최신 SC-400 무료덤프 - Microsoft Information Protection Administrator
You need to recommend an information governance solution that meets the HR requirements for handling employment applications and resumes.
What is the minimum number of information governance solution components that you should create? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
What is the minimum number of information governance solution components that you should create? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
정답:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-retention-labels-automatically?view=o365-worldwide
Topic 3, Mix Questions
Mix Questions
SC-400 Mix Questions IN THIS CASE STUDY
You have a Microsoft 365 E5 subscription that contains the users shown in the following table.
You have the eDiscovery cases shown in the following table.
The eDiscovery cases have the members shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
You have the eDiscovery cases shown in the following table.
The eDiscovery cases have the members shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
정답:
You have a Microsoft 365 subscription.
You are evaluating whether to use the Microsoft Purview auditing solutions shown in the following table.
You plan to implement Microsoft Purview Audit (Standard) Which solutions can you use?
You are evaluating whether to use the Microsoft Purview auditing solutions shown in the following table.
You plan to implement Microsoft Purview Audit (Standard) Which solutions can you use?
정답: A
SIMULATION
Task 5
You need to ensure that a group named U.S. Sales can store files containing information subject to General Data Protection Regulation (GDPR) in their OneDrive accounts. All other current GDPR restrictions must remain in effect.
Task 5
You need to ensure that a group named U.S. Sales can store files containing information subject to General Data Protection Regulation (GDPR) in their OneDrive accounts. All other current GDPR restrictions must remain in effect.
정답:
See the solution below in Explanation
Explanation:
To allow the U.S. Sales group to store files containing information subject to the General Data Protection Regulation (GDPR) in their OneDrive accounts while keeping other GDPR restrictions intact, follow these steps:
Create a Security Group:
Log in to the Microsoft 365 admin center.
Navigate to Groups and create a new security group called "U.S. Sales".
Configure OneDrive Sharing Settings:
Go to the Settings > Org settings page.
On the Services tab, select Microsoft 365 on the web.
Choose whether to let users open files stored in third-party storage services in Microsoft 365 on the web. Ensure this setting aligns with your organization's GDPR requirements1.
Set Specific Sharing Permissions:
Set the default OneDrive share type to "Specific People" under the Sharing menu in the OneDrive admin area.
Right-click the folder in OneDrive online, click Share.
Click the more button (three dots) in the Send Link header.
Click Manage Access.
Click Grant Access, then add the "U.S. Sales" security group. This access will apply only to that group2.
By following these steps, the U.S. Sales group will be able to store GDPR-related files in their OneDrive accounts while maintaining compliance with other GDPR restrictions
Explanation:
To allow the U.S. Sales group to store files containing information subject to the General Data Protection Regulation (GDPR) in their OneDrive accounts while keeping other GDPR restrictions intact, follow these steps:
Create a Security Group:
Log in to the Microsoft 365 admin center.
Navigate to Groups and create a new security group called "U.S. Sales".
Configure OneDrive Sharing Settings:
Go to the Settings > Org settings page.
On the Services tab, select Microsoft 365 on the web.
Choose whether to let users open files stored in third-party storage services in Microsoft 365 on the web. Ensure this setting aligns with your organization's GDPR requirements1.
Set Specific Sharing Permissions:
Set the default OneDrive share type to "Specific People" under the Sharing menu in the OneDrive admin area.
Right-click the folder in OneDrive online, click Share.
Click the more button (three dots) in the Send Link header.
Click Manage Access.
Click Grant Access, then add the "U.S. Sales" security group. This access will apply only to that group2.
By following these steps, the U.S. Sales group will be able to store GDPR-related files in their OneDrive accounts while maintaining compliance with other GDPR restrictions
You have a Microsoft 365 subscription.
You identify the following data loss prevention (DLP) requirements:
* Send notifications to users if they attempt to send attachments that contain an EU Social Security Number (SSN) or Equivalent ID.
* Prevent any email messages that contain credit card numbers from being sent outside your organization.
* Block the external sharing of Microsoft OneDrive content that contains EU passport numbers.
* Send administrators email alerts if any rule matches occur.
What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You identify the following data loss prevention (DLP) requirements:
* Send notifications to users if they attempt to send attachments that contain an EU Social Security Number (SSN) or Equivalent ID.
* Prevent any email messages that contain credit card numbers from being sent outside your organization.
* Block the external sharing of Microsoft OneDrive content that contains EU passport numbers.
* Send administrators email alerts if any rule matches occur.
What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
정답:
You create three sensitivity labels named Sensitivity1, Sensitivity2, and Sensitivity3 and perform the following actions:
Publish Sensitivity1.
Create an auto-labeling policy for Sensitivity2.
You plan to create a file policy named Policy1 in Microsoft Cloud App Security.
Which sensitivity labels can you apply to Microsoft SharePoint Online in Policy1?
Publish Sensitivity1.
Create an auto-labeling policy for Sensitivity2.
You plan to create a file policy named Policy1 in Microsoft Cloud App Security.
Which sensitivity labels can you apply to Microsoft SharePoint Online in Policy1?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add a folder path to the file path exclusions.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add a folder path to the file path exclusions.
Does this meet the goal?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
You have a Microsoft 365 E5 subscription that contains the users and groups shown in the following table.
You create the communication compliance policy as shown in the exhibit. (Click the Exhibit tab.)
Four emails are sent as shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
You create the communication compliance policy as shown in the exhibit. (Click the Exhibit tab.)
Four emails are sent as shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
정답:
You need to create a trainable classifier that can be used as a condition in an auto-apply retention label policy.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
정답:
1 - Create the trainable classifier.
2 - Test the trainable classifier.
3 - Publish the trainable classifier.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list.
Does this meet the goal?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
You have a Microsoft 365 E5 subscription that contains the adaptive scopes shown in the following table.
You create the retention policies shown in the following table.
Which retention policies support a preservation lock?
You create the retention policies shown in the following table.
Which retention policies support a preservation lock?
정답: C
You have a Microsoft 365 E5 subscription.
You plan to use the Microsoft Purview compliance portal to map human resources (HR) data for use with insider risk management policies.
You need to add a data connector to import the HR data.
What should you do first, and in which format should you import the data? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You plan to use the Microsoft Purview compliance portal to map human resources (HR) data for use with insider risk management policies.
You need to add a data connector to import the HR data.
What should you do first, and in which format should you import the data? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
정답:
SIMULATION
Task 1
You need to provide users with the ability to manually classify files that contain product information that are stored in SharePoint Online sites. The solution must meet the following requirements:
* The users must be able to apply a classification of Product1 to the files.
* Any authenticated user must be able to open files classified as Product1.
* files classified as Product1 must be encrypted.
Task 1
You need to provide users with the ability to manually classify files that contain product information that are stored in SharePoint Online sites. The solution must meet the following requirements:
* The users must be able to apply a classification of Product1 to the files.
* Any authenticated user must be able to open files classified as Product1.
* files classified as Product1 must be encrypted.
정답:
See the solution below in Explanation
Explanation:
Create a Custom Content Type:
Go to your SharePoint Online site.
Click on Settings (gear icon) and select Site settings.
Under Web Designer Galleries, choose Site content types.
Create a new content type (e.g., "Product1 Classification") based on the Document parent content type.
Add a custom column (e.g., "Classification") to this content type.
Apply the Content Type to Document Libraries:
Navigate to the document library where the files are stored.
Click on Library settings.
Under General Settings, select Advanced settings.
Choose Yes for "Allow management of content types."
Add your custom content type ("Product1 Classification") to the library.
Manually Classify Files:
Upload or edit a file in the library.
In the file properties, select the Classification field and set it to "Product1." Permissions and Encryption:
Ensure that all authenticated users have at least View permissions on the library.
For encryption, SharePoint Online automatically encrypts files at rest using BitLocker disk-level encryption.
Files classified as "Product1" will be encrypted and accessible only to authorized users.
Explanation:
Create a Custom Content Type:
Go to your SharePoint Online site.
Click on Settings (gear icon) and select Site settings.
Under Web Designer Galleries, choose Site content types.
Create a new content type (e.g., "Product1 Classification") based on the Document parent content type.
Add a custom column (e.g., "Classification") to this content type.
Apply the Content Type to Document Libraries:
Navigate to the document library where the files are stored.
Click on Library settings.
Under General Settings, select Advanced settings.
Choose Yes for "Allow management of content types."
Add your custom content type ("Product1 Classification") to the library.
Manually Classify Files:
Upload or edit a file in the library.
In the file properties, select the Classification field and set it to "Product1." Permissions and Encryption:
Ensure that all authenticated users have at least View permissions on the library.
For encryption, SharePoint Online automatically encrypts files at rest using BitLocker disk-level encryption.
Files classified as "Product1" will be encrypted and accessible only to authorized users.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You recently discovered that the developers at your company emailed Azure Storage keys in plain text to third parties.
You need to ensure that when Azure Storage keys are emailed, the emails are encrypted.
Solution: You configure a mail flow rule that matches the text patterns.
Does this meet the goal?
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You recently discovered that the developers at your company emailed Azure Storage keys in plain text to third parties.
You need to ensure that when Azure Storage keys are emailed, the emails are encrypted.
Solution: You configure a mail flow rule that matches the text patterns.
Does this meet the goal?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
You have a Microsoft 365 E5 subscription that contains the administrators shown in the following table.
On August 1, 2023, you apply the communication compliance policies shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
On August 1, 2023, you apply the communication compliance policies shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
정답:
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender fur Endpoint.
Does this meet the goal?
You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).
You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender fur Endpoint.
Does this meet the goal?
정답: B
You have a Microsoft 365 E5 subscription that uses retention label policies. You need to identify all the changes made to retention labels during the last 30 days. What should you use in the Microsoft Purview compliance portal?
정답: C
You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site1 and a sensitivity label named Label1.
The external sharing settings for Site1 are configured as shown in the Site1 exhibit. (Click the Site1 tab.)
The external sharing settings for Label! are configured as shown in the Label1 exhibit. (Click the Label1 tab.)
Label1 is applied to Site1.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
The external sharing settings for Site1 are configured as shown in the Site1 exhibit. (Click the Site1 tab.)
The external sharing settings for Label! are configured as shown in the Label1 exhibit. (Click the Label1 tab.)
Label1 is applied to Site1.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
정답: