Answer-first summary for fast verification
Answer: No
The proposed solution does not meet the goal because Azure AD Privileged Identity Management (PIM) is designed for managing and monitoring privileged role assignments through just-in-time access, time-bound assignments, and approval workflows. It does not handle risk-based authentication scenarios such as detecting sign-ins from anonymous IP addresses or automatically prompting password changes. The correct service for this requirement is Azure AD Identity Protection (now Entra ID Protection), which specifically detects risky sign-ins (including from anonymous IPs) and can enforce policies like requiring password changes. The community discussion strongly supports this with 100% consensus on answer B, with highly upvoted comments explaining that PIM lacks the risk detection and password change enforcement capabilities needed.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company's Azure Active Directory (Azure AD) environment is accessed by users over the internet. You need to ensure that users connecting from an anonymous IP address are automatically prompted to change their password.
Proposed Solution: You configure Azure AD Privileged Identity Management (PIM).
Does the proposed solution meet the goal?
A
Yes
B
No
No comments yet.