Exam AZ-305 Topic 3 Question 452 Discussion
Actual exam question for Microsoft's AZ-305 exam
Question #: 452
Topic #: 3
Question #: 452
Topic #: 3
Hotspot Question
You have a Microsoft Entra tenant that uses Microsoft Entra Connect Sync to sync with an on- premises Active Directory Domain Services (AD DS) domain. The domain contains several member servers.
You have a custom human resources (HR) application named App1 that stores employee records.
You are designing a solution to automate the management of user accounts. The solution must meet the following requirements:
- When employees are added to App1, the user accounts of the employee1
must be provisioned to the AD DS domain and the Microsoft Entra tenant
automatically.
- New employee records must be read from a CSV file that is exported
from App1 daily.
You need to recommend a Microsoft Entra Identity Governance provisioning method and a target endpoint for creating new user accounts.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You have a Microsoft Entra tenant that uses Microsoft Entra Connect Sync to sync with an on- premises Active Directory Domain Services (AD DS) domain. The domain contains several member servers.
You have a custom human resources (HR) application named App1 that stores employee records.
You are designing a solution to automate the management of user accounts. The solution must meet the following requirements:
- When employees are added to App1, the user accounts of the employee1
must be provisioned to the AD DS domain and the Microsoft Entra tenant
automatically.
- New employee records must be read from a CSV file that is exported
from App1 daily.
You need to recommend a Microsoft Entra Identity Governance provisioning method and a target endpoint for creating new user accounts.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Suggested Answer:
Explanation:
Box 1: The Extensible Connectivity (ECMA) connector
The Extensible Connectivity (ECMA) Connector host acts as a gateway between Microsoft Entra ID and on-premises applications, converting provisioning requests from Microsoft Entra ID into requests for the target application. It's a crucial component for enabling automated user provisioning into applications that don't natively support protocols like SCIM, LDAP, or SQL.
Box 2: An SCIM endpoint
The Microsoft Entra Extensible Connectivity (ECMA) connector can utilize a SCIM endpoint for application provisioning. In fact, the ECMA connector can be used to connect to applications that don't directly support SCIM, allowing you to leverage existing ECMA connectors that were built for Microsoft Identity Manager (MIM).
Reference:
https://learn.microsoft.com/en-us/entra/identity/app-provisioning/on-premises-application- provisioning-architecture
https://learn.microsoft.com/en-us/entra/identity/app-provisioning/user-provisioning
by Victor at Jun 27, 2026, 08:00 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).