Correct Answer: C
All Power Platform users are managed by Azure Active Directory (Azure AD). Suppose the company needs to maintain an identity database and management on-premises. In that case, a Solution Architect needs to design the right approach for identity synchronization between on-premises service (e.g., Active Directory Domain Service) and Microsoft 365 cloud service (Azure AD).
Microsoft provides three methods to manage user identities between on-premises and online environments: Cloud identity — all users management is in a cloud: no need for on-premises identity services.
Synchronized identity — the primary management is on-premises. The passwords are synchronized between the two systems. Users still use the same password for login to on-premises and cloud systems. But they have to sign in again when accessing Microsoft 365 cloud services.
Federated identity — the primary management is on-premises. The passwords are synchronized between the two systems. But the users don’t need to login to Microsoft 365 cloud services the second time after the initial on-premises login. This method provides single sign-on support.
The synchronized and federated methods are parts of the hybrid identity. There are advantages for the users with a hybrid identity. However, if the company adds new users to the Azure AD, these new accounts will not be synchronized with AD DS. The synchronization between AD DS and Azure AD is in one way: from AD DS to Azure AD.
All other options are incorrect.
For more information about Power Apps types, please visit the below URLs:
https://docs.microsoft.com/en-us/power-platform/admin/manage-user-account-synchronization
https://docs.microsoft.com/en-us/microsoft-365/enterprise/microsoft-365-integration?view=o365-worldwide