Feedback
Home
You may like this!
46.
You need to give a user in your Azure Active Directory full administrative access. Which administrator role should you assign the user?
  • A.
    Global administrator
  • B.
    User administrator
  • C.
    Password administrator
  • D.
    Billing administrator
  • Answer & Explanation
  • Report
Answer : [A]
Explanation :
A. Correct: A global administrator has full administrative access to the directory.
B. Incorrect: A user administrator can manage users, groups, and reset password for other users in the directory.
C. Incorrect: A password administrator can reset passwords for other users and other password administrators.
D. Incorrect: A billing administrator can purchase services, manage service requests, and monitor service health.
Report
Name Email  
47.
You have a user in your Azure Active Directory that needs permissions to create a virtual machine in the Azure subscription. What should you do to support this requirement?
  • A.
    Assign the global administrator role to the user.
  • B.
    Assign the user administrator role to the user.
  • C.
    Add the user as a co-administrator on the Azure subscription.
  • D.
    Add the user as a service administrator on the Azure subscription.
  • Answer & Explanation
  • Report
Answer : [C]
Explanation :
A. Incorrect: Assigning the global administrator role to the user would give the user full access to the directory, but would not allow the user to provision services in the Azure subscription.
B. Incorrect: Assigning the user administrator role to the user would enable the user to manage users and groups in the directory, but would not allow the user to provision services in the Azure subscription.
C. Correct: Adding the user as a co-administrator on the Azure subscription would allow the user to create a virtual machine in the Azure subscription and provision other resources as needed.
D. Incorrect: Adding the user as a service administrator on the Azure subscription would allow the user to create a virtual machine and other resources in the Azure subscription. However, this would also give the user access to billing and other features beyond what is required.
Report
Name Email  
48.
How can Azure Active Directory users see, and launch, the applications they have been granted access to? (Choose all that apply.)
  • A.
    management portal
  • B.
    Active Directory Portal
  • C.
    Access Panel
  • D.
    “My Apps” from the Apple App Store
  • Answer & Explanation
  • Report
Answer : [C, D]
Explanation :
A. Incorrect: The management portal is where co-administrators of an Azure subscription can provision resources.
B. Incorrect: The Active Directory Portal is where global administrators can manage users and is often used by administrators of Office 365 subscriptions.
C. Correct: The Access Panel is where users can see and launch applications they have been assigned access to.
D. Correct: The My Apps application from the Apple App Store can be used for users of iOS 7 devices.
Report
Name Email  
49.
Which of the following are valid contact methods for Multi-Factor Authentication users? (Choose all that apply.)
  • A.
    Mobile phone
  • B.
    Office phone
  • C.
    Email
  • D.
    Mobile application
  • Answer & Explanation
  • Report
Answer : [A, B, D]
Explanation :
A. Correct: Mobile phone is a valid contact method and can be configured to receive a text message or a phone call.
B. Correct: Office phone is a valid contact method.
C. Incorrect: Email is not a valid contact method when configuring Multi-Factor Authentication. It is used in the first leg of authentication though when authenticating using a username and password.
D. Correct: Mobile application is a valid contact method. When choosing this option, you are prompted to download the application to a device and activate it using a passcode provided. The supported device types are Windows Phone, Android, and iOS devices.
Report
Name Email  
50.
Which two single sign-on modes does Azure Active Directory support for SaaS applications?
  • A.
    Automatic user provisioning
  • B.
    Password-based
  • C.
    Active Directory Federation Service (AD FS)
  • D.
    Federation-based
  • Answer & Explanation
  • Report
Answer : [B, D]
Explanation :
A. Incorrect: Automatic user provisioning is used to provision user accounts in the SaaS application because users are provisioned in Azure Active Directory.
B. Correct: Password-based single sign-on uses the user’s credentials with the SaaS application to authenticate.
C. Incorrect: Active Directory Federation Services can be a token provider in a single sign-on configuration, but it is not one of the single sign-on modes.
D. Correct: Federation-based single sign-on uses the user’s credentials in Active Directory to authenticate when accessing the SaaS application.
Report
Name Email  
 
  © 2024 infibee.com. All Rights Reserved.   Copyright | Privacy Policy | Sitemap  
Contact us on : info@infibee.com  
 
 
Share   Facebook   Twitter   Google +   Digg