SC-401 Exam Question 106

Hotspot Question
You have a Microsoft 365 E5 subscription that contains the groups shown in the following table.

The subscription contains the resources shown in the following table.

You create a sensitivity label named Label1.
You need to publish Label1 and have the label apply automatically.
To what can you publish Label1, and to what can Label1 be auto-applied? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

SC-401 Exam Question 107

You have a Microsoft 365 subscription.
Users have devices that run Windows 11.
You plan to create a Microsoft Purview insider risk management policy that will detect when a user performs the following actions:
- Deletes files that contain a sensitive information type (SIT) from
their device
- Copies files that contain a SIT to a USB drive
- Prints files that contain a SIT
You need to prepare the environment to support the policy.
What should you do?
  • SC-401 Exam Question 108

    You need to provide a user with the ability to view data loss prevention (DLP) alerts in the Microsoft Purview portal. The solution must use the principle of least privilege.
    Which role should you assign to the user?
  • SC-401 Exam Question 109

    Hotspot Question
    You have a Microsoft 365 E5 subscription that uses Microsoft Teams and contains the users shown in the following table.

    You have the retention policies shown in the following table.

    The users perform the actions shown in the following table.

    For each of the following statements, select Yes if the statement is true. Otherwise, select No.
    NOTE: Each correct selection is worth one point.

    SC-401 Exam Question 110

    Case Study 1 - Contoso, Ltd
    Overview
    Contoso, Ltd. is a consulting company that has a main office in Montreal and three branch offices in Seattle, Boston, and Johannesburg.
    Existing Environment
    Microsoft 365 Environment
    Contoso has a Microsoft 365 E5 tenant. The tenant contains the administrative user accounts shown in the following table.

    Users store data in the following locations:
    - SharePoint sites
    - OneDrive accounts
    - Exchange email
    - Exchange public folders
    - Teams chats
    - Teams channel messages
    When users in the research department create documents, they must add a 10-digit project code to each document. Project codes that start with the digits 999 are confidential.
    SharePoint Online Environment
    Contoso has four Microsoft SharePoint Online sites named Site1, Site2, Site3, and Site4.
    Site2 contains the files shown in the following table.

    Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.

    Site3 stores documents related to the company's projects. The documents are organized in a folder hierarchy based on the project.
    Site4 has the following two retention policies applied:
    - Name: Site4RetentionPolicy1
    Locations to apply the policy: Site4
    Delete items older than: 2 years
    Delete content based on: When items were created
    - Name: Site4RetentionPolicy2
    Locations to apply the policy: Site4
    Retain items for a specific period: 4 years
    Start the retention period based on: When items were created
    At the end of the retention period: Do nothing
    Problem Statements
    Management at Contoso is concerned about data leaks. On several occasions, confidential research department documents were leaked.
    Requirements
    Planned Changes
    Contoso plans to create the following data loss prevention (DLP) policy:
    - Name: DLPpolicy1
    Locations to apply the policy: Site2
    Conditions:
    Content contains any of these sensitive info types: SWIFT Code
    - Instance count: 2 to any
    Actions: Restrict access to the content
    Technical Requirements
    Contoso must meet the following technical requirements:
    - All administrative users must be able to review DLP reports.
    - Whenever possible, the principle of least privilege must be used.
    - For all users, all Microsoft 365 data must be retained for at least
    one year.
    - Confidential documents must be detected and protected by using
    Microsoft 365.
    - Site1 documents that include credit card numbers must be labeled
    automatically.
    - All administrative users must be able to create Microsoft 365
    sensitivity labels.
    - After a project is complete, the documents in Site3 that relate to
    the project must be retained for 10 years.
    Hotspot Question
    You need to meet the technical requirements for the confidential documents.
    What should you create first, and what should you use for the detection method? To answer, select the appropriate options in the answer area.
    NOTE: Each correct selection is worth one point.