Question 46 of 88 from exam SC-300: Microsoft Identity and Access Administrator

Question 46 of 88 from exam SC-300: Microsoft Identity and Access Administrator

Prev Question Next Question

Question

HOTSPOT - You have an on-premises datacenter that contains the hosts shown in the following table.

Name Description Server1 | Domain controller that runs Windows Server 2019 Server that runs Windows Server 2019 and has Azure AD Server2 _| Connect deployed Server that runs Windows Server 2019 and has a Microsoft Server3 _| ASP.NET application named App1 installed Server4 _| Unassigned server that runs Windows Server 2019 Hardware firewall connected to the internet that blocks all traffic Firewall1 | uniess explicitly allowed

You have an Azure Active Directory (Azure AD) tenant that syncs to the Active Directory forest.

Multi-factor authentication (MFA) is enforced for Azure AD.

You need to ensure that you can publish App1 to Azure AD users.

What should you configure on Server and Firewall1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

Answer Area Service to install on Server: x [Azure AD Application Proxy The Azure AD Password Protection DC agent ‘The Azure AD Password Protection proxy service Web Application Proxy in Windows Server Rule to configure on Firewall1 ¥ Allow incoming HTTPS connections from Azure AD to Server4. Allow incoming IPsec connections from Azure AD to Server4. Allow outbound HTTPS connections from Server4 to Azure AD. Allow outbound IPsec connections from Server4 to Azure AD.

Explanations

Prev Question Next Question