You have a new Azure subscription.
You are developing an internal website for employees to view sensitive data.
The website uses Azure Active Directory (Azure AD) for authentication.
You need to implement multifactor authentication for the website.
Which two actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
Click on the arrows to vote for the correct answer
A. B. C. D. E. F.BC.
B: MFA Enabled by conditional access policy.
It is the most flexible means to enable two-step verification for your users.
Enabling using conditional access policy only works for Azure MFA in the cloud and is a premium feature of Azure AD.
C: Multi-Factor Authentication comes as part of the following offerings: -> Azure Active Directory Premium licenses - Full featured use of Azure Multi-Factor Authentication Service (Cloud) or Azure Multi-Factor Authentication Server (On-premises)
-> Multi-Factor Authentication for Office 365 -> Azure Active Directory Global Administrators Reference: https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-getstarted.
To implement multifactor authentication for the internal website, you need to perform the following actions:
A. Configure the website to use Azure AD B2C Azure AD B2C is a cloud-based identity and access management solution for customer-facing applications that helps provide secure access to your application. By configuring the website to use Azure AD B2C, you can implement multifactor authentication for the website.
C. In Azure AD, create a new conditional access policy. A conditional access policy is a set of rules and controls that determine how a user can access your organization's resources. By creating a new conditional access policy in Azure AD, you can specify that the website requires multifactor authentication.
To create a new conditional access policy, follow these steps:
Note: You can also configure additional conditions for the policy, such as requiring authentication from specific locations or devices.
D. Upgrade to Azure AD Premium. Azure AD Premium provides additional features and capabilities, including conditional access policies and multifactor authentication. By upgrading to Azure AD Premium, you can implement multifactor authentication for the website.
E. In Azure AD, enable application proxy. Azure AD Application Proxy is a feature that enables you to access web-based applications that are hosted on-premises from anywhere and on any device. By enabling application proxy, you can provide secure access to the website.
F. In Azure AD conditional access, enable the baseline policy. The baseline policy is a pre-configured set of conditions and access controls that help protect your organization's resources. By enabling the baseline policy in Azure AD conditional access, you can add an additional layer of security to the website.
However, in this case, the correct actions to perform are A and C: configure the website to use Azure AD B2C and create a new conditional access policy in Azure AD to require multifactor authentication for the website.