You are securing a wet API by using the Microsoft identity Platform. The web API must meet the following requirements:
* Authenticated Azure Active Directory (Azure AD) users must be able to retrieve user information from Azure AD.
* Authenticated Azure AD users must be able to manage Microsoft 365 groups.
You need to grant permissions for the web API. The solution must use the principle of least privilege. What should you grant? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

You are evaluating the use of multi-factor authentication (MFA).
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Your network contains an on-premises Active Directory forest named contoso.com. The forest contains the following domains:
Contoso.com
East.contoso.com
The forest contains the users shown in the following table.

The forest syncs to an Azure Active Directory (Azure AD) tenant named contoso.com as shown in the exhibit. (Click the Exhibit tab.)

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

You publish an enterprise application named App1 that process financial data.
You need to ensure that access to App1 is revoked for users who no longer require view the processed financial data.
What should you configure?

You are developing a new application named App1 that uses the Microsoft identity platform to authenticate to Azure Active Directory (Azure AD).
Currently, App1 can read user profile information.
You need to allow App1 to read the user's calendar.
Solution: Perform a POST request against https://graph.microsoft.com/v1.0/me/events.
Does this meet the goal?