🔥 3-day streak
Microsoft Cybersecurity Architect Expert68 / 158
Question 68 of 158
A retail company is deploying Microsoft Entra Private Access to replace its aging VPN. Employees currently gain full network access once connected to the VPN, and the security team wants to move to a least-privilege model where users can only reach specific internal line-of-business applications based on Conditional Access, without exposing entire subnets. The team also needs to onboard several legacy on-premises web apps that authenticate via Kerberos. Which configuration approach best meets these requirements?
Reviewed for accuracy · Report an issueNext question