Manage identity, access, and governance Questions
Practice questions for Manage identity, access, and governance topic in Microsoft Certified: Cloud and AI Security Engineer Associate. 48 questions covering this domain.
An organization is moving away from AD FS and wants cloud authentication that still lets users sign in to cloud apps if the on-premises environment be...
A company wants to invite a partner user to collaborate in its tenant as a guest account. Which Microsoft Entra capability should be used?
A partner organization sends a list of 500 guest users who all need access next week. Which approach best fits this requirement?
A company wants users and groups from one Microsoft Entra tenant to be automatically provisioned into another tenant for collaboration. Which feature ...
An administrator wants new users to sign in with addresses that end in contoso.com instead of the default onmicrosoft.com name. What should the admini...
A company wants a lightweight synchronization option for hybrid identity that uses cloud-managed agents instead of a heavier traditional sync deployme...
An employee uses a personal laptop to access company apps and the organization wants the device recorded in Microsoft Entra without making it a compan...
Which Microsoft Entra feature customizes the sign-in page with an organization's logo, colors, and text?
A security team wants to tag users with department-specific metadata so access decisions can reference those values later. Which feature should they u...
A central IT team wants delegated administrators to manage only users, groups, and devices for the Europe division. Which Microsoft Entra feature shou...
An identity engineer needs ongoing monitoring and health visibility for the hybrid synchronization environment. Which service should be used?
Two partner tenants want to honor each other's MFA and compliant device claims so users are not repeatedly challenged during collaboration. Which conf...
Which Microsoft Entra feature lets users reset their own passwords without calling the help desk?
A security architect wants Conditional Access to protect the act of activating a privileged role in PIM. Which feature should be used?
Which Microsoft Entra feature evaluates user, device, app, and risk signals and then applies grant or session controls?
An administrator suspects a user's refresh tokens have been stolen and wants to force the user to sign in again immediately. What should the administr...
A security team wants to test a new Conditional Access policy and see its effect without blocking sign-ins yet. Which mode should they use?
The security team wants to nudge users to register stronger MFA methods during sign-in over time. Which feature should they configure?
Which authentication method is phishing-resistant and commonly uses security keys or platform credentials?
A company wants to block passwords that contain internal product names and other organization-specific weak terms. Which Microsoft Entra feature shoul...
Sign in to see all 48 questions
Create a free account to browse all questions — completely free during our launch phase.