompted to enter your second factor to verify your identity. https://support.microsoft.com/en-gb/topic/what-is-multifactor-authentication-e5e39437-121c-be60-d123-eda06bddf661 User2: It doesn`t specify that they "only" enter a username and password? With passwordless MFA optional, I`d say User2 could sign in.

saurekind

If all users have authenticator app, why can't user 3 use number matching?

Tomtom11

https://learn.microsoft.com/en-ie/entra/identity/authentication/howto-authentication-passwordless-phone Recommended: Microsoft Entra multifactor authentication, with push notifications allowed as a verification method. Push notifications to your smartphone or tablet help the Authenticator app to prevent unauthorized access to accounts and stop fraudulent transactions. The Authenticator app automatically generates codes when set up to do push notifications. A user has a backup sign-in method even if their device doesn't have connectivity.

Harau

YYN User 2 can use username and password, since passwordless is optional

MarkusSan

User 2 cannot use username and password only, because of Conditional Access Policy 1: Grant, require MFA for Group1 and Group2