Home › Azure AZ-900 › cloudcomputing › identitysecurity › The Zero Trust security model is based on which …
The Zero Trust security model is based on which guiding principle?
AAllow any device to access any resource as long as it's plugged into a wall outlet
BVerify explicitly, use least-privileged access, and assume breach — never trust based on network location alone
CTrust everything inside the corporate firewall and verify only at the perimeter
DReplace authentication with anonymous access whenever possible
Answer & Solution
Correct answer: B. Verify explicitly, use least-privileged access, and assume breach — never trust based on network location alone
Zero Trust replaces the implicit trust of a corporate network with explicit verification at every request, plus least-privilege access and the assumption that breach has already happened. The other options describe the legacy perimeter / castle-and-moat model that Zero Trust explicitly rejects.
Related questions
An administrator wants to grant a contractor read-only access to ONE specific resource groWhich Microsoft Entra capability adds a second authentication factor like an AuthenticatorMicrosoft Defender for Cloud is best described as:The defense-in-depth model recommends:Microsoft Entra Domain Services differs from Microsoft Entra ID in that Domain Services:Microsoft Entra B2B (external identities) is designed to let an organisation:Azure role-based access control (RBAC) grants permissions by combining three things. WhichPasswordless authentication on Microsoft Entra typically replaces the password with which