Which Microsoft Entra capability adds a second authentication factor like an Authenticator app push, FIDO2 key, or one-time code to a password sign-in?
AMulti-factor authentication (MFA)
BTags applied to a subscription
CResource locks at the CanNotDelete level
DAzure Service Health alerts
Answer & Solution
Correct answer: A. Multi-factor authentication (MFA)
MFA layers a second factor (something you have / are) on top of the password (something you know). The other options are resource governance (locks/tags) or operational telemetry (Service Health) — none are auth factors.
Related questions
An administrator wants to grant a contractor read-only access to ONE specific resource groMicrosoft Defender for Cloud is best described as:The defense-in-depth model recommends:The Zero Trust security model is based on which guiding principle?Microsoft Entra Domain Services differs from Microsoft Entra ID in that Domain Services:Microsoft Entra B2B (external identities) is designed to let an organisation:Azure role-based access control (RBAC) grants permissions by combining three things. WhichPasswordless authentication on Microsoft Entra typically replaces the password with which