Microsoft Information Protection Administrator (SC-400) Free Practice Test
Question 1
A user reports that she can no longer access a Microsoft Excel file named Northwind Customer Data.xlsx.
From the Cloud App Security portal, you discover the alert shown in the exhibit.
You restore the file from quarantine.
You need to prevent files that match the policy from being quarantined. Files that match the policy must generate an alert.
What should you do?
From the Cloud App Security portal, you discover the alert shown in the exhibit.
You restore the file from quarantine.
You need to prevent files that match the policy from being quarantined. Files that match the policy must generate an alert.
What should you do?
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 2
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are configuring a file policy in Microsoft Cloud App Security.
You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.
Solution: You use the Built-in DLP inspection method and send alerts as email.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are configuring a file policy in Microsoft Cloud App Security.
You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.
Solution: You use the Built-in DLP inspection method and send alerts as email.
Does this meet the goal?
Correct Answer: A
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 3
You have a Microsoft 365 E5 subscription that contains the users shown in the following table.
The subscription contains the communication compliance policy shown in the following exhibit.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point
The subscription contains the communication compliance policy shown in the following exhibit.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point
Correct Answer:
Question 4
You have a Microsoft 365 ES subscription the uses Microsoft Priva.
You plan to create the Privacy risk management policies shown in the following table.
Which policies can send email notifications, and which policies can show policy tips m Microsoft Teams when a policy match is detected? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You plan to create the Privacy risk management policies shown in the following table.
Which policies can send email notifications, and which policies can show policy tips m Microsoft Teams when a policy match is detected? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Correct Answer:
Question 5
You have a Microsoft 365 E5 subscription.
You plan to use the Microsoft Purview compliance portal to map human resources (HR) data for use with insider risk management policies.
You need to add a data connector to import the HR data.
What should you do first, and in which format should you import the data? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You plan to use the Microsoft Purview compliance portal to map human resources (HR) data for use with insider risk management policies.
You need to add a data connector to import the HR data.
What should you do first, and in which format should you import the data? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Correct Answer:
Question 6
You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
Correct Answer: D
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 7
You have a sensitive information type based on a trainable classifier.
You are unsatisfied with the result of the result of trainable classifier.
You need to retrain the classifier.
What should you use in the Microsoft 365 compliance center?
You are unsatisfied with the result of the result of trainable classifier.
You need to retrain the classifier.
What should you use in the Microsoft 365 compliance center?
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 8
You have a Microsoft 365 subscription that contains 20 data loss prevention (DLP) policies.
You need to identify the following:
* Rules that are applied without triggering a policy alert
* The top 10 files that have matched DLP policies
* Alerts that are miscategorized
Which report should you use for each requirement? To answer, drag the appropriate reports to the correct requirements. Each report may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
You need to identify the following:
* Rules that are applied without triggering a policy alert
* The top 10 files that have matched DLP policies
* Alerts that are miscategorized
Which report should you use for each requirement? To answer, drag the appropriate reports to the correct requirements. Each report may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Correct Answer:
Question 9
You have a Microsoft 365 E5 subscription that contains the data loss prevention (DLP) policies shown in the following table.
You have a custom employee information form named Template l.docx.
You plan to create a sensitive info type named Sensitive1 that will use the document fingerprint from Template!.docx.
What should you use to create Sensitive1. and in which DIP policies can you use Sensitive1? To answer, select the appropriate options in the answer area.
You have a custom employee information form named Template l.docx.
You plan to create a sensitive info type named Sensitive1 that will use the document fingerprint from Template!.docx.
What should you use to create Sensitive1. and in which DIP policies can you use Sensitive1? To answer, select the appropriate options in the answer area.
Correct Answer:
Question 10
SIMULATION
Task 9
You are investigating a data breach.
You need to retain all Microsoft Exchange items in the mailbox of Alex Wilber that contain the word Falcon and were created in the year 2021.
Task 9
You are investigating a data breach.
You need to retain all Microsoft Exchange items in the mailbox of Alex Wilber that contain the word Falcon and were created in the year 2021.
Correct Answer:
See thesolution below in Explanation
Explanation:
To retain all Microsoft Exchange items in Alex Wilber's mailbox that contain the word "Falcon" and were created in the year 2021, follow these steps:
Create a Retention Policy:
Sign in to the Microsoft 365 compliance center.
Navigate to Policies and click on Retention.
Create a new retention policy (e.g., "Falcon Retention 2021").
Specify the retention period (e.g., 2 years from the creation date).
Set the condition to include items containing the word "Falcon."
Apply the Retention Policy to Alex Wilber's Mailbox:
Assign the retention policy to Alex Wilber's mailbox.
Ensure that the policy targets items created in the year 2021.
Validate the Policy:
Test the policy thoroughly to ensure it correctly retains the specified items.
Explanation:
To retain all Microsoft Exchange items in Alex Wilber's mailbox that contain the word "Falcon" and were created in the year 2021, follow these steps:
Create a Retention Policy:
Sign in to the Microsoft 365 compliance center.
Navigate to Policies and click on Retention.
Create a new retention policy (e.g., "Falcon Retention 2021").
Specify the retention period (e.g., 2 years from the creation date).
Set the condition to include items containing the word "Falcon."
Apply the Retention Policy to Alex Wilber's Mailbox:
Assign the retention policy to Alex Wilber's mailbox.
Ensure that the policy targets items created in the year 2021.
Validate the Policy:
Test the policy thoroughly to ensure it correctly retains the specified items.
Question 11
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender for Endpoint.
Does this meet the goal?
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender for Endpoint.
Does this meet the goal?
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).
Question 12
You have a Microsoft 365 E5 subscription.
You have a Microsoft Entra tenant named contoso.com.
Your company collaborates with a partner company that has a Microsoft Entra tenant named fabrikam.com.
You need to ensure that email sent to fabrikam.com always uses TLS and is sent only if the email server certificate of fabrikam.com is validated.
What should you do?
You have a Microsoft Entra tenant named contoso.com.
Your company collaborates with a partner company that has a Microsoft Entra tenant named fabrikam.com.
You need to ensure that email sent to fabrikam.com always uses TLS and is sent only if the email server certificate of fabrikam.com is validated.
What should you do?
Correct Answer: D
Question 13
You have a Microsoft 365 E5 subscription.
You need to implement a compliance solution that meets the following requirements:
* Captures clips of key security-related user activities, such as the exfiltration of sensitive company data.
* Integrates data loss prevention (OLP) capabilities with insider risk management.
What should you use for each requirement? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point.
You need to implement a compliance solution that meets the following requirements:
* Captures clips of key security-related user activities, such as the exfiltration of sensitive company data.
* Integrates data loss prevention (OLP) capabilities with insider risk management.
What should you use for each requirement? To answer, select the appropriate options in the answer area NOTE: Each correct selection is worth one point.
Correct Answer:
Question 14
You need to recommend a solution that meets the compliance requirements for Dropbox.
What should you recommend?
What should you recommend?
Correct Answer: B
Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).