Ensure Vendor Authentication with Microsoft Account in Azure AD | AZ-100 Exam Question Solution

Allow Vendor Authentication with user1@outlook.com in Azure AD | AZ-100 Exam Answer

Prev Question Next Question

Question

You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com.

You hire a temporary vendor. The vendor uses a Microsoft account that has a sign-in of user1@outlook.com.

You need to ensure that the vendor can authenticate to the tenant by using user1@outlook.com.

What should you do?

Answers

A. From Windows PowerShell, run the New-AzureADUser cmdlet and specify the ""UserPrincipalName user1@outlook.com parameter.

B. From the Azure portal, add a custom domain name, create a new Azure AD user, and then specify user1@outlook.com as the username.

C. From Azure Cloud Shell, run the New-AzureADUser cmdlet and specify the ""UserPrincipalName user1@outlook.com parameter.

D. From the Azure portal, add a new guest user, and then specify user1@outlook.com as the email address.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

UserPrincipalName - contains the UserPrincipalName (UPN) of this user. The UPN is what the user will use when they sign in into Azure AD. The common structure is @, so for Abby Brown in Contoso.com, the UPN would be AbbyB@contoso.com

Example:

To create the user, call the New-AzureADUser cmdlet with the parameter values: powershell New-AzureADUser -AccountEnabled $True -DisplayName "Abby Brown" -PasswordProfile $PasswordProfile -MailNickName "AbbyB" -

UserPrincipalName "AbbyB@contoso.com"

https://docs.microsoft.com/bs-cyrl-ba/powershell/azure/active-directory/new-user-sample?view=azureadps-2.0

The correct answer is D. From the Azure portal, add a new guest user, and then specify user1@outlook.com as the email address.

Explanation:

To allow the temporary vendor to authenticate to the Azure AD tenant using their Microsoft account with the sign-in user1@outlook.com, you need to add them as a guest user in the Azure AD tenant. Guest users are external users who are invited to collaborate on resources in the tenant, but who are not members of the tenant.

Option A, using the New-AzureADUser cmdlet from Windows PowerShell to create a new user with the UserPrincipalName of user1@outlook.com, would create a new user in the tenant with that username, but it would not allow the vendor to authenticate using their existing Microsoft account.

Option B, adding a custom domain name, creating a new Azure AD user, and specifying user1@outlook.com as the username, is not necessary and is overly complicated for this scenario. It would create a new user in the tenant, but it would not allow the vendor to authenticate using their existing Microsoft account.

Option C, using the New-AzureADUser cmdlet from Azure Cloud Shell to create a new user with the UserPrincipalName of user1@outlook.com, is similar to option A and would create a new user in the tenant with that username, but it would not allow the vendor to authenticate using their existing Microsoft account.

Therefore, option D, adding a new guest user and specifying user1@outlook.com as the email address, is the correct option. To add a new guest user in the Azure portal, follow these steps:

Navigate to the Azure AD tenant in the Azure portal.
Click on "Users" in the left-hand menu.
Click on "New guest user" at the top of the screen.
Fill in the required information for the guest user, including their email address (user1@outlook.com).
Click "Invite" to send an invitation to the guest user.
The guest user will receive an email with instructions on how to accept the invitation and sign in to the tenant using their Microsoft account.

Prev Question Next Question