You have a Microsoft 365 tenant.
The Sign-ins activity report shows that an external contractor signed in to the Exchange admin center.
You need to review access to the Exchange admin center at the end of each month and block sign-ins if required.
What should you create?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
https://docs.microsoft.com/en-us/azure/active-directory/governance/access-reviews-overviewBased on the scenario described in the question, an external contractor has signed in to the Exchange admin center, which suggests that the contractor has access to the Exchange Online service within your Microsoft 365 tenant.
To review access to the Exchange admin center at the end of each month and block sign-ins if required, you need to perform an access review of the guest users who have access to the Exchange Online service in your Microsoft 365 tenant. An access review is a process that helps you to determine whether the users have the appropriate access to the resources they need to do their job.
Option A, "an access package that targets users outside your directory," is not the correct answer as it creates a package of resources and permissions that you can grant to users. It is not suitable for a scenario where you need to review access to a specific resource, such as the Exchange admin center.
Option B, "an access package that targets users in your directory," is not the correct answer either as it is the same as option A but for users in your directory, whereas the external contractor is not in your directory.
Option D, "an application-based access review that targets guest users," is not the correct answer as it refers to an access review for applications, not for a specific resource like the Exchange admin center.
The correct answer is Option C, "a group-based access review that targets guest users." This option refers to a process where you create a group of guest users who have access to the Exchange Online service and perform an access review of that group. A group-based access review helps you to identify whether the guest users have the right level of access to the resource and allows you to block sign-ins if required.
In summary, to review access to the Exchange admin center at the end of each month and block sign-ins if required, you need to perform a group-based access review that targets guest users. This will help you to ensure that the right users have the appropriate access to the resource and that you can block access if required.