SC-400 Online Practice Questions and Answers

You have a Microsoft 365 E5 tenant and the Windows 10 devices shown in the following table.

To which devices can you apply Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings?

A. Device1, Device3, and Device4 only

B. Device1, Device2, Device3, and Device4

C. Device1 and Device2 only

D. Device1 and Device3 only

E. Device1 only

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).

You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).

You need to ensure that Endpoint DLP policies can protect content on the computers.

Solution: You onboard the computers to Microsoft Defender for Endpoint.

Does this meet the goal?

A. Yes

B. No

You need to test Microsoft Office 365 Message Encryption (OME) capabilities for your company. The test must verify the following information:

1.

The acquired default template names

2.

The encryption and decryption verification status Which PowerShell cmdlet should you run?

A. Test-ClientAccessRule

B. Test-Mailflow

C. Test-OAuthConnectivity

D. Test-IRMConfiguration

You have a data loss prevention (DLP) policy configured for endpoints as shown in the following exhibit.

From a computer named Computer1, 3 user can sometimes upload files to cloud services and sometimes cannot. Other users experience the same issue.

What are two possible causes of the issue? Each correct answer presents a complete solution.

NOTE: Each correct selection is worth one point.

A. The Access by unallowed apps action is set to Audit only.

B. The computers are NOT onboarded to the Microsoft 365 compliance center.

C. The Copy to clipboard action is set to Audit only.

D. There are file path exclusions in the Microsoft 365 Endpoint data loss prevention (Endpoint DIP) settings.

E. The unallowed browsers in the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings are NOT configured.

You have a Microsoft 365 tenant.

You discover that email does NOT use Microsoft Office 365 Message Encryption (OME).

You need to ensure that OME can be applied to email.

What should you do first?

A. Enable Microsoft Defender for Office 365.

B. Activate Azure Information Protection.

C. Activate Azure Rights Management (Azure RMS).

D. Create an Azure key vault.

You are creating a data loss prevention (DLP) policy that will apply to all available locations. You configure an advanced DLP rule in the policy. Which type of condition can you use in the rule?

A. Keywords

B. Content search query

C. Sensitive info type

D. Sensitive label

You have a Microsoft 365 E5 tenant.

You create a data loss prevention (DLP) policy.

You need to ensure that the policy protects documents in Microsoft Teams chat sessions.

Which location should you enable in the policy?

A. OneDrive accounts

B. Exchange email

C. Teams chat and channel messages

D. SharePoint sites

You have a Microsoft 365 E5 subscription that contains two Microsoft SharePoint Online sites named Site1 and Site2.

You plan to configure a retention label named Label1 and apply Label1 to all the files in Site1.

You need to ensure that two years after a file is created in Site1, the file moves automatically to Site2.

How should you configure the Choose what happens after the retention period setting for Label1?

A. Run a Power Automate flow

B. Change the label

C. Deactivate retention settings

D. Start a disposition review

You have a Microsoft 365 E5 subscription that uses Privacy Risk Management in Microsoft Priva. You need to review the personal data type instances that were detected in the subscription. What should you use in the Microsoft Purview compliance portal?

A. Content explorer

B. User data search

C. Content search

D. an eDiscovery case

You need to recommend a solution that meets the compliance requirements for protecting the documents in the Data shared folder. What should you recommend?

A. From the Microsoft 365 compliance center, configure an auto-labeling policy.

B. From Azure Information Protection, configure a content scan job.

C. From the Microsoft 365 compliance center, configure a Content Search query.

D. From the Microsoft 365 compliance center, configure a DLP policy.

You need to recommend a solution that meets the executive requirements. What should you recommend?

A. From the Microsoft 365 compliance center, create a retention policy.

B. From the Exchange admin center, enable archive mailboxes.

C. From the Microsoft 365 compliance center, create a retention label.

D. From the Microsoft 365 compliance center, create a DLP policy.

HOTSPOT

You have a Microsoft E5 365 tenant.

You need to ensure that you can use sensitivity labels to declare regulatory records.

Which PowerShell cmdlet should you run, and which type of policy should you use? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have a Microsoft 365 E5 subscription.

You receive the data loss prevention (DLP) alert shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic. NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have a Microsoft 365 E5 subscription.

You create an adaptive scope named Scope1 as shown in the following exhibit.

You create a retention policy named Policy1 that includes Scope1.

To which three locations can you apply Policy1? To answer, select the appropriate locations in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have a Microsoft 365 subscription that has Enable Security defaults set to No in Azure AD.

You have a custom compliance manager template named Regulation1.

You have the assessments shown in the following table.

Assessment1 has the improvement actions shown in the following table.

Assessment2 has the improvement actions shown in the following table.

You perform the following actions:

1.

For Assessment2, change the Test status of Establish a threat intelligence program to Implemented.

2.

Enable multi-factor authentication (MFA) for all users.

3.

Configure a privileged access policy.

For each of the following statements, select Yes if the statement is true. Otherwise select No.

NOTE: Each correct selection is worth one point.

Hot Area: