nerdexam
ExamsAZ-500Questions#71
MicrosoftMicrosoft

AZ-500 · Question #71

AZ-500 Question #71: Real Exam Question with Answer & Explanation

To enable Azure AD PIM for Azure AD roles, you must follow a specific onboarding sequence: first, Consent to PIM (agreeing to the terms and granting PIM access to your directory), then Verify your identity using MFA (a security requirement to confirm you are who you claim to be b

Submitted by yaw92· Mar 6, 2026Manage identity and access - specifically implementing and configuring Azure Active Directory Privileged Identity Management (PIM) to secure and govern privileged access to Azure AD roles (AZ-500 / SC-300 domain).

Question

Drag and Drop Question You create an Azure subscription with Azure AD Premium P2. You need to ensure that you can use Azure Active Directory (Azure AD) Privileged Identity Management (PIM) to secure Azure AD roles. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Answer:

Explanation

To enable Azure AD PIM for Azure AD roles, you must follow a specific onboarding sequence: first, Consent to PIM (agreeing to the terms and granting PIM access to your directory), then Verify your identity using MFA (a security requirement to confirm you are who you claim to be before making privileged changes), and finally Sign up PIM for Azure AD roles (formally activating PIM to manage Azure AD roles). This sequence ensures proper authorization and identity verification before PIM is fully activated for role management.

Topics

#Azure AD Privileged Identity Management#PIM Onboarding#Azure AD Roles#Multi-Factor Authentication

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full AZ-500 PracticeBrowse All AZ-500 Questions