Multi-Factor Authentication: Additional Security Verifications for Azure Portal Access

B

When multi-factor authentication (MFA) is enabled for a user, they will be required to provide additional authentication factors beyond their password to access Azure portal.

The additional security verifications that the user can use depend on the MFA settings configured for the user. In this case, the question is asking which additional security verifications are available to Admin1 after their MFA status has been set to Enabled.

Option A: an app password, a text message that contains a verification code, and a verification code sent from the Microsoft Authenticator app. This option includes three different authentication factors:

• App password: a unique password generated for the user to use specifically for applications that do not support MFA directly.
• Text message: a verification code is sent to the user's phone via text message, and the user must enter this code in addition to their password to authenticate.
• Microsoft Authenticator app: the user can use the Microsoft Authenticator app to generate a verification code that they must enter in addition to their password to authenticate.

Option B: a phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app. This option includes three different authentication factors:

• Phone call: the user receives a phone call with a verification code, and they must enter this code in addition to their password to authenticate.
• Text message: a verification code is sent to the user's phone via text message, and the user must enter this code in addition to their password to authenticate.
• Microsoft Authenticator app: the user can use the Microsoft Authenticator app to receive a notification or generate a verification code that they must enter in addition to their password to authenticate.

Option C: a phone call, an email message that contains a verification code, and a text message that contains an app password. This option includes three different authentication factors:

• Phone call: the user receives a phone call with a verification code, and they must enter this code in addition to their password to authenticate.
• Email message: a verification code is sent to the user's email address, and the user must enter this code in addition to their password to authenticate.
• App password: a unique password generated for the user to use specifically for applications that do not support MFA directly.

Option D: an app password, a text message that contains a verification code, and a notification sent from the Microsoft Authenticator app. This option includes three different authentication factors:

• App password: a unique password generated for the user to use specifically for applications that do not support MFA directly.
• Text message: a verification code is sent to the user's phone via text message, and the user must enter this code in addition to their password to authenticate.
• Microsoft Authenticator app: the user can use the Microsoft Authenticator app to receive a notification that they must approve in addition to their password to authenticate.

In summary, the correct answer is option B: a phone call, a text message that contains a verification code, and a notification or a verification code sent from the Microsoft Authenticator app. This option provides a variety of authentication factors for the user to choose from, including a phone call, text message, and notification from the Microsoft Authenticator app.