Free Updated 2021 Microsoft SC-400 Practice Questions and Answers

1. A compliance administrator recently created several data loss prevention (DLP) policies.

After the policies are created, you receive a higher than expected volume of DLP alerts.

You need to identify which rules are generating the alerts.

Which DLP report should you use?

2. HOTSPOT

You create a sensitivity label as shown in the Sensitivity Label exhibit.





You create an auto-labeling policy as shown in the Auto Labeling Policy exhibit.





A user sends the following email:

From: [email protected]

To: [email protected]

Subject: Address List

Message Body:

Here are the lists that you requested.

Attachments:

<<File1.docx>>

<<File2.xml>>

Both attachments contain lists of IP addresses.

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

3. You create a data loss prevention (DLP) policy.

The Advanced DLP rules page is shown in the Rules exhibit.





The Review your settings page is shown in the review exhibit.





You need to review the potential impact of enabling the policy without applying the actions.

What should you do?

4. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are configuring a file policy in Microsoft Cloud App Security.

You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.

Solution: You use the Data Classification service inspection method and send alerts to Microsoft Power Automate.

Does this meet the goal?

5. You have a Microsoft 365 tenant that has devices onboarded to Microsoft Defender for Endpoint as shown in the following table.





You plan to start using Microsoft 365 Endpoint data loss protection (Endpoint DLP).

Which devices support Endpoint DLP?

6. You have a Microsoft 365 tenant that contains a Microsoft SharePoint Online site named Site1.

You have the users shown in the following table.





You create a data loss prevention (DLP) policy for Site1 that detects credit card number information.

You configure the policy to use the following protection action:

✑ When content matches the policy conditions, show policy tips to users and send them an email notification.

You use the default notification settings.

To Site1, User1 uploads a file that contains a credit card number.

Which users receive an email notification?

7. Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are configuring a file policy in Microsoft Cloud App Security.

You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department.

Solution: You use the Data Classification service inspection method and send alerts as email.

Does this meet the goal?

8. HOTSPOT

You have a Microsoft 365 tenant that uses Microsoft Teams.

You create a data loss prevention (DLP) policy to prevent Microsoft Teams users from sharing sensitive information.

You need to identify which locations must be selected to meet the following requirements:

✑ Documents that contain sensitive information must not be shared inappropriately in Microsoft Teams.

✑ If a user attempts to share sensitive information during a Microsoft Teams chat session, the message must be deleted immediately.

Which three locations should you select? To answer, select the appropriate locations in the answer area. (Choose three.)

NOTE: Each correct selection is worth one point.

9. You create three sensitivity labels named Sensitivity1, Sensitivity2, and Sensitivity3 and perform the following actions:

✑ Publish Sensitivity1.

✑ Create an auto-labeling policy for Sensitivity2.

You plan to create a file policy named Policy1 in Microsoft Cloud App Security.

Which sensitivity labels can you apply to Microsoft SharePoint Online in Policy1?

10. HOTSPOT

You need to implement a solution to encrypt email. The solution must meet the compliance requirements.

What should you create in the Exchange admin center and the Microsoft 36.S compliance center? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

11. You are creating an advanced data loss prevention (DLP) rule in a DLP policy named Policy 1 that will have all locations selected.

Which two conditions can you use in the rule? Each correct answer presents a complete solution. (Choose two.)

NOTE: Each correct selection is worth one point.

12. You have a Microsoft OneDrive for Business folder that contains the files shown in the following table.





In Microsoft Cloud App Security, you create a file policy to automatically apply a classification.

What is the effect of applying the policy?

13. 1. Topic 1, Misc. Questions



Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.

You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.

You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.

Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list.

Does this meet the goal?

14. You have a new Microsoft 365 tenant.

You need to ensure that custom trainable classifiers can be created in the tenant.

To which role should you be assigned to perform the configuration?

15. HOTSPOT

You use project codes that have a format of three alphabetical characters that represent the project type, followed by three digits, for example Abc123.

You need to create a new sensitive info type for the project codes.

How should you configure the regular expression to detect the content? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

16. You have a data loss prevention (DLP) policy that applies to the Devices location. The policy protects documents that contain States passport numbers.

Users reports that they cannot upload documents to a travel management website because of the policy.

You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations.

Which Microsoft 365 Endpoint data loss prevention (Endpoint DLP) setting should you configure?

17. DRAG DROP

You have a Microsoft 365 tenant that uses data loss prevention (DLP).

You have a custom employee information form named Template 1.docx.

You need to create a classification rule package based on the document fingerprint of Templatel.docx.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

18. You need to automatically apply a sensitivity label to documents that contain information about your company's network including computer names, IP addresses, and configuration information.

Which two objects should you use? Each correct answer presents part of the solution. (Choose two.)

NOTE: Each correct selection is worth one point.

19. HOTSPOT

You plan to implement a sensitive information type based on a trainable classifier. The sensitive information type will identify employment contracts.

You need to copy the required files to Microsoft SharePoint Online folders to train the classifier.

What should you use to seed content and test the classifier? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

20. You have a Microsoft 365 tenant that uses 100 data loss prevention (DLP) policies.

A Microsoft Exchange administrator frequently investigates emails that were blocked due to DLP policy violations.

You need to recommend which DLP report the Exchange administrator can use to identify how many messages were blocked based on each DLP policy.

Which report should you recommend?

21. You have a Microsoft SharePoint Online site that contains employee contracts in a document library named Contracts.

The contracts must be treated as records in accordance with your company's records management policy.

You need to implement a solution to automatically mark all the contracts as records when they are uploaded to Contracts.

Which two actions should you perform? Each correct answer presents part of the solution. (Choose two.)

NOTE: Each correct selection is worth one point.

22. HOTSPOT

You plan to create a custom trainable classifier based on an organizational form template.

You need to identity which role based access control (RBAC) role is required to create the trainable classifier and where to classifier. The solution must use the principle of least privilege.

What should you identify? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

23. HOTSPOT

You have a Microsoft 365 tenant.

A retention hold is applied to all the mailboxes in Microsoft Exchange Online.

A user named User1 leaves your company, and the account of User1 is deleted from Azure Active Directory (Azure AD).

You need to create a new user named User2 and provide User2 with access to the mailbox of User1.

How should you complete the PowerShell command? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

24. You need to create a retention policy to retain all the files from Microsoft Teams channel conversations and private chats.

Which two locations should you select in the retention policy? Each correct answer present part of the solution. NOTE: Each correct selection is worth one point.

25. You are evaluating the technical requirements for the DLP reports.

Which user can currently view the DLP reports?

26. HOTSPOT

At the end of a project you upload project documents to a Microsoft SharePoint Online library that contains many fifes.

Files that have the following naming format must be labeled as Project I

• aei_AA989.docx

• bd_WSOgadocx

• cei_DLF112-docx

• ebc_QQ4S4.docx

• ecc_BB565.docx

You plan to create an auto-apply retention label policy.

What should you use to identify the files, and which regular expression should you use? To answer, select the appropriate options in the answer area.

27. HOTSPOT

You have a data loss prevention (DLP) policy that has the advanced DLP rules shown in the following table.





You need to identify which rules will apply when content matches multiple advanced DLP rules.

Which rules should you identify? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

28. HOTSPOT

You are implementing Microsoft Office 365 Message Encryption (OME) for a Microsoft 365 tenant named contoso.com.

You need to meet the following requirements:

• All email to a domain named fabhkam.com must be encrypted automatically.

• Encrypted emails must expire seven days after they are sent-

What should you configure for each requirement? To answer, select the appropriate options . NOTE: Each correct selection is worth one point.

29. You have a Microsoft 365 tenant that uses the following sensitivity labels:

* Confidential

* Internal

* External

The labels are published by using a label policy named Policy1.

Users report that Microsoft Office for the wen apps do not display the Sensitivity button.

The Sensitivity button appears in Microsoft 365 Apps that are installed locally.

You need to ensure that the users can apply sensitivity labels to content when they use Office for the web apps.

Solution: You modify the scope of the Confidential label.

Does this meet the goal?

30. Topic 3, Contoso Case Study



Overview

Contoso, Ltd. is a consulting company that has a main office in Montreal and three branch offices in Seattle, Boston, and Johannesburg.



Microsoft 365 Environment

Contoso has a Microsoft 365 FS tenant the tenant contains the administrative user accounts shown in the following table.







Users store data In the following locations:

• SharePoint sites

• OneDrive accounts

• Exchange email

• Exchange public folders

• Teams chats

• Teams channel messages

When users in the research department create documents, they must add a 10-dig>t project code to each document. Project codes that start with the digits 999 are confidential.



SharePoint Online Environment

Contoso has four Microsoft SharePoint Online sites named Site1. Site2. Site3. and Site4.

Site2 contains the files shown in the following table.





Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.





Sile3 stores documents related to the company's projects. The documents are organized In a folder hierarchy based on the project.



Slte4 has the following two retention policies applied:

• Name: SitetKetentionPolicy1

• Locations to apply the policy: Site4

• Delete items older than:2 years

• Delete content based on: When items were created

• Name: Site4RetentionPolicy2

• Locations to apply the policy. Sile4

• Retain items for a specific period: 4 years

• Start the retention period based on: When items were created

• At the end of the retention period: Do nothing



Problem Statements

Management at Contoso is concerned about data leaks. On several occasions, confidential research departments were leaked.



Planned Changes

Contoso plans to create the following data loss prevention (DLP) policy:

• Name: DLPpolicy1

• Locations to apply the policy; Site2

• Conditions:

• Content contains any of these sensitive info types: SWIF F Code

• Instance count: 2 to any

• Actions: Restrict access to the content



Technical Requirements

Contoso must meet the following technical requirements:

• All administrative users must be able to review DLP reports.

• Whenever possible, the principle of least privilege must be used.

• For all users, all Microsoft 365 data must be retained for at least one year.

• Confidential documents must be detected and protected by using Microsoft 365.

• Site1 documents that include credit card numbers must be labeled automatically.

• All administrative users must be able to create Microsoft 365 sensitivity labels.

• After a project is complete, the documents in Site3 that relate to the project must be retained for 10 years



HOTSPOT

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth is worth one point.