Manage Identities in Microsoft Entra ID Flashcards
These are ChatGPT produced questions based off the information in this section for each Microsoft learn article. (9 cards)
Which of the following is NOT a risk detection method used by Microsoft Entra Identity Protection?
A. Anonymous IP address usage
B. Password spray attacks
C. Leaked credentials
D. Phishing email detection
Phishing email detection
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
What is the primary purpose of Microsoft Entra Identity Protection?
A. To manage user permissions
B. To detect, investigate, and remediate identity-based risks
C. To provide a secure email service
D. To monitor network traffic
To detect, investigate, and remediate identity-based risks
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
Which report in Microsoft Entra Identity Protection tracks sign-ins that have one or more risk detections?
A. Risk detections report
B. Risky sign-ins report
C. Risky users report
D. Sign-in activity report
Risky sign-ins report
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
True or False: Microsoft Entra Identity Protection can automatically remediate risks based on the detected risk level.
True
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
True or False: Manual remediation is required for all risks detected by Microsoft Entra Identity Protection.
False
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
You are an administrator and notice multiple risky sign-ins from anonymous IP addresses. What should be your first step in investigating these risks?
A. Block all sign-ins from the affected users
B. Review the Risky sign-ins report to understand the context of the sign-ins
C. Reset passwords for all affected users
D. Disable the users’ accounts immediately
Review the Risky sign-ins report to understand the context of the sign-ins
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
A user has been flagged as a risky user due to multiple risk detections. Which of the following actions can you take to remediate this risk?
A. Require the user to perform multifactor authentication
B. Perform a secure password reset
C. Both A and B
D. None of the above
Both A and B
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
Microsoft Entra Identity Protection uses advanced ________ to identify sign-in risks and unusual user behavior.
machine learning
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
The ________ report provides a comprehensive view of all risks detected on identities
Risk detections
https://learn.microsoft.com/en-us/training/modules/manage-identities-microsoft-entra-id/8-microsoft-entra-identity-protection
