Which two actions should you perform?

You need to prepare the environment to meet the authentication requirements.

Which two actions should you perform? Each correct answer presents part of the solution. NOTE Each correct selection is worth one point.
A . Azure Active Directory (AD) Identity Protection and an Azure policy
B . a Recovery Services vault and a backup policy
C . an Azure Key Vault and an access policy
D . an Azure Storage account and an access policy

View Answer

Answer: BD

Explanation:

D: Seamless SSO works with any method of cloud authentication – Password Hash Synchronization

or Pass-through Authentication, and can be enabled via Azure AD Connect.

B: You can gradually roll out Seamless SSO to your users. You start by adding the following Azure

AD URL to all or selected users’ Intranet zone settings by using Group Policy in Active Directory:

https://autologon.microsoftazuread-sso.com

Incorrect Answers:

A: Seamless SSO needs the user’s device to be domain-joined, but doesn’t need for the device to be

Azure AD Joined.

C: Azure AD connect does not port 8080. It uses port 443.

E: Seamless SSO is not applicable to Active Directory Federation Services (ADFS).

Scenario: Users in the Miami office must use Azure Active Directory Seamless Single Sign-on (Azure

AD Seamless SSO) when accessing resources in Azure.

Planned Azure AD Infrastructure include: The on-premises Active Directory domain will be

synchronized to Azure AD.

References: https://docs.microsoft.com/en-us/azure/active-directory/connect/active-directoryaadconnect-

sso-quick-start