Free Microsoft Identity SC-300 Actual Exam Questions - Question 6 Discussion
Question No. 6
You have an Azure Active Directory (Azure AD) tenant named conto.so.com that has Azure AD
Identity Protection enabled. You need to Implement a sign-in risk remediation policy without
blocking access.
What should you do first?
Identity Protection enabled. You need to Implement a sign-in risk remediation policy without
blocking access.
What should you do first?
Select one option, then reveal solution.
US
EL
Ethan L.
2026-01-19
C Multi-factor authentication adds a layer of security without stopping users completely, so it fits the goal of remediating risk but still allowing access. It’s a good first move before enforcing stricter controls.
0
NL
Noah L.
2026-01-17
Maybe C. Setting up MFA first helps reduce risk without outright blocking access, so it fits the idea of remediation without lockout. That seems like a solid step before anything else.
0
NL
Noah L.
2026-01-15
It’s D. Setting up self-service password reset first makes sense so users can fix issues without blocking access when there’s a sign-in risk.
0