Microsoft SC-400 Microsoft Information Protection Administrator Online Training
Microsoft SC-400 Online Training
The questions for SC-400 were last updated at Dec 20,2024.
- Exam Code: SC-400
- Exam Name: Microsoft Information Protection Administrator
- Certification Provider: Microsoft
- Latest update: Dec 20,2024
DRAG DROP
You need to meet the technical requirements for the Site1 documents.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Topic 3, Misc. Questions
You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
- A . Unallowed apps
- B . File path exclusions
- C . Service domains
- D . Unallowed browsers
You create a data loss prevention (DLP) policy.
The Advanced DLP rules page is shown in the Rules exhibit.
The Review your settings page is shown in the review exhibit.
You need to review the potential impact of enabling the policy without applying the actions.
What should you do?
- A . Edit the policy, remove all the actions in DLP rule 1, and select I’d like to test it out first.
- B . Edit the policy, remove the Restrict access to the content and Send incident report to Administrator actions, and then select Yes, turn it on right away.
- C . Edit the policy, remove all the actions in DLP rule 1, and select Yes, turn it on right away.
- D . Edit the policy, and then select I’d like to test it out first.
You are planning a data loss prevention (DLP) solution that will apply to computers that run Windows 10.
You need to ensure that when users attempt to copy a file that contains sensitive information to a USB storage device, the following requirements are met:
* If the users are members of a group named Group1, the users must be allowed to copy the file, and an event must be recorded in the audit log.
* All other users must be blocked from copying the file.
What should you create?
- A . one DLP policy that contains one DLP rule
- B . two DLP policies that each contains one DLP rule
- C . one DLP policy that contains two DLP rules
HOTSPOT
You have a data loss prevention (DLP) policy that has the advanced DLP rules shown in the following table.
You need to identify which rules will apply when content matches multiple advanced DLP rules.
Which rules should you identify? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
You have a data loss prevention (DLP) policy configured for endpoints as shown in the following exhibit.
From a computer named Computer1, 3 user can sometimes upload files to cloud services and sometimes cannot. Other users experience the same issue.
What are two possible causes of the issue? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
- A . The Access by unallowed apps action is set to Audit only.
- B . The computers are NOT onboarded to the Microsoft 365 compliance center.
- C . The Copy to clipboard action is set to Audit only.
- D . There are file path exclusions in the Microsoft 365 Endpoint data loss prevention (Endpoint DIP) settings.
- E . The unallowed browsers in the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings are NOT configured.
You need to provide a user with the ability to view data loss prevention (DLP) alerts in the Microsoft 365 compliance center. The solution must use the principle of least privilege.
Which role should you assign to the use?
- A . Compliance data administrator
- B . Security operator
- C . Security reader
- D . Compliance administrator
You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your company.
What should you do?
- A . From the Microsoft 365 compliance center, create a data loss prevention (DLP) policy.
- B . From the Azure portal, create an Azure Active Directory (Azure Al)) Identity Protection policy.
- C . From the Microsoft 36h compliance? center, create an insider risk policy.
- D . From the Microsoft 365 compliance center, start a data investigation.
Your company has a Microsoft 365 tenant that uses a domain named contoso.com.
You are implementing data loss prevention (DLP).
The company’s default browser is Microsoft Edge.
During a recent audit, you discover that some users use Firefox and Google Chrome browsers to upload files labeled as Confidential to a third-party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint.com. Users are blocked from uploading the confidential files to the site from Microsoft Edge.
You need to ensure that the users cannot upload files labeled as Confidential from Firefox and Google Chrome to any cloud services.
Which two actions should you perform? Each correct answer presents part of the solution. (Choose two.)
NOTE: Each correct selection is worth one point.
- A . From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add m365x076709.sharepoint.com as a blocked service domain.
- B . Create a DLP policy that applies to the Devices location.
- C . From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google
Chrome to the unallowed browsers list. - D . From the Microsoft 365 compliance center, onboard the devices.
- E . From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an
allowed service domain.
You need to create a retention policy to retain all the files from Microsoft Teams channel conversations and private chats.
Which two locations should you select in the retention policy? Each correct answer present part of the solution. NOTE: Each correct selection is worth one point.
- A . Team channel messages
- B . OneDrive accounts
- C . SharePoint sites
- D . Exchange email
- E . Office 365 groups
- F . Team chats