Microsoft SC-400 Questions & Answers

Full Version: 120 Q&A


Latest SC-400 Exam Questions and Practice Tests 2024 - Killexams.com

Latest SC-400 Practice Tests with Actual Questions


Get Complete pool of questions with Premium PDF and Test Engine


Exam Code : SC-400
Exam Name : Microsoft Information Protection Administrator
Vendor Name :
"Microsoft"








SC-400 Dumps

SC-400 Braindumps SC-400 Real Questions SC-400 Practice Test

SC-400 Actual Questions


Microsoft


SC-400


Microsoft Information Protection Administrator


https://killexams.com/pass4sure/exam-detail/SC-400



Question: 103


You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your company.


What should you do?

  1. From the Microsoft 365 compliance center, create a data loss prevention (DLP) policy.

  2. From the Azure portal, create an Azure Active Directory (Azure Al)) Identity Protection policy.

  3. From the Microsoft 36h compliance? center, create an insider risk policy.

  4. From the Microsoft 365 compliance center, start a data investigation.




Answer: B



Question: 104


You have a Microsoft 365 tenant.


All Microsoft OneDrive for Business content is retained roe five years.


A user named User1 left your company a year ago, after which the account of User 1 was deleted from Azure Active Directory (Azure AD)

You need to recover an important file that was stored in the OneDrive of User1. What should you use?

  1. Deleted users in the Microsoft 365 admin center

  2. the Restore-SPODelctedSite- PowerShell cmdlel

  3. the Restore ADOb-ject PowerShell cmdlet

  4. the OneDrive recycle bin




Answer: D



Question: 105


You are configuring a data loss prevention (DLP) policy to report when credit card data is found on a Windows 10 device joined to Azure Active Directory (Azure AD).

You plan to use information from the policy to restrict the ability to copy the sensitive data to the clipboard.


What should you configure in the policy rule?

  1. the incident report

  2. an action

  3. user notifications

  4. user overrides




Answer: D
Explanation:

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwide



Question: 106


You plan to implement sensitivity labels for Microsoft Teams.

You need to ensure that you can view and apply sensitivity labels to new Microsoft Teams sites. What should you do first?

  1. Run the Set-sposite cmdlet.

  2. Configure the EnableMTPLabels Azure Active Directory (Azure AD) setting.

  3. Create a new sensitivity label scoped to Groups & sites.

  4. Run the Execute-AzureAdLabelSync cmdtet.




Answer:
A
Question: 107
DRAG DROP

You have a Microsoft 365 tenant that uses data loss prevention (DLP). You have a custom employee information form named Template 1.docx.

You need to create a classification rule package based on the document fingerprint of Templatel.docx.


Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.




Answer:



Question: 108


You have a new Microsoft 365 tenant.

You need to ensure that custom trainable classifiers can be created in the tenant. To which role should you be assigned to perform the configuration?

  1. Security administrator

  2. Security operator

  3. Global administrator

  4. Compliance administrator




Answer: D
Explanation:

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365- worldwide



Question: 109


You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.


Users reports that they cannot upload documents to a travel management website because of the policy.


You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.


Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?

  1. Unallowed apps

  2. File path exclusions

  3. Service domains

  4. Unallowed browsers




Answer: A



Question: 110

You need to create a retention policy to delete content after seven years from the following locations: Exchange email SharePoint sites

OneDrive accounts Office 365 groups Teams channel messages Teams chats

What is the minimum number of retention policies that you should create?

  1. 1

  2. 2

  3. 3

  4. 4




Answer: A
Explanation:

Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide



Question: 111


Topic 1, Misc. Questions


You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your company.


What should you do?

  1. From the Microsoft 365 compliance center, create a data loss prevention (DLP) policy.

  2. From the Azure portal, create an Azure Active Directory (Azure Al)) Identity Protection policy.

  3. From the Microsoft 36h compliance? center, create an insider risk policy.

  4. From the Microsoft 365 compliance center, start a data investigation.




Answer: B



Question: 112


You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.


Users reports that they cannot upload documents to a travel management website because of the policy.


You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.


Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?

  1. Unallowed apps

  2. File path exclusions

  3. Service domains

  4. Unallowed browsers



Answer: A



Question: 113


You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).


You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).


You need to ensure that Endpoint DLP policies can protect content on the computers. Solution: You deploy the unified labeling client to the computers.

Does this meet the goal?

  1. Yes

  2. No




Answer:
B
Question: 114
HOTSPOT

You create a retention label policy named Contoso_policy that contains the following labels. 10 years then delete

5 years then delete Do not retain

Contoso_Policy is applied to content In Microsoft Sharepoint Online sites.


After a couple of days, yon discover the following messages on the Properties page of the label policy.


  • Statue Off (Error)


  • It’s taking longer than expected to deploy the policy You need to reinitiate the policy.

    How should you complete the command? To answer, select the appropriate options in the; answer area. NOTE: Each correct selection is worth one point.




    Answer:



    Question: 115


    You have a data loss prevention (DLP) policy configured for endpoints as shown in the following exhibit.



    From a computer named Computer1, 3 user can sometimes upload files to cloud services and sometimes cannot. Other users experience the same issue.


    What are two possible causes of the issue? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.

    1. The Access by unallowed apps action is set to Audit only.

    2. The computers are NOT onboarded to the Microsoft 365 compliance center.

    3. The Copy to clipboard action is set to Audit only.

    4. There are file path exclusions in the Microsoft 365 Endpoint data loss prevention (Endpoint DIP) settings.

    5. The unallowed browsers in the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings are NOT configured.




    Answer:
    A,D
    Question: 116
    HOTSPOT

    You have a Microsoft 365 tenant that uses a domain named canstoso.com.

    A user named User1 leaves your company. The mailbox of User1 is placed on Litigation Hold, and then the account of User1 is deleted from Azure Active Directory (Azure AD).

    You need to copy the content of the User1 mailbox to a folder in the existing mailbox of another user named User2. How should you complete the PowerShell command? To answer, select the appropriate options in the answer area.

    NOTE: Each correct selection is worth one point.





    Answer:



    Question: 117


    You create a data loss prevention (DLP) policy.


    The Advanced DLP rules page is shown in the Rules exhibit.



    The Review your settings page is shown in the review exhibit.



    You need to review the potential impact of enabling the policy without applying the actions.


    What should you do?

    1. Edit the policy, remove all the actions in DIP rule 1, and select I’d like to test it out first

    2. Edit the policy, remove the Restrict access to the content and Send incident report to Administrator actions, and then select Yes, turn it on right away.

    3. the policy. remove all the actions in DLP rule 1, and select Yes, turn it on right away.

    4. Edit the policy, and then select I’d like to test it out first.




    Answer: C



    Question: 118


    Your company has a Microsoft 365 tenant that uses a domain named Contoso.com. You are implementing data loss prevention (DIP).

    The company’s default browser in Microsoft Edge.


    During a recent audit, you discover that some user use Firefox and Google Chromo browsers to upload files labeled as Confidential to a third party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint. Uses are blocked from uploading the confidential files to the site from Microsoft Edge.


    You need to ensure that the users cannot upload files labels as Confidential from Firefox and Google Chrome to any cloud services. NOTE: Each correct selection is worth one point.

    1. From the Microsoft 3G5 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google Chrome to the unallowed browsers list.

    2. Create a DIP policy that applies to the Devices location.

    3. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an allowed service domain.

    4. From the Microsoft 365 compliance center, onboard the dcvu.es.

    5. From the Microsoft J6b Endpoint data loss prevention (Endpoint) DLP settings, add: m36Sx0767W-sharepomt.com as a blacked service domain.




    Answer: A,C


    Question: 119


    HOTSPOT


    While creating a retention label, you discover that the following options are missing:


  • Mark items as a record


  • Mark items are a regular record


You need to ensure that the options are available when you create label in the Microsoft 365 compliance center.


How should you complete the PowerShell script? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.





Answer:


User: Moses*****

Thanks to killexams.com, I no longer feel alone during exams. I have found an excellent study partner in the form of their study materials. Moreover, their instructors are always available to guide me, regardless of the time of day. During my exams, I received the same level of guidance, and all my questions were promptly answered. I am grateful to the instructors at killexams.com for their excellent and friendly support that helped me pass my tough SC-400 certification exam. The SC-400 study practice tests and SC-400 exam simulator were amazing resources.
User: Lavra*****

I passed my sc-400 exam with flying colors, thanks to killexams.com exam questions and answers. This material was incredibly helpful, and I could tell that it was updated regularly. Before purchasing, I contacted their customer service with some questions, and they assured me that their tests were updated frequently. I felt justified in paying for their exam practice test and was pleased with the results. killexams.com is the best exam guidance option available.
User: Edward*****

I recently received my SC-400 certificate after passing the exam with the help of killexams.com. I have done all my certifications with killexams.com and I cannot compare their exam solution with any other. The fact that I keep coming back for their bundles shows that I am satisfied with their exam solution. I appreciate being able to practice on my computer, in the comfort of my home, especially when most of the questions on the exam are identical to what I saw on the exam simulator. Thanks to Killexams, I have reached the professional stage. I am not sure if I will be moving up anytime soon, but I am happy where I am. Thank you Killexams for your help.
User: Kerry*****

Thanks to a great friend of mine who recommended killexams.com questions and answers, I was able to score 88% on my sc-400 exam. All the material provided was wonderful, and although getting enrolled for the exam was simple, the actual test proved to be quite challenging. However, with the help of killexams.com, I was able to pass with ease and continue with my career.
User: Emma*****

Thanks to Killexams.com, I was able to answer all questions in the exam. I highly recommend Killexams.com to everyone. I had checked out several books, but they did not help. However, with Killexams.com Questions and Answers, I found it easy to prepare for the sc-400 exam. I understood all the concepts well.

Features of iPass4sure SC-400 Exam

  • Files: PDF / Test Engine
  • Premium Access
  • Online Test Engine
  • Instant download Access
  • Comprehensive Q&A
  • Success Rate
  • Real Questions
  • Updated Regularly
  • Portable Files
  • Unlimited Download
  • 100% Secured
  • Confidentiality: 100%
  • Success Guarantee: 100%
  • Any Hidden Cost: $0.00
  • Auto Recharge: No
  • Updates Intimation: by Email
  • Technical Support: Free
  • PDF Compatibility: Windows, Android, iOS, Linux
  • Test Engine Compatibility: Mac / Windows / Android / iOS / Linux

Premium PDF with 120 Q&A

Get Full Version

All Microsoft Exams

Microsoft Exams

Certification and Entry Test Exams

Complete exam list