You have an Azure subscription. All users are enabled for mufti-factor authentication (MFA).
You need to ensure that the users can lock out their own account if they receive an unsolicited MFA request from Azure.
Which MFA settings should you configure?
A . Block/unblock users
B . Providers
C . Notifications
D . Fraud alert
Answer: D
Explanation:
Configure the fraud alert feature so that your users can report fraudulent attempts to access their resources. Users can report fraud attempts by using the mobile app or through their phone.
Configuration options include: Block user when fraud is reported: If a user reports fraud, their account is blocked for 90 days or until an administrator unblocks their account. An administrator can review sign-ins by using the sign-in report, and take appropriate action to prevent future fraud. An administrator can then unblock the user’s account.
References: https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfamfasettings#fraud-alert