Your company requires only single sign-on when employees access resources from the corporate network. Approximately 12 third-party contractors work remotely in various groups throughout the company and access the corporate network by using a virtual private network (VPN).
You want to require multi-factor authentication (MFA) policies for those users by defining a conditional access policy.
What three actions should you perform? Each correct answer presents part of the solution.
For Users and Groups, you should include each individual user. Because this policy applies to only a limited number of users and because they work in different groups throughout the company, it is practical to designate individual users.
For Access Controls, you should click Grant and select Require multi-factor authentication. This allows access to users who successfully authenticate by using multi-factor authentication.
For Cloud Apps, you should include All Cloud Apps. Even though the policy does not designate specific apps, the cloud apps condition is required in conditional access policies.
For Access Controls, you should not click Block and select Require multi-factor authentication. The purpose of the policy is to grant access to users who successfully authenticate.
For Locations, you should not include All trusted locations. The conditional access policy applies to individual users and is not based on location.