Answer-first summary for fast verification
Answer: continuous access evaluation, Conditional Access
Continuous Access Evaluation (CAE) and Conditional Access are both necessary to ensure near-real-time (NRT) restriction of access to Microsoft Exchange Online, SharePoint Online, and Teams in response to specific Azure AD events. CAE provides a mechanism for services to subscribe to critical Azure AD events and enforce restrictions, while Conditional Access policies allow defining specific access conditions based on user, device, location, and risk level. Together, these features align with the Zero Trust principles and ensure that access is dynamically adjusted based on real-time security events.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
You have a Microsoft 365 subscription and are tasked with designing a user access solution that aligns with the Zero Trust principles outlined in the Microsoft Cybersecurity Reference Architectures (MCRA). Your objective is to recommend a solution for automatically restricting access to Microsoft Exchange Online, SharePoint Online, and Teams in near-real-time (NRT) in response to certain Azure Active Directory (Azure AD) events. These events include:
Which two features should you include in the recommendation to meet these criteria? Each correct answer is part of the solution. NOTE: Each correct selection is worth one point.
A
continuous access evaluation
B
Azure AD Application Proxy
C
a sign-in risk policy
D
Azure AD Privileged Identity Management (PIM)
E
Conditional Access