Question

How can you best ensure that your permanent break glass account is not targeted by user risk policy and sign-in risk policy?

a) Ensure your break glass account is synced with an on-premises AD
b) Ensure your break glass account is a cloud-only account
c) Ensure your break glass account has a complex password
d) Ensure your break glass account is excluded from the user risk policy and the sign-in risk policy

Answer 1

To protect your permanent break glass account from being targeted by user risk policy and sign-in risk policy, you should exclude it from those policies, use a complex password, and sync it with an on-premises AD.

Step-by-step explanation:

The best way to ensure that your permanent break glass account is not targeted by user risk policy and sign-in risk policy is to ensure your break glass account is excluded from the user risk policy and the sign-in risk policy. By doing so, you can effectively minimize the chances of your account being flagged for potential risks or threats. It is also important to ensure your break glass account has a complex password to further enhance its security. Additionally, it is recommended to sync your break glass account with an on-premises AD as part of an added layer of protection.