Microsoft Azure Administrator (AZ104) Practice Exam

In Azure Active Directory (Azure AD) Premium, what should you configure to add a user as an administrator on all computers that join the Azure AD domain?

• A. Device settings from the Devices blade
• B. General settings from the Groups blade
• C. User settings from the Users blade
• D. Providers from the MFA Server blade

The correct answer is: Device settings from the Devices blade

To add a user as an administrator on all computers that join the Azure AD domain, configuring Device settings from the Devices blade is the appropriate choice. This option allows an administrator to manage settings related to Azure AD-joined devices, including designating users as local administrators on these devices. When a user is assigned as a local administrator for Azure AD-joined devices, they gain essential permissions to control and manage those computers, which is crucial for any user who needs elevated access for management tasks. In Azure Active Directory, the management of devices is critical for ensuring streamlined operations and security across an organization. By establishing device settings appropriately, it is possible to enhance user management and ensure that those who require administrative access have the necessary permissions once devices join the Azure AD environment. The other options pertain to different aspects of Azure AD management and do not provide the same functionality regarding device permissions. For example, general settings from the Groups blade are typically related to managing group memberships and permissions but do not directly influence device administration at the individual user level. User settings from the Users blade focus more on user profiles and authentication rather than device management, and providers from the MFA Server blade relate to multi-factor authentication setups, which are not applicable in the context of adding administrative privileges on devices