You administer an Azure Active Directory (Azure AD) tenant where Box is configured for:
Application Access
Password Single Sign-on
An employee moves to an organizational unit that does not require access to Box through
the Access Panel.
You need to remove only Box from the list of applications only for this user.
What should you do?
A.
Delete the user from the Azure AD tenant.
B.
Delete the Box Application definition from the Azure AD tenant.
C.
From the Management Portal, remove the user’s assignment to the application.
D.
Disable the user’s account in Windows AD.
http://msdn.microsoft.com/en-us/library/azure/dn308588.aspx
“Enabling user access to applications requires you to select the users you want to grant access to an application. If a user should not have access to an application, you can disable access to it.”
That means that D is the correct answer?
right under
Enabling user access to applications requires you to select the users you want to grant access to an application. If a user should not have access to an application, you can disable access to it.
Next steps
The Azure AD application administration is available through the Azure Management Portal. The application administration is located in the Active Directory area, within your directory instance, under the Applications tab.
I believe is C
what is the correct answer?
then is C or D?
isn’t it C?
C is correct:
Management portal is used manage user access, provision user accounts, revoke, and enable/disable single sign-on with Box
“C”
It is C.
You know what would happen if the user’s account is disabled in Windows AD right? He would not be able to access anything let alone Box.
So, simply remove the user’s assignment to Box from the Management Portal.