HOTSPOT - Your on-premises network contains SAP and non-SAP applications. You have JAVA-based SAP systems that use SPNEGO for single-sign on (SSO) authentication. Your external portal uses multi-factor authentication (MFA) to authenticate users. You plan to extend the on-premises authentication features to Azure and to migrate the SAP applications to Azure. For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Hot Area: Â Suggested Answer: Box 1: No - Need AD FS for MFA. See box 3. Note: Azure Active Directory (Azure AD) Pass-through Authentication allows your users to sign in to both on-premises and cloud-based applications using the same passwords. This feature is an alternative to Azure AD Password Hash Synchronization (see Box 2). Box 2: Yes - Password hash synchronization is one of the sign-in methods used to accomplish hybrid identity. Azure AD Connect synchronizes a hash, of the hash, of a users password from an on-premises Active Directory instance to a cloud-based Azure AD instance. Password hash synchronization is an extension to the directory synchronization feature implemented by Azure AD Connect sync. You can use this feature to sign in to Azure AD services like Office 365. You sign in to the service by using the same password you use to sign in to your on-premises Active Directory instance. Box 3: Yes - If your organization is federated with Azure AD, you can use Azure Multi-Factor Authentication to secure AD FS resources, both on-premises and in the cloud. Azure MFA enables you to eliminate passwords and provide a more secure way to authenticate. Reference: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-phs https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-ad-fs-and-azure-mfa This question is in AZ-120 Planning and Administering Microsoft Azure for SAP Workloads Exam For getting Microsoft Certified: Azure for SAP Workloads Specialty Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Microsoft. The website does not contain actual questions and answers from Microsoft's Certification Exams. Trademarks, certification & product names are used for reference only and belong to Microsoft.
Please login or Register to submit your answer