Latest SC-400 Pass Guaranteed Exam Dumps Certification Sample Questions [Q69-Q90]

Share

Latest SC-400 Pass Guaranteed Exam Dumps Certification Sample Questions

New SC-400 Test Materials & Valid SC-400 Test Engine


Schedule exam

Languages: English, Chinese (Simplified), Japanese, Korean

Retirement date: none

This exam measures your ability to accomplish the following technical tasks: implement information protection; implement data loss prevention; and implement information governance.


Exam SC-400: Microsoft Information Protection Administrator

The content of this exam was updated on July 23, 2021.

The Information Protection Administrator plans and implements controls that meet organizational compliance needs. This person is responsible for translating requirements and compliance controls into technical implementation. They assist organizational control owners to become and stay compliant.

They work with information technology (IT) personnel, business application owners, human resources, and legal stakeholders to implement technology that supports policies and controls necessary to sufficiently address regulatory requirements for their organization. They also work with the compliance and security leadership such as a Chief Compliance Officer and Security Officer to evaluate the full breadth of associated enterprise risk and partner to develop those policies.

This person defines applicable requirements and tests IT processes and operations against those policies and controls. They are responsible for creating policies and rules for content classification, data loss prevention, governance, and protection.

Part of the requirements for: Microsoft Certified: Information Protection Administrator Associate

Download exam skills outline

 

NEW QUESTION 69
You plan to implement sensitivity labels for Microsoft Teams.
You need to ensure that you can view and apply sensitivity labels to new Microsoft Teams sites.
What should you do first?

  • A. Create a new sensitivity label scoped to Groups & sites.
  • B. Configure the EnableMTPLabels Azure Active Directory (Azure AD) setting.
  • C. Run the Set-sposite cmdlet.
  • D. Run the Execute-AzureAdLabelSync cmdtet.

Answer: A

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels-teams-groups-sites?view=o365-worldwide

 

NEW QUESTION 70
You need to ensure that documents in a Microsoft SharePoint Online site that contain a reference to Project Alpha are retained for two years, and then deleted.
Which two objects should you create? Each correct answer presents part of the solution. (Choose two.) NOTE: Each correct selection is worth one point.

  • A. a retention label
  • B. an auto-apply label policy
  • C. a retention policy
  • D. a sensitivity label
  • E. a publishing label policy
  • F. a sensitive info type

Answer: A,B

Explanation:
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-retention-labels-automatically?view=o365- worldwide Implement Information Governance Testlet 2 Case study This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.
To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.
At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.
To start the case study
To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.
Overview
Contoso, Ltd. is a consulting company that has a main office in Montreal and three branch offices in Seattle, Boston, and Johannesburg.
Existing Environment
Microsoft 365 Environment
Contoso has a Microsoft 365 E5 tenant. The tenant contains the administrative user accounts shown in the following table.

Users store data in the following locations:
* SharePoint sites
* OneDrive accounts
* Exchange email
* Exchange public folders
* Teams chats
* Teams channel messages
When users in the research department create documents, they must add a 10-digit project code to each document. Project codes that start with the digits 999 are confidential.
SharePoint Online Environment
Contoso has four Microsoft SharePoint Online sites named Site1, Site2, Site3, and Site4.
Site2 contains the files shown in the following table.

Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.

Site3 stores documents related to the company's projects. The documents are organized in a folder hierarchy based on the project.
Site4 has the following two retention policies applied:
* Name: Site4RetentionPolicy1
- Locations to apply the policy: Site4
- Delete items older than: 2 years
- Delete content based on: When items were created
* Name: Site4RetentionPolicy2
- Locations to apply the policy: Site4
- Retain items for a specific period: 4 years
- Start the retention period based on: When items were created
- At the end of the retention period: Do nothing
Problem Statements
Management at Contoso is concerned about data leaks. On several occasions, confidential research department documents were leaked.
Requirements
Planned Changes
Contoso plans to create the following data loss prevention (DLP) policy:
* Name: DLPpolicy1
* Locations to apply the policy: Site2
* Conditions:
- Content contains any of these sensitive info types: SWIFT Code
- Instance count: 2 to any
* Actions: Restrict access to the content
Technical Requirements
Contoso must meet the following technical requirements:
* All administrative users must be able to review DLP reports.
* Whenever possible, the principle of least privilege must be used.
* For all users, all Microsoft 365 data must be retained for at least one year.
* Confidential documents must be detected and protected by using Microsoft 365.
* Site1 documents that include credit card numbers must be labeled automatically.
* All administrative users must be able to create Microsoft 365 sensitivity labels.
* After a project is complete, the documents in Site3 that relate to the project must be retained for 10 years.

 

NEW QUESTION 71
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are configuring a file policy in Microsoft Cloud App Security.
You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.
Solution: You use the Data Classification service inspection method and send alerts to Microsoft Power Automate.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: A

 

NEW QUESTION 72
You create a retention label policy named Contoso_policy that contains the following labels.
* 10 years then delete
* 5 years then delete
* Do not retain
Contoso_Policy is applied to content In Microsoft Sharepoint Online sites.
After a couple of days, yon discover the following messages on the Properties page of the label policy.
* Statue Off (Error)
* It's taking longer than expected to deploy the policy
You need to reinitiate the policy.
How should you complete the command? To answer, select the appropriate options in the; answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

Reference:
https://docs.microsoft.com/en-us/powershell/module/exchange/set-retentioncompliancepolicy?view=exchange-p

 

NEW QUESTION 73
You have a Microsoft 365 E5 tenant and the Windows 10 devices shown in the following table.

To which devices can you apply Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings?

  • A. Device1, Device2, Device3, and Device4
  • B. Device1, Device3, and Device4 only
  • C. Device1 only
  • D. Device1 and Device3 only
  • E. Device1 and Device2 only

Answer: E

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide

 

NEW QUESTION 74
Your company has a Microsoft 365 tenant that uses a domain named contoso.com.
You are implementing data loss prevention (DLP).
The company's default browser is Microsoft Edge.
During a recent audit, you discover that some users use Firefox and Google Chrome browsers to upload files labeled as Confidential to a third-party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint.com. Users are blocked from uploading the confidential files to the site from Microsoft Edge.
You need to ensure that the users cannot upload files labeled as Confidential from Firefox and Google Chrome to any cloud services.
Which two actions should you perform? Each correct answer presents part of the solution. (Choose two.) NOTE: Each correct selection is worth one point.

  • A. Create a DLP policy that applies to the Devices location.
  • B. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add m365x076709.sharepoint.com as a blocked service domain.
  • C. From the Microsoft 365 compliance center, onboard the devices.
  • D. From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google Chrome to the unallowed browsers list.
  • E. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an allowed service domain.

Answer: C,D

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide

 

NEW QUESTION 75
You use project codes that have a format of three alphabetical characters that represent the project type, followed by three digits, for example Abc123.
You need to create a new sensitive info type for the project codes.
How should you configure the regular expression to detect the content? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://joannecklein.com/2018/08/07/build-and-use-custom-sensitive-information-types-in-office-365/

 

NEW QUESTION 76
Your company has a Microsoft 365 tenant that uses a domain named contoso.
The company uses Microsoft Office 365 Message Encryption (OMI ) to encrypt email sent to users in fabrikam.com.
A user named User1 erroneously sends an email to user2@fabrikam
You need to disable [email protected] from accessing the email.
What should you do?

  • A. Run the Set-OMEMessageRevocation Cmdlet.
  • B. Run the Get-MessageTrace Cmdlet.
  • C. Run the New-ComplianceSearchAction cmdlet.
  • D. Instruct User1 to delete the email from her Sent Items folder from Microsoft Outlook.
  • E. instruct User1 to select Remove external access from Microsoft Outlook on the web.

Answer: B

 

NEW QUESTION 77
You enable archive mailboxes for all the users at your company.
The Default MRM Policy is shown in the MRM exhibit.

A Microsoft 365 retention label policy is shown in the Label Policy exhibit.

You need to identify the following:
* How many years until an email is archived?
* What should you modify to change the retention period for archiving?
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide#the-principles-of-r

 

NEW QUESTION 78
You are configuring a data loss prevention (DLP) policy to report when credit card data is found on a Windows
10 device joined to Azure Active Directory (Azure AD).
You plan to use information from the policy to restrict the ability to copy the sensitive data to the clipboard.
What should you configure in the policy rule?

  • A. user overrides
  • B. an action
  • C. user notifications
  • D. the incident report

Answer: A

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwide

 

NEW QUESTION 79
You have a Microsoft 365 E5 tenant.
You create sensitivity labels as shown in the Sensitivity Labels exhibit.

The Confidential/External sensitivity label is configured to encrypt files and emails when applied to content.
The sensitivity labels are published as shown in the Published exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels?view=o365-worldwide

 

NEW QUESTION 80
You plan to create a custom trainable classifier based on an organizational form template.
You need to identity which role based access control (RBAC ) role is required to create the trainable classifier and where to classifier. The solution must use the principle of least privilege.
What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 81
You have a Microsoft 365 tenant that uses records management.
You use a retention label to mark legal files stored in a Microsoft SharePoint Online document library as regulatory records.
What can you do to the legal files?

  • A. Remove the retention label of the files.
  • B. Move the files to a different folder within the document library.
  • C. Edit the properties of the files.
  • D. Delete the content from the files.

Answer: B

Explanation:
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/records-management?view=o365- worldwide#records

 

NEW QUESTION 82
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You deploy the unified labeling client to the computers.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: A

Explanation:
Explanation
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide

 

NEW QUESTION 83
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender fur Endpoint.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: B

 

NEW QUESTION 84
You have a Microsoft 365 tenant.
You create the following:
* A sensitivity label
* An auto-labeling policy
You need to ensure that the sensitivity label is applied to all the data discovered by the auto-labeling policy.
What should you do first?

  • A. Create a trainable classifier.
  • B. Enable insider risk management.
  • C. Run the Enable-TransportRule cmdlet.
  • D. Run the policy in simulation mode.

Answer: D

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-wo

 

NEW QUESTION 85
You need to recommend a solution that meets the compliance requirements for viewing DLP tooltip justifications.
What should you recommend?

  • A. Configure an Azure logic app to route DLP notification emails to the compliance department.
  • B. Configure a Microsoft Power Automate workflow to route DLP notification emails to the compliance department.
  • C. Instruct the compliance department users to review the False positive and override report.
  • D. Instruct the compliance department users to review the DLP incidents report.

Answer: C

Explanation:
Explanation/Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/view-the-dlp-reports?view=o365-worldwide

 

NEW QUESTION 86
You have a Microsoft 365 tenant.
A retention hold is applied to all the mailboxes in Microsoft Exchange Online.
A user named User1 leaves your company, and the account of User1 is deleted from Azure Active Directory (Azure AD).
You need to create a new user named User2 and provide User2 with access to the mailbox of User1.
How should you complete the PowerShell command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:
Graphical user interface, text, application Description automatically generated

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/recover-an-inactive-mailbox?view=o365-worldwide

 

NEW QUESTION 87
You need to implement a solution to encrypt email. The solution must meet the compliance requirements.
What should you create in the Exchange admin center and the Microsoft 36.S compliance center? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation
Graphical user interface, text, application Description automatically generated

Users must be able to manually select that email messages are sent encrypted. The encryption will use Office
365 Message Encryption (OME) v2. Any email containing an attachment that has the Fabrikam Confidential sensitivity label applied must be encrypted automatically by using OME.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/ome-sensitive-info-types?view=o365-worldwide

 

NEW QUESTION 88
You are implementing Microsoft Office 365 Message Encryption (OME) for a Microsoft 365 tenant named contoso.com.
You need to meet the following requirements:
* All email to a domain named fabhkam.com must be encrypted automatically.
* Encrypted emails must expire seven days after they are sent-
What should you configure for each requirement? To answer, select the appropriate options NOTE: Each correct selection is worth one point.

Answer:

Explanation:

 

NEW QUESTION 89
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth is worth one point.

Answer:

Explanation:

Explanation

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide

 

NEW QUESTION 90
......


Microsoft SC-400 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Configure and manage sensitivity label policies
  • Implement Office 365 Advanced Message Encryption
Topic 2
  • Manage protection settings and marking for applied sensitivity labels
  • Create custom sensitive information types with exact data match
Topic 3
  • Identify roles and permissions for administering sensitivity labels
  • Select a sensitive information type based on an organization's requirements
Topic 4
  • Configure policies in Microsoft Cloud App Security (MCAS)
  • Implement data loss prevention policies in test mode
Topic 5
  • Configure policies for Microsoft Teams chat and channel messages
  • Manage permissions for data loss prevention reports
Topic 6
  • Manage data loss prevention violations in Microsoft Cloud App Security (MCAS)
  • Create and configure data loss prevention policies
Topic 7
  • Create and manage custom sensitive information types
  • Apply sensitivity labels to Microsoft Teams, Microsoft 365 groups, and SharePoint sites
Topic 8
  • Manage and respond to data loss prevention policy violations
  • Configure data loss prevention for policy precedence
Topic 9
  • Define requirements for implementing Office 365 Message Encryption
  • Verify a trainable classifier is performing properly
Topic 10
  • Manage and monitor data loss prevention policies and activities
  • Implement and monitor Microsoft Endpoint data loss prevention

 

SC-400 Sample with Accurate & Updated Questions: https://www.fast2test.com/SC-400-premium-file.html

SC-400 Updated Exam Dumps [2021] Practice Valid Exam Dumps Question: https://drive.google.com/open?id=1NlioLGiHn8MpZHsKDdT2K0xHCXLirrZn 

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어