Configure Single Sign-On for MyApp1 | SC-300 Exam Practice

Configure Single Sign-On for MyApp1

Question

Your company requires that users request access before they can access corporate applications.

You register a new enterprise application named MyApp1 in Azure Active Directory (Azure AD) and configure single sign-on (SSO) for MyApp1

Which settings should you configure next for MyApp1?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

A.

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/manage-self-service-access

Since the company requires users to request access before they can access corporate applications, it is likely that some sort of approval process needs to be in place before access can be granted. Therefore, the most appropriate setting to configure next for MyApp1 is self-service.

Self-service enables end-users to request access to applications themselves without involving IT personnel. Once the end-users submit their request, an approval workflow can be triggered to notify the appropriate personnel to approve or deny the request. This way, the access request process becomes more streamlined and less reliant on manual intervention.

Provisioning is the process of automatically creating, updating, or deleting user accounts and attributes in target systems based on changes in the source system. Provisioning is useful if the company has a large number of users, and the access requests need to be automated based on the user's role or position.

Application proxy is used when on-premises applications need to be made available externally without the need for a VPN. Application proxy provides a secure channel between the end-user and the on-premises application by proxying traffic through Azure AD.

Roles and administrators are used to define who has access to the application and what level of access they have. This setting is useful once users have been granted access to the application, but it is not directly related to the access request process.

In summary, the most appropriate setting to configure next for MyApp1 is self-service, as it enables end-users to request access to the application themselves, which can then be approved or denied by IT personnel.