suppose You create a new Azure subscription that is associated to a new Azure Active Directory (Azure AD) tenant.

Question

You create a new Azure subscription that is associated to a new Azure Active Directory (Azure AD) tenant.

You create one active conditional access policy named Portal Policy. Portal Policy is used to provide access to the Microsoft Azure Management cloud app.

The Conditions settings for Portal Policy are configured as shown in the Conditions exhibit. (Click the Conditions tab.)

The Grant settings for Portal Policy are configured as shown in the Grant exhibit. (Click the Grant tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Answer 1

Box 1: Yes -

The Contoso location is included in the policy and MFA is required.

Box 2: No -

The policy applies to the Azure portal and Azure management endpoints. The policy does not apply to web services host in Azure.

Box 3: No -

The policy applies only to users in the Contoso location. The policy does not apply to users external to the Contoso location.

Reference:

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition