Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Microsoft Exam MD-102 Topic 4 Question 47 Discussion

Actual exam question for Microsoft's MD-102 exam
Question #: 47
Topic #: 4
[All MD-102 Questions]

You have a Microsoft 365 E5 subscription that contains the groups shown in the following table.

You create a Conditional Access policy named CAPolicy1 that will block access to Microsoft Exchange Online from iOS devices. You assign CAPolicy1 to Group1.

You discover that User1 can still connect to Exchange Online from an iOS device.

You need to ensure that CAPolicy1 is enforced.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

Common signals that Conditional Access can take in to account when making a policy decision include the following signals:

* User or group membership

Policies can be targeted to specific users and groups giving administrators fine-grained control over access.

* Device

Users with devices of specific platforms or marked with a specific state can be used when enforcing Conditional Access policies.

Use filters for devices to target policies to specific devices like privileged access workstations.

* Etc.


by Lamar at May 03, 2025, 03:44 PM

Limited Time Offer

25%

Off

Get Premium MD-102 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Yasuko
9 days ago
I'd go with option C and enable the policy. Sometimes the simplest solution is the best. Although, with Microsoft, you never know what kind of unexpected bugs might crop up.
upvoted 0 times
Yesenia
6 days ago
I agree, let's enable CAPolicy1 to ensure it is enforced.
upvoted 0 times
...
Lashaun
7 days ago
I think we should go with option C and enable the policy.
upvoted 0 times
...
...
Hollis
10 days ago
I'm not sure, maybe we should also consider option C) Enable CAPolicy1 as a potential solution.
upvoted 0 times
...
Glendora
16 days ago
I agree with Carmen, option D seems like the best solution to enforce CAPolicy1.
upvoted 0 times
...
Carmen
17 days ago
I think we should try option D) Add a condition in CAPolicy1 to filter for devices.
upvoted 0 times
...
Emiko
27 days ago
Option B seems like the easiest fix. Just assign the policy to a different group and voila, problem solved. Unless, of course, User1 is secretly a member of Group2 as well.
upvoted 0 times
...
Sunny
29 days ago
Ah, I see the problem. User1 must be using some sort of magic iOS device that's immune to the policy. Maybe we need to call in the Hogwarts tech support team.
upvoted 0 times
Mona
16 days ago
User1 must have a special iOS device.
upvoted 0 times
...
...
Viola
2 months ago
Hmm, it seems like the policy isn't being enforced properly. I'd go with option D and add a condition to filter for devices. That should do the trick.
upvoted 0 times
Ilona
6 days ago
User3: Agreed, let's add a device filter to ensure the policy is enforced.
upvoted 0 times
...
Bo
8 days ago
User2: That sounds like a good idea. Let's give it a try.
upvoted 0 times
...
Miles
1 months ago
User1: I think we should try option D and add a condition to filter for devices.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77