Learn how to configure cross-tenant access settings in the Microsoft Entra admin center to allow list cloud apps from a partner organization’s tenant. Step-by-step instructions for AZ-500 exam preparation.
Table of Contents
Question
You have a Microsoft Entra tenant named contoso.com.
You collaborate with a partner organization that has a Microsoft Entra tenant named fabrikam.com.
You need to create an allow list of cloud apps from fabrikam.com that can be used by the users in contoso.com.
What should you do for contoso.com in the Microsoft Entra admin center?
A. From Inbound access settings in Cross-tenant access settings, configure the B2B direct connect settings.
B. From External collaboration settings, configure the Collaboration restrictions settings.
C. From External collaboration settings, configure the Guest invite settings.
D. From Outbound access settings in Cross-tenant access settings, configure the B2B collaboration settings.
Answer
To allow list cloud apps from the fabrikam.com Microsoft Entra tenant so they can be used by users in your contoso.com tenant, you should select option D:
D. From Outbound access settings in Cross-tenant access settings, configure the B2B collaboration settings.
Explanation
Cross-tenant access settings in the Microsoft Entra admin center allow you to control how your organization collaborates with other Azure AD organizations. There are two main sections:
- Inbound access settings: Configure how external users from other organizations can access resources in your tenant.
- Outbound access settings: Configure how your users can access external resources in other organizations’ tenants.
Since the goal is to allow your contoso.com users to access a list of allowed cloud apps from fabrikam.com, you need to configure the Outbound access settings.
Within Outbound access settings, the B2B collaboration settings let you specify an allow list or deny list of external Azure AD organizations. You can add fabrikam.com to the allow list and specify which cloud apps from their tenant are permitted.
The other options are incorrect because:
A) Inbound access settings and B2B direct connect are for controlling external access into your tenant, not outbound access from your users to another tenant.
B) and C) External collaboration settings and Guest invite settings are for managing external user access within your own tenant. They do not apply to accessing cloud apps in another organization’s tenant.
Therefore, the correct steps are to navigate to Cross-tenant access settings > Outbound access settings in the Microsoft Entra admin center for contoso.com, and configure the B2B collaboration allow list settings for the fabrikam.com tenant and apps. This will enable your contoso.com users to access the permitted fabrikam.com cloud apps.
Microsoft AZ-500 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Microsoft AZ-500 exam and earn Microsoft AZ-500 certification.