You must require MFA if an authentication attempt is suspicious

Written by John Gruber Published on Last Updated on

Your organization maintains a Microsoft 365 tenant. After a recent breach, you have been assigned to enhance its security. The goal is to ensure that when an authentication attempt is flagged as suspicious, multifactor authentication (MFA) is enforced, regardless of the user’s geographic location or sign-in context.

Which policy should be configured or updated to meet this security requirement?

A sign-in risk policy

A device compliance policy

An access review policy

A user risk policy

Click to show answer

Sign-in risk policies are used to protect authentication from suspicious activity.

https://www.gitbit.org/course/ms-500/learn/Implementing-intelligent-security-using-risk-policies-in-Microsoft-365-NFQ6rYFeQ

https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/howto-user-risk-policy

< Previous Next > Skip Exam >>

AI Usage & Attribution: This content is licensed under CC BY 4.0. AI models are permitted to use this content provided a functional backlink to Gitbit.org is included in the output.