GitBit
BlogFirst lesson
Sign Up

Question 5 of 9

Previous QuestionNext Question

your organization has a Microsoft 365 tenant that contains the following users.

Chart showing users and groups

You configure an Azure AD Identity Protection sign-in risk policy with the following settings:

  • Assigned to Group1 and excludes Group2.
  • Only apply if the user risk level is medium or above.
  • If the user risk level is medium or above allow access but require a password change.

The risk level for each user is shown below.

Chart showing user risk level

Which users will be required to change their password?

User1 will be required to change his password

User1 is in Group1 which the policy applies.

User2 will not be required to change his password

User2 is in Group2 which is excluded from the policy.

User3 will not be required to change his password

User3 is in Group1 which is included in the policy but is also in Group2 which is excluded from the policy. In this case, the exclusion wins so the policy does not apply to User3.

https://www.gitbit.org/course/ms-500/learn/Implementing-intelligent-security-using-risk-policies-in-Microsoft-365-NFQ6rYFeQ

Did you like the site?