Question

You need to ensure that the process by which users sign in to Microsoft 365 confirms the identity of the user. Which feature should you use?

a) Multi-factor authentication (MFA)
b) Single Sign-On (SSO)
c) Passwordless authentication
d) OAuth 2.0

Answer 1

Multi-factor authentication (MFA) should be used to confirm the identity of the user when signing in to Microsoft 365.

Therefore, the correct answer is: option a) Multi-factor authentication (MFA)

Step-by-step explanation:

MFA adds an additional layer of security by requiring two or more verification methods. These methods can be something you know (like a password), something you have (like a phone or security key), or something you are (like a fingerprint or facial recognition).

This makes it much more difficult for unauthorized users to access an account, even if they have compromised a password.

Single Sign-On (SSO) simplifies the login process by allowing users to access multiple applications with one set of credentials, but it does not inherently confirm the identity of the user. Passwordless authentication, which uses a method other than passwords for authentication, can be part of an MFA strategy but by itself does not confirm identity. OAuth 2.0 is a protocol for authorization, not a method of authentication that confirms user identity.