You need to meet the security requirement for Group1.
What should you do?
A . Configure all users to sign in by using multi-factor authentication.
B . Modify the properties of Group1.
C . Assign Group1 a management role.
D . Modify the Password reset properties of the Azure AD tenant.
Answer: D
Explanation:
– The members of Group1 must be required to answer a security question before changing their password.
If SSPR (Self Service Password Reset) is enabled, you must select at least one of the following options for the authentication methods. Sometimes you hear these options referred to as "gates."
Mobile app notification
Mobile app code Email
Mobile phone
Office phone
Security questions
You can specify the required authentication methods in the Password reset properties of the Azure AD tenant. In this case, you should set the required authentication method to be ‘Security questions’.
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-sspr-howitworks