Online Access Free SC-400 Exam Questions

No.# The file plan template is a comma separated value (CSV) file. You download it from the file plan page of the records management solution.

No.# D. a retention label policy

No.# N-n-y

No.# Correct, "Service Domain" (in Allow mode we add the website to the list, or if it's in Block mode we remove the website from the list)

No.# When you create an auto-labeling policy in Microsoft 365, before applying it in full to automatically label content, it's recommended to first run the policy in simulation mode. Running the policy in simulation mode allows you to see what content would be labeled without actually applying the labels, helping to ensure that the policy works as expected before it's enforced.

No.# correct answers are
1. Disable double encryption
2. Set 'User access to content expires' to 'Never'

No.# To meet compliance requirements for Dropbox, which is a third-party cloud storage service, you should use Microsoft Cloud App Security (MCAS). Cloud App Security provides deep visibility, strong controls, and monitoring capabilities for cloud applications like Dropbox. By creating a DLP policy in Cloud App Security
Other Options:
B. Edit an existing retention label: This is used for data retention and deletion within Microsoft 365 services, but Dropbox is a third-party service, so retention labels wouldn’t apply.
C. Create a retention label: Like option B, retention labels are used within Microsoft services, not for third-party services like Dropbox.
D. Create a DLP policy that applies to devices: This would protect sensitive information on endpoint devices, but it’s not directly related to controlling data within Dropbox.

No.# 1. Employment applications and resumes must be deleted automatically two years after the applications are received.
Place all employee documents and resumes in a single sharepoint site or and folder.
Crete a Retention policy and map this sharepoint path.
So there is only one retention policy is needed.
2. Auto labelling - Create one Label policy for Resumes, and another label policy for employee documents. - and add them in single auto labelling policy

No.# Y-n-n

No.# 1. "A document that contains the following text will match the sensitive info type: James has an Employee ID of 555-343-111-065."
Explanation:
The keyword "Employee ID" is present, which matches the keyword list.
The number 555-343-111-065 matches the pattern in the regular expression.
Since both the keyword and matching pattern are present and within close proximity (within 100 characters), this document will match the sensitive info type.
Answer: Yes.
2. "A document that contains the following text will match the sensitive info type: The Employee ID of the employee Ben Smith is 555341231344."
Explanation:
The keyword Employee ID is present.
The number 555341231344 (although formatted differently) should match the regular expression (since it checks for 3 digits followed by 12 digits).
Both elements (the keyword and the number) appear close to each other, satisfying the proximity rule.
Answer: Yes.
3. "A document that contains the following text will match the sensitive info type: The id for 555-123 has expired."
Explanation:
There is no keyword from the supporting keyword list present (i.e., no "Employee ID" or similar keyword).
The number 555-123 does not match the regular expression (it’s only 6 digits instead of the required format).
Since neither the pattern nor the supporting keyword matches, this document will not match the sensitive info type.
Answer: No...

No.# For SharePoint and OneDrive sites: The copy is retained in the Preservation Hold library.

For Exchange mailboxes: The copy is retained in the Recoverable Items folder.

https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide

No.# Only the .docx and .xlsx files could be labeled. (.txt nor .BPM are supported)

That being clarified, only the .xlsx file will be labeled based on the conditions specified in the DLP Policy.

User1-Owner: will be able to see all files includes those blocked by a DLP policy.
User2-Visitor: All files except the one blocked by the DLP Policy.

Answer: 4 and 3

No.# The computers are already onboarded, that's why sometimes can upload files and sometines cannot, the answer is B and E

No.# Teams chat sharing 1-2-1 uses ODfB.
Teams channel uses Sharepoint
Teams channels and chat also needs policy applied

No.# Old question. This was recently changed (April 2023) and now the EDMUploadAgent can be used 5 times per day.


You can upload data with the EDMUploadAgent to any given data store up to five times per day.

https://learn.microsoft.com/en-us/microsoft-365/compliance/sit-get-started-exact-data-match-hash-upload?view=o365-worldwide#links-to-edm-upload-agent-by-subscription-type

No.# yes, no and no. Only the email gets a label. Specific to auto-labeling for Exchange:
Unlike manual labeling or auto-labeling with Office apps, PDF attachments as well as Office attachments are also scanned for the conditions you specify in your auto-labeling policy. When there is a match, the email is labeled but not the attachment.
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-worldwide

No.# 1. A mail flow rule
2. A DLP Policy that includes locations ODfB, SPO, and Exchange Online.
Condition: If Sensitivity Label "Fabrikam Confidential" is present
Action: Encrypt

No.# The "Action" is a response that occurs when a data loss prevention (DLP) policy is triggered. In this case, when the policy rule detects credit card data on a Windows 10 device joined to Azure AD, it will trigger the "Action" you have configured.
To restrict the ability to copy the sensitive data to the clipboard, you need to choose an appropriate "Action." One of the available actions is to "Block Access" to the sensitive data. You can also customize the action by choosing to "Notify User" with a custom message that explains why the access has been blocked. This will help prevent users from unknowingly violating the policy by providing them with clear information about what actions are permitted and what are not.
Therefore, the correct answer is B - an Action. The incident report is used to notify the appropriate personnel when a policy rule is triggered. User notifications and user overrides are not directly related to configuring an action to restrict the ability to copy sensitive data to the clipboard....

No.# This is only true if "Devices" and "On-premises repositories" are not selected as part of "Location". If they are, then only "Content Contains" is available.

No.# Solution: From the Cloud App Security portal, you mark the application as Unsanctioned. NO
Soluytion: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list. YES