< Previous Advanced Challenge (Optional) - Home
Congratulations! You are now familiar with how you can deploy your own custom policies and the Product team has one final request. In case there is an unusual user behaviour, the Product team needs to act quickly and request from the user to perform multifactor authentication to prove that they are really who they say they are or alternatively they must be blocked.
Additionally, when a user is detected as at risk, the product team investigates how to require that they securely change their password to remediate the risk and gain access to their account.
The expectations of the product team’s request are:
- Enable a sign-in risk-based Conditional Access policy requiring MFA and password change when the sign-in risk is medium or high.
- Demonstrate how to you've implemented a Conditional Access policy that prompts for an MFA challenge for high or medium risk users.
- Demonstrate how you modify your Conditional Access policy to require a password change alongside an MFA challenge when a user risk is medium or high.
Add Conditional Access to user flows in Azure Active Directory B2C