Question

You develop and deploy an azure app service web app. the web app accesses azure sql database data that is secured with a microsoft entra id conditional access policy. the applied policy controls access based on the network location of the user. you need to update the web app code to respond to conditional access challenges. what should you use?

Answer 1

You should integrate the web app with Azure AD using the MSAL to handle Azure SQL Database access challenges posed by Microsoft Entra ID Conditional Access policy based on user's network location.

Step-by-step explanation:

The question concerns updating a web app in Azure App Service that involves responding to Microsoft Entra ID Conditional Access challenges, where the policy is based on the user's network location. To update the web app code to handle conditional access challenges, you will typically need to implement proper authentication and authorization flows that recognize conditional access claims and appropriately challenge the user or service. This could entail integrating with Azure Active Directory (Azure AD) and using its library, such as Microsoft Authentication Library (MSAL), to obtain and manage tokens which consider the conditional access policies.