Practice Free SC-400 Exam Online Questions
You need to automatically apply a sensitivity label to documents that contain information about your company’s network including computer names, IP addresses, and configuration information.
Which two objects should you use? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point. (Choose two.)
- A . an Information protection auto-labeling policy
- B . a custom trainable classifier
- C . a sensitive info type that uses a regular expression
- D . a data loss prevention (DLP) policy
- E . a sensitive info type that uses keywords
- F . a sensitivity label that has auto-labeling
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender for Endpoint.
Does this meet the goal?
- A . Yes
- B . No
HOTSPOT
You have a Microsoft 365 E5 subscription that contains the administrators shown in the following table.
On August 1, 2023, you apply the communication compliance policies shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
You have a Microsoft 365 E5 tenant that contains a user named User1.
You need to identify the type and number of holds placed on the mailbox of User1.
What should you do first?
- A . From the Microsoft 365 compliance center, create an eDiscovery case.
- B . From Exchange Online PowerShell. run the Gee-Mailbox cmdlet.
- C . From the Microsoft 365 compliance center, run a content search.
- D . From Exchange Online PowerShell. run the Get-HoldCompliancePolicy cmdlet.
You have a Microsoft 365 E5 subscription.
Users access their mailbox by using the following apps:
• Outlook Win32
• Outlook on the web
• Outlook for iOS and Android
You create a data loss prevention (DLP) policy named DLP1 that has the following settings:
• Location: Exchange email
• Status: On
• User notifications: On
• Notify users in Office 365 service with a policy tip: Enabled
Which apps display a policy tip when content is matched by using DLP1?
- A . Outlook Win32 only
- B . Outlook on the web only
- C . Outlook Win32 and Outlook on the web only
- D . Outlook Win32 and Outlook for iOS and Android only
- E . Outlook Win32, Outlook on the web. and Outlook for iOS and Android
You have a Microsoft 365 E5 tenant that has data loss prevention (DLP) policies.
You need to create a report that includes the following:
• Documents that have a matched DLP policy.
• Documents that have had a sensitivity label changed.
• Documents that have had a sensitivity label removed.
What should you use?
- A . an eDiscovery case
- B . communication compliance reports
- C . a content search
- D . Activity explorer
You have a Microsoft 365 E5 subscription.
You need to ensure that any message or document containing a credit card number is deleted automatically 12 months after it was created. The solution must minimize administrative effort.
Which two components should you create? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
- A . a sensitive information type (SIT)
- B . an auto-labeling policy for a retention label
- C . a sensitivity label
- D . an auto-labeling policy for a sensitivity label
- E . a retention label
Topic 3, Misc. Questions
You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
- A . Unallowed apps
- B . File path exclusions
- C . Service domains
- D . Unallowed browsers
You have a Microsoft 365 subscription.
You have a user named User1. Several users have full access to the mailbox of User1.
Some email messages sent to User1 appear to have been read and deleted before the user viewed them.
When you search the audit log in the Microsoft Purview compliance portal to identify who signed in to the mailbox of User1, the results are blank.
You need to ensure that you can view future sign-ins to the mailbox of User1.
YOU run the Set-AdminAuditLogConfig -AdminAuditLogEnabled $true -AdminiAuditLogCmdlets "Mailbox* command.
Does that meet the goal?
- A . Yes
- B . No
You have a Microsoft 365 E5 tenant that has a retention label named La bell. You need to create an auto-labeling policy that will apply La bell.
To which location can Label! be applied?
- A . Teams channel messages
- B . Exchange email
- C . Exchange public folders
- D . Microsoft Entra security groups