🔥 3-day streak
Microsoft Cybersecurity Architect Expert77 / 158
Question 77 of 158

A financial services company is finalizing its privileged access strategy based on the Microsoft Cybersecurity Reference Architectures (MCRA). Tier 0 administrators (domain admins, Entra ID Global Admins, and cloud subscription owners) currently perform administrative tasks from their standard corporate laptops, which are also used for email and web browsing. Security architects want to eliminate the risk of credential theft and keylogging malware compromising these high-value identities. Which design should they recommend as the primary control for Tier 0 administrative access?

Reviewed for accuracy · Report an issueNext question