Can a conditional access policy add users to Azure Active Directory (Azure AD) roles?

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft SC-900 Exam. Master key concepts with targeted flashcards and multiple-choice questions, featuring hints and explanations. Get prepared and confident for success!

A conditional access policy in Azure Active Directory is primarily used to enforce specific access controls based on certain conditions, such as user location or device compliance. It is not designed to modify the role assignments or add users to Azure AD roles. Role assignments in Azure AD are separate and must be managed through role-based access control (RBAC) mechanisms.

This focus on enforcing access criteria rather than managing user roles helps maintain a clear separation between security settings and role management. Hence, the correct answer reflects the fact that conditional access policies do not have the capability to assign or modify roles within Azure AD.

More Multiple Choice Questions