Q: 15
What can you use to ensure that all the users in a specific group must use multi-factor authentication
(MFA) to sign in to Azure AD?
Options
Discussion
Conditional Access policy is what you'd use for this, so C. It lets you target specific groups and require MFA on sign-in. Pretty sure the others can't do that directly. Someone correct me if that's off?
Why does Microsoft always split these controls across so many places? It’s C.
Option C is the one here since Conditional Access lets you enforce MFA just for certain groups. If the question wanted the broadest control (like tenant-wide), would that change anything or would C still apply?
Pretty sure it's C since Conditional Access can directly force MFA for a specific Azure AD group. Azure Policy and the others don't have that level of user targeting for sign-in requirements. Can't think of another way to do it-anyone disagree?
Probably C, since Conditional Access is what actually lets you target a user group and force MFA specifically for sign-in. The others are about policy enforcement or detecting risk, not just requiring MFA for a set group. If it's Azure AD group based, C makes sense here. Pretty confident but open to other takes.
Looks like C, saw a similar question in exam reports and Conditional Access is the way to enforce MFA for groups.
Be respectful. No spam.
