HOTSPOT
You implement single sign-on (SSO) between Office 365 and an on-premises deployment of Active Directory.
You need to configure Active Directory Federation Services (AD FS) to prevent users from being able to log on for 30 minutes after they attempt to log on by using a bad password 10 consecutive times.
Explanation/Reference:
Explanation:
An example of enabling ExtranetLockout feature with maximum of 10 number of bad password attempts and
30 mins soft-lockout duration is as follows:
What command should you run? To answer, select the appropriate options in the answer area.
Hot Area:
Answer:
Set-AdfsProperties-EnableExtranetLockout $true -ExtranetLockoutThreshold 10 -ExtranetObservationWindow
(new-timespan -Minutes 30)
References: https://blogs.msdn.microsoft.com/luzhao1/2015/06/24/demystify-extranet-lockout-feature-in-ad-fs-
3-0/