az-104 question 330 discussion
View all Microsoft Azure Administrator Exam here
back to microsoft forumQuestion 330 Topic 9
HOTSPOT
You have an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com that contains the users shown in the
following table.
You enable password reset for contoso.onmicrosoft.com as shown in the Password Reset exhibit. (Click the Password Reset
tab.)
You configure the authentication methods for password reset as shown in the Authentication Methods exhibit. (Click the
Authentication Methods tab.)
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:
Answer:
Explanation:
Box 1: No Two methods are required.
Box 2: No
Self-service password reset is only enabled for Group2, and User1 is not a member of Group2.
Box 3: Yes
As a User Administrator, User3 can add security questions to the reset process.
Reference: https://docs.microsoft.com/en-us/azure/active-directory/authentication/quickstart-sspr
https://docs.microsoft.com/en-us/azure/active-directory/authentication/active-directory-passwords-faq
BOX3 is NO
you need to be global administrator
https://learn.microsoft.com/en-us/azure/active-directory/roles/permissions-reference