A financial institution is planning to migrate its operations to Microsoft Azure. The institution handles highly sensitive financial data and must ensure that access to this data is strictly controlled based on the sensitivity of the data and the roles of the employees. The solution must automatically adjust access policies without manual intervention for each request to comply with financial regulations and to scale as the institution grows. Considering these requirements, how does Microsoft Entra Conditional Access leverage data classification and user roles to meet the institution's needs? (Choose the best two options.)

Simulated

Conditional Access provides basic access controls but lacks the capability to integrate with data classification systems or dynamically adjust policies based on user roles, making it unsuitable for the financial institution's needs.

0.0%

Conditional Access enables the creation of dynamic policies that consider the sensitivity of the data being accessed and the roles of the users, allowing for automatic enforcement of strict access controls without manual intervention.

40.0%

Conditional Access is designed solely for ensuring device compliance and does not support the creation of access policies based on data sensitivity or user roles, limiting its applicability in this scenario.

30.0%

Conditional Access requires administrators to manually approve each access request based on data sensitivity and user roles, which could hinder scalability and compliance with financial regulations.

30.0%

Conditional Access integrates with Azure Information Protection to classify data and uses user roles to dynamically enforce access policies, ensuring compliance and scalability without manual intervention.

Microsoft Azure Fundamentals AZ-900

Get started today

Comments