Microsoft SC-400 Microsoft Information Protection Administrator Exam Practice Test

Page: 1 / 14
Total 323 questions
Question 1

SIMULATION

Task 5

You need to ensure that a group named U.S. Sales can store files containing information subject to General Data Protection Regulation (GDPR) in their OneDrive accounts. All other current GDPR restrictions must remain in effect.



Answer : A

To allow theU.S. Salesgroup to store files containing information subject to theGeneral Data Protection Regulation (GDPR)in their OneDrive accounts while keeping other GDPR restrictions intact, follow these steps:

Create a Security Group:

Log in to theMicrosoft 365 admin center.

Navigate toGroupsand create a new security group called''U.S. Sales''.

Configure OneDrive Sharing Settings:

Go to theSettings > Org settingspage.

On theServicestab, selectMicrosoft 365 on the web.

Choose whether to let users open files stored in third-party storage services in Microsoft 365 on the web.Ensure this setting aligns with your organization's GDPR requirements1.

Set Specific Sharing Permissions:

Set the default OneDrive share type to''Specific People''under theSharingmenu in the OneDrive admin area.

Right-click the folder inOneDrive online, clickShare.

Click themore button (three dots)in theSend Linkheader.

ClickManage Access.

ClickGrant Access, then add the''U.S. Sales''security group.This access will apply only to that group2.

By following these steps, theU.S. Salesgroup will be able to store GDPR-related files in their OneDrive accounts while maintaining compliance with other GDPR restrictions


Question 2

SIMULATION

Task 2

You discover that all users can apply the Confidential - Finance label.

You need to ensure that the Confidential - Finance label is available only to the members of the Finance Team group.



Answer : A

To restrict theConfidential - Financelabel to only the members of theFinance Teamgroup, follow these steps:

Create a Sensitivity Label:

Log in to theMicrosoft Purview portalor theMicrosoft Purview compliance portalas an admin.

Navigate toSensitivity labelsand create a new label called''Confidential - Finance''.

Specify the appropriate settings for this label, including encryption, content markings, and permissions1.

Configure Encryption Settings:

When creating the label, ensure that you configure the encryption settings.

Choose either to assign permissions now (where you determine exactly which users get which permissions) or allow users to assign permissions when they apply the label to content2.

Assign the Label to the Finance Team Group:

In theMicrosoft Purview portal, go to theGroupssection.

Select theFinance Teamgroup.

UnderSettings, chooseSensitivity labels.

Add the''Confidential - Finance''label to this group.

Only members of theFinance Teamwill now have access to this label3.

Test the Configuration:

Verify that only members of theFinance Teamcan apply the''Confidential - Finance''label to documents, emails, or other content.


Question 3

SIMULATION

Task 1

You need to provide users with the ability to manually classify files that contain product information that are stored in SharePoint Online sites. The solution must meet the following requirements:

* The users must be able to apply a classification of Product1 to the files.

* Any authenticated user must be able to open files classified as Product1.

* files classified as Product1 must be encrypted.



Answer : A

Create a Custom Content Type:

Go to your SharePoint Online site.

Click onSettings(gear icon) and selectSite settings.

UnderWeb Designer Galleries, chooseSite content types.

Create a new content type (e.g., ''Product1 Classification'') based on theDocumentparent content type.

Add a custom column (e.g., ''Classification'') to this content type.

Apply the Content Type to Document Libraries:

Navigate to the document library where the files are stored.

Click onLibrary settings.

UnderGeneral Settings, selectAdvanced settings.

ChooseYesfor ''Allow management of content types.''

Add your custom content type (''Product1 Classification'') to the library.

Manually Classify Files:

Upload or edit a file in the library.

In the file properties, select theClassificationfield and set it to ''Product1.''

Permissions and Encryption:

Ensure that all authenticated users have at leastViewpermissions on the library.

For encryption, SharePoint Online automatically encrypts files at rest usingBitLockerdisk-level encryption.

Files classified as ''Product1'' will be encrypted and accessible only to authorized users.


Question 4

You have a Microsoft 365 E5 subscription that contains a retention policy named RP1 as shown in the following table.

You place a preservation lock on RP1. You need to modify RP1.

Which two actions can you perform? Each correct answer NOTE: Each correct selection is worth one point.



Answer : C, F


Question 5

You have a Microsoft 365 E5 subscription that uses Microsoft Purview.

You create a sensitive information type (SIT) named SIT1.

You plan to create the communication compliance policies shown in the following table.

To which policies can you add SIT1 as a condition?



Answer : D


Question 6

You have a Microsoft 365 subscription.

You are evaluating whether to use the Microsoft Purview auditing solutions shown in the following table.

You plan to implement Microsoft Purview Audit (Standard) Which solutions can you use?



Answer : A


Question 7

You have a Microsoft 365 subscription.

You have a user named Userl. Several users have full access to the mailbox of Userl.

Some email messages sent to User1 appear to have been read and deleted before the user viewed them.

When you search the audit log in the Microsoft Purview compliance portal to identify who signed in to the mailbox of User1, the results are blank.

You need to ensure that you can view future sign-ins to the mailbox of User1.

Solution: You run the Set-Mailbox --identity ''User1'' --AuditEnabled $true command.

Does that meet the goal?



Answer : A


Page:    1 / 14   
Total 323 questions