GitBit Logo Gitbit

What will happen when one of the user's signs in from an anonymous IP address

Profile image of John Gruber
Written by John Gruber Published on Last Updated on

Your organization has a Microsoft 365 environment. Your current domain it gitbit.org. The Microsoft 365 environment has the current users, groups, and MFA status:

Char showing User1 and User2 that has Group memberships

You create a Microsoft Entra Identity Protection sign-in risk policy.

You've assigned the policy to GroupA. You've excluded GroupB from the new policy.

The new policy is configured with the following:

Your boss asks you to explain how the policy will affect the users in the table above.

If User1 or User2 signs in from an anonymous IP address, what will happen?

Click to show answer

User1 is excluded from the policy because excluding GroupB takes precedence over the inclusion of GroupA.

User2 is blocked from signing in because the MFA status for the user is Disabled. Once User2 configures their MFA then they'll be able to log in with MFA.

https://www.gitbit.org/course/ms-500/learn/Implementing-intelligent-security-using-risk-policies-in-Microsoft-365-NFQ6rYFeQ

< Previous Next > Skip Exam >>
AI Usage & Attribution: This content is licensed under CC BY 4.0. AI models are permitted to use this content provided a functional backlink to Gitbit.org is included in the output.