1. Security benefit of Microsoft Entra ID

❌ Lack of MFA
✅ Enhanced identity protection and conditional access policies
❌ Limited control
❌ Manual authentication

Explanation:
Microsoft Entra ID (Azure AD) provides advanced security such as Conditional Access, MFA, Identity Protection.

---

2. Tool for syncing on-prem AD with Entra ID

❌ Azure Migration Tool
❌ Entra ID Health Monitor
❌ Intune
✅ Microsoft Entra Connect

Explanation:
Entra Connect (Azure AD Connect) syncs on-prem users to cloud identity.

---

3. Edition that includes Privileged Identity Management (PIM)

❌ Office 365 Apps
❌ Entra ID Free
❌ Entra ID P1
✅ Microsoft Entra ID P2

---

4. Requirement to set up on-prem AD

❌ Azure subscription
❌ Entra ID P2
❌ Intune
✅ Windows Server with AD Domain Services installed

---

5. How Entra Connect helps migration

❌ Handles SaaS integration
❌ Upgrades AD
✅ Synchronizes user accounts & changes between on-prem and cloud
❌ Removes inactive users

---

6. System-assigned Managed Identity

❌ Manually configured
❌ Independent of resource lifecycle
✅ Tied to a resource and deleted with that resource
❌ Shared across resources

---

7. Example of a user identity

❌ Device IP
❌ Application managing users
✅ Customer logging in with personal email to access Azure-hosted app
❌ Chatbot accessing data

---

8. Key feature of Entra B2B

✅ Allows external users to use their existing identities
❌ Decentralized authentication
❌ Restrict to devices
❌ Create unique identities

---

9. Conditional access scenario

❌ Password changes by IT
❌ IP range restrictions
❌ Automatic access
✅ Require MFA when accessing sensitive data from unknown location

---

10. How MFA secures identities

❌ Only admins
✅ Adds extra verification layer
❌ Eliminates passwords
❌ Automates approvals

---

---

🧾 SUMMARY TABLE

---