Microsoft Azure Architect Design (AZ-301) Practice Exam

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the Microsoft Azure Architect Design (AZ-301) Exam with interactive quizzes featuring flashcards and multiple-choice questions, each packed with hints and explanations to ace your certification test!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which authentication strategy should be recommended for an application that requires personal Microsoft account authentication and multi-factor authentication?

  1. An Azure AD B2C tenant.

  2. An Azure AD v2.0 endpoint.

  3. Azure Active Directory on its own.

  4. Azure AD Privileged Identity Management.

The correct answer is: An Azure AD B2C tenant.

The recommendation of using an Azure AD B2C tenant for an application requiring personal Microsoft account authentication and multi-factor authentication is based on the specific capabilities this service provides. Azure AD B2C (Business to Consumer) is designed explicitly for consumer-facing applications and can handle authentication using various identity providers, including personal Microsoft accounts. Azure AD B2C supports multi-factor authentication out of the box, allowing developers to configure security policies that enhance the protection of user accounts. This means that users can sign in using their personal Microsoft accounts and be prompted for additional verification steps, fulfilling the requirements of the application. Other options do not align as well with these requirements. An Azure AD v2.0 endpoint, while useful for accessing Microsoft identity platform functionality, is generally more suited for enterprise applications rather than those requiring personal Microsoft accounts directly. Azure Active Directory on its own is primarily focused on managing organizational identities and access, not individual consumer accounts. Lastly, Azure AD Privileged Identity Management focuses on managing and monitoring privileged access within Azure AD, which is not relevant when considering personal account authentication for general users. These features and considerations make Azure AD B2C the most fitting choice for the given scenario.

More Questions Like This