CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. SC-400

Free SC-400 Exam Braindumps (page: 35)

Page 35 of 76
PDF with 298 Questions

You have a Microsoft 365 E5 subscription that contains a data loss prevention (DLP) policy named DLP1.

DLP1 has a rule that triggers numerous alerts.

You need to reduce the number of alert notifications that are generated. The solution must maintain the sensitivity of DLP1.

What should you do?

  1. Change the mode of DLP1 to Test without notifications.
  2. Modify the rule and increase the instance count.
  3. Modify the rule and configure an alert threshold.
  4. Modify the rule and set the priority to the highest value.

Answer(s): C

Explanation:

An alert policy consists of a set of rules and conditions that define the user or admin activity that generates an alert, a list of users who trigger the alert if they perform the activity, and a threshold that defines how many times the activity has to occur before an alert is triggered.

When the alert is triggered. You can configure a setting that defines how often an activity can occur before an alert is triggered. This allows you to set up a policy to generate an alert every time an activity matches the policy conditions, when a certain threshold is exceeded, or when the occurrence of the activity the alert is tracking becomes unusual for your organization.



Incorrect:
Not D: You can categorize the policy and assign it a severity level.


Reference:

https://learn.microsoft.com/en-us/microsoft-365/compliance/alert-policies?view=o365-worldwide



HOTSPOT (Drag and Drop is not supported)
Your company has offices in 30 countries.

The company has a Microsoft 365 E5 subscription that uses Microsoft SharePoint Online.

You create SharePoint sites for each department and country. The sites are named by using a naming convention of [Department]-[Country], for example, Sales-France.

You need to prevent files stored on the sites of the sales department from being deleted permanently for five years. The solution must meet the following requirements:

-Only affect the files on the sales department sites.
-Minimize administrative effort.

What should you include in the solution? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

  1. See Explanation section for answer.

Answer(s): A

Explanation:





Box 1: A retention policy
You can very efficiently apply a single policy to multiple locations, or to specific locations or users.

Note: Retention policies can be applied to the following locations:

Exchange email
SharePoint site
OneDrive accounts
Microsoft 365 Groups
Skype for Business
Exchange public folders
Teams channel messages
Teams chats
Teams private channel messages
Yammer community messages
Yammer user messages

* Incorrect:
Auto-Label Retention Policy are based on Sensitivity Labels and are used to mark documents and files as containing important information.

Box 2: A static scope
A static scope doesn't use queries and is limited in configuration in that it can apply to all instances for a specified location, or use inclusion and exclusions for specific instances for that location. These three choices are sometimes referred to as "org-wide", "includes", and "excludes" respectively.

Incorrect:
* Adaptive scope
An adaptive scope uses a query that you specify, so the membership isn't static but dynamic by running daily against the attributes or properties that you specify for the selected locations. You can use multiple adaptive scopes with a single policy.


Reference:

https://learn.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide



Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.

You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.

You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.

Solution: From the Microsoft Defender for Cloud Apps, you mark the application as Unsanctioned.

Does this meet the goal?

  1. Yes
  2. No

Answer(s): B

Explanation:

Sanctioning/unsanctioning an app
You can unsanction a specific risky app by clicking the three dots at the end of the row. Then select Unsanction. Unsanctioning an app doesn't block use, but enables you to more easily monitor its use with the Cloud Discovery filters. You can then notify users of the unsanctioned app and suggest an alternative safe app for their use, or generate a block script using the Defender for Cloud Apps APIs to block all unsanctioned apps.

Instead Solution: From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, you add the application to the unallowed apps list.

Unallowed apps is a list of applications that you create which will not be allowed to access a DLP protected file.


Reference:

https://learn.microsoft.com/en-us/defender-cloud-apps/governance-discovery#BKMK_SanctionApp
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwide



You have a Microsoft 365 E5 tenant.

You create a data loss prevention (DLP) policy.

You need to ensure that the policy protects documents in Microsoft Teams chat sessions.

Which location should you enable in the policy?

  1. OneDrive accounts
  2. Exchange email
  3. Teams chat and channel messages
  4. SharePoint sites

Answer(s): A



Page 35 of 76



Post your Comments and Discuss Microsoft SC-400 exam with other Community members:

Priest-Son commented on October 24, 2024
helpful questions also in other forums
UNITED STATES
upvote

Priest commented on April 22, 2024
In the dark depths of exam despair, I prayed for divine guidance. Behold! This website descended like manna from heaven. I studied their guide religiously, took the test, and lo and behold, God smiled upon me with an 87% score. Amen to that! ?? I hope you guys like the funny tone of my review. :-) Best of luck to all you guys.
UNITED KINGDOM
upvote

Namrata commented on July 15, 2023
helpful questions
Anonymous
upvote

Namrata commented on July 15, 2023
Helpful questions
Anonymous
upvote

Namrata commented on July 15, 2023
great questions
Anonymous
upvote