🔥 3-day streak
Microsoft Cybersecurity Architect Expert158 / 158
Question 158 of 158
A financial services company is implementing the Zero Trust guiding principle of 'verify explicitly' for its cloud-based SaaS applications accessed via Microsoft Entra ID. Security leadership is concerned that once a user is granted a session token, a compromised or revoked account could continue accessing sensitive applications for hours until the token expires. They want access decisions to react to changes in risk and policy in near-real time without forcing overly short token lifetimes that harm productivity. Which capability should the architect prioritize to best align with the 'verify explicitly' principle in this situation?
Reviewed for accuracy · Report an issue