A company uses Microsoft Entra ID for identity management. The security team wants to ensure that users cannot register applications in the tenant to prevent potential data leakage. Which setting should be configured?
Trap 1: Set the 'Admin consent requests' setting to 'Allow'
This controls consent requests, not registration.
Trap 2: Enable the 'Admin consent workflow'
This enables a workflow for consent, not registration.
Trap 3: Set 'Users can consent to apps accessing company data' to 'No'
This controls consent, not registration.
- A
Set the 'Admin consent requests' setting to 'Allow'
Why wrong: This controls consent requests, not registration.
- B
Enable the 'Admin consent workflow'
Why wrong: This enables a workflow for consent, not registration.
- C
Set 'Users can register applications' to 'No' in User settings
This prevents users from registering applications.
- D
Set 'Users can consent to apps accessing company data' to 'No'
Why wrong: This controls consent, not registration.