You have a Microsoft 365 subscription that contains an Azure Active Directory (Azure AD) tenant named contoso.com.
Corporate policy states that user passwords must not include the word Contoso.
What should you do to implement the corporate policy?
A . From the Azure Active Directory admin center, configure the Password protection settings.
B . From the Microsoft 365 admin center, configure the Password policy settings.
C . From Azure AD Identity Protection, configure a sign-in risk policy.
D . From the Azure Active Directory admin center, create a conditional access policy.
Answer: A
Explanation:
The Password protection settings allows you to specify a banned password list of phrases that users cannot use as part of their passwords.
References:
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-password-ban-bad-on-premisesoperations
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-password-ban-bad-configure
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad#custombanned-password-list