SC-400 : Microsoft Information Protection Administrator Exam

SC-400 Dumps
SC-400 Braindumps
SC-400 Real Questions
SC-400 Practice Test
SC-400 Actual Questions


Microsoft
SC-400
Microsoft Information Protection Administrator
https://killexams.com/pass4sure/exam-detail/SC-400

Question: 103
You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your
company.
What should you do?
A. From the Microsoft 365 compliance center, create a data loss prevention (DLP) policy.
B. From the Azure portal, create an Azure Active Directory (Azure Al)) Identity Protection policy.
C. From the Microsoft 36h compliance? center, create an insider risk policy.
D. From the Microsoft 365 compliance center, start a data investigation.
Answer: B
Question: 104
You have a Microsoft 365 tenant.
All Microsoft OneDrive for Business content is retained roe five years.
A user named User1 left your company a year ago, after which the account of User 1 was deleted from Azure Active
Directory (Azure AD)
You need to recover an important file that was stored in the OneDrive of User1.
What should you use?
A. Deleted users in the Microsoft 365 admin center
B. the Restore-SPODelctedSite- PowerShell cmdlel
C. the Restore ADOb-ject PowerShell cmdlet
D. the OneDrive recycle bin
Answer: D
Question: 105
You are configuring a data loss prevention (DLP) policy to report when credit card data is found on a Windows 10
device joined to Azure Active Directory (Azure AD).
You plan to use information from the policy to restrict the ability to copy the sensitive data to the clipboard.
What should you configure in the policy rule?
A. the incident report
B. an action
C. user notifications
D. user overrides
Answer: D
Explanation:
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwide
Question: 106
You plan to implement sensitivity labels for Microsoft Teams.
You need to ensure that you can view and apply sensitivity labels to new Microsoft Teams sites.
What should you do first?
A. Run the Set-sposite cmdlet.
B. Configure the EnableMTPLabels Azure Active Directory (Azure AD) setting.
C. Create a new sensitivity label scoped to Groups & sites.
D. Run the Execute-AzureAdLabelSync cmdtet.
Answer: A
Question: 107
DRAG DROP
You have a Microsoft 365 tenant that uses data loss prevention (DLP).
You have a custom employee information form named Template 1.docx.
You need to create a classification rule package based on the document fingerprint of Templatel.docx.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions
to the answer area and arrange them in the correct order.
Answer:
Question: 108
You have a new Microsoft 365 tenant.
You need to ensure that custom trainable classifiers can be created in the tenant.
To which role should you be assigned to perform the configuration?
A. Security administrator
B. Security operator
C. Global administrator
D. Compliance administrator
Answer: D
Explanation:
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-
worldwide
Question: 109
You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that
contain States passport numbers.
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must
prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
A. Unallowed apps
B. File path exclusions
C. Service domains
D. Unallowed browsers
Answer: A
Question: 110
You need to create a retention policy to delete content after seven years from the following locations:
Exchange email SharePoint sites
OneDrive accounts Office 365 groups
Teams channel messages Teams chats
What is the minimum number of retention policies that you should create?
A. 1
B. 2
C. 3
D. 4
Answer: A
Explanation:
Reference: https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide
Question: 111
Topic 1, Misc. Questions
You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your
company.
What should you do?
A. From the Microsoft 365 compliance center, create a data loss prevention (DLP) policy.
B. From the Azure portal, create an Azure Active Directory (Azure Al)) Identity Protection policy.
C. From the Microsoft 36h compliance? center, create an insider risk policy.
D. From the Microsoft 365 compliance center, start a data investigation.
Answer: B
Question: 112
You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that
contain States passport numbers.
Users reports that they cannot upload documents to a travel management website because of the policy.
You need to ensure that the users can upload the documents to the travel management website. The solution must
prevent the protected content from being uploaded to other locations.
Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?
A. Unallowed apps
B. File path exclusions
C. Service domains
D. Unallowed browsers
Answer: A
Question: 113
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure
Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You deploy the unified labeling client to the computers.
Does this meet the goal?
A. Yes
B. No
Answer: B
Question: 114
HOTSPOT
You create a retention label policy named Contoso_policy that contains the following labels.
10 years then delete
5 years then delete
Do not retain
Contoso_Policy is applied to content In Microsoft Sharepoint Online sites.
After a couple of days, yon discover the following messages on the Properties page of the label policy.
* Statue Off (Error)
* It’s taking longer than expected to deploy the policy
You need to reinitiate the policy.
How should you complete the command? To answer, select the appropriate options in the; answer area. NOTE: Each
correct selection is worth one point.
Answer:
Question: 115
You have a data loss prevention (DLP) policy configured for endpoints as shown in the following exhibit.


From a computer named Computer1, 3 user can sometimes upload files to cloud services and sometimes cannot. Other
users experience the same issue.
What are two possible causes of the issue? Each correct answer presents a complete solution. NOTE: Each correct
selection is worth one point.
A. The Access by unallowed apps action is set to Audit only.
B. The computers are NOT onboarded to the Microsoft 365 compliance center.
C. The Copy to clipboard action is set to Audit only.
D. There are file path exclusions in the Microsoft 365 Endpoint data loss prevention (Endpoint DIP) settings.
E. The unallowed browsers in the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings are NOT
configured.
Answer: A,D
Question: 116
HOTSPOT
You have a Microsoft 365 tenant that uses a domain named canstoso.com.
A user named User1 leaves your company. The mailbox of User1 is placed on Litigation Hold, and then the account of
User1 is deleted from Azure Active Directory (Azure AD).
You need to copy the content of the User1 mailbox to a folder in the existing mailbox of another user named User2.
How should you complete the PowerShell command? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:
Question: 117
You create a data loss prevention (DLP) policy.
The Advanced DLP rules page is shown in the Rules exhibit.

The Review your settings page is shown in the review exhibit.

You need to review the potential impact of enabling the policy without applying the actions.
What should you do?
A. Edit the policy, remove all the actions in DIP rule 1, and select I’d like to test it out first
B. Edit the policy, remove the Restrict access to the content and Send incident report to Administrator actions, and
then select Yes, turn it on right away.
C. the policy. remove all the actions in DLP rule 1, and select Yes, turn it on right away.
D. Edit the policy, and then select I’d like to test it out first.
Answer: C
Question: 118
Your company has a Microsoft 365 tenant that uses a domain named Contoso.com.
You are implementing data loss prevention (DIP).
The company’s default browser in Microsoft Edge.
During a recent audit, you discover that some user use Firefox and Google Chromo browsers to upload files labeled as
Confidential to a third party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint. Uses
are blocked from uploading the confidential files to the site from Microsoft Edge.
You need to ensure that the users cannot upload files labels as Confidential from Firefox and Google Chrome to any
cloud services. NOTE: Each correct selection is worth one point.
A. From the Microsoft 3G5 Endpoint data loss prevention (Endpoint DLP) settings, add
Firefox and Google Chrome to the unallowed browsers list.
B. Create a DIP policy that applies to the Devices location.
C. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an allowed
service domain.
D. From the Microsoft 365 compliance center, onboard the dcvu.es.
E. From the Microsoft J6b Endpoint data loss prevention (Endpoint) DLP settings, add: m36Sx0767W-sharepomt.com
as a blacked service domain.
Answer: A,C
Question: 119
HOTSPOT
While creating a retention label, you discover that the following options are missing:
* Mark items as a record
* Mark items are a regular record
You need to ensure that the options are available when you create label in the Microsoft 365 compliance center.
How should you complete the PowerShell script? To answer, select the appropriate options in the answer area. NOTE:
Each correct selection is worth one point.

Answer:

User: Ashley***** I have renewed my subscription with Killexams.com for the SC-400 exam because their exams and resources have been crucial to my success. I am confident that I can achieve my SC-400 accreditation with their help and score above 95% on the exam.

User: Marion***** I am grateful to Killexams for providing me with sufficient information to achieve my goal. I did not have to memorize everything before the exam, thanks to their excellent exam material. I thank Killexams from the bottom of my heart, and I will come to them for my next exam.

User: Sambo***** Killexams.com offers the best test-prep on the market. I took and passed my MICROSOFT INFORMATION PROTECTION ADMINISTRATOR exam with only one question unseen in the exam. The practice tests come with records that make this product more valuable than just a brain-practice test. Coupled with traditional memorization, an online exam simulator is an excellent device to advance ones profession.

User: Nadette***** I have renewed my membership with killexams.com for the Microsoft SC-400 exam because their assistance is vital to my success. I am confident that their practice exams will help me obtain my accreditation and secure more than 95% marks. The team at killexams.com is doing an outstanding job, and I hope they continue to maintain their high standards.

User: Agnes***** I used the Killexams.com materials and found their sc-400 exam practice tests to be exceptional. With their help, I was able to answer 89% of the questions correctly. Planning for exams with Killexams.com Questions and Exam Simulator has been very beneficial for me, and this experience was no exception. However, it is worth noting that the sc-400 exam is much harder than previous exams, so be prepared to feel challenged.

---