AZ-104 · Question #310
AZ-104 Question #310: Real Exam Question with Answer & Explanation
All three statements are false (No). For Statement 1: The authentication methods configuration requires users to complete TWO methods to reset their password (Number of methods required to reset = 2), so answering three security questions alone (one method) is insufficient - the
Question
Hotspot Question You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com that contains the users shown in the following table. You enable password reset for contoso.onmicrosoft.com as shown in the Password Reset exhibit. (Click the Password Reset tab.) You configure the authentication methods for password reset as shown in the Authentication Methods exhibit. (Click the Authentication Methods tab.) For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Answer:
Explanation
All three statements are false (No). For Statement 1: The authentication methods configuration requires users to complete TWO methods to reset their password (Number of methods required to reset = 2), so answering three security questions alone (one method) is insufficient - the user would still need a second method. For Statement 2: User1 is not in the SSPR-enabled group (SSPR is scoped to a specific group, and User1 is not a member), so she cannot use ANY password reset method, including the mobile app. For Statement 3: User3 is a Global Administrator, and by design, Azure AD does not allow administrators to configure or use security questions for password reset - Microsoft enforces stronger authentication requirements for admin accounts, restricting them to methods like email, mobile phone, or authenticator app only.
Topics
Community Discussion
No community discussion yet for this question.