Regular Free Updates SC-400 Dumps Real Exam Questions Test Engine Mar 14, 2026 [Q77-Q100]

Share

Regular Free Updates SC-400 Dumps Real Exam Questions Test Engine Mar 14, 2026

Practice Test Questions Verified Answers As Experienced in the Actual Test!

NEW QUESTION # 77
You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site1.
You create an information barrier segment named Segment1.
You need to add Segment1 to Site1.
What should you do first?

  • A. Modify the permissions of Site1.
  • B. Run the Set-SPOSite cmdlet.
  • C. Create an information barrier policy.
  • D. Run the Set-SPOTenant cmdlet.

Answer: C


NEW QUESTION # 78
How many files in Site2 will be visible to User1 and User2 after you turn on DLPpolicy1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:

Reference:
https://social.technet.microsoft.com/wiki/contents/articles/36527.implement-data-loss-prevention-dlp-in-sharepo


NEW QUESTION # 79
You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Project1.
You need to recommend a record management solution that meets the following requirements:
* Retains files in Project1 for a minimum of 10 years
* Once Project1 is complete, retains files for an additional five years before the files are deleted Which two components should you include in the recommendation? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

  • A. an event type
  • B. a file plan
  • C. an adaptive scope
  • D. a data loss prevention (DLP) policy
  • E. a sensitivity label

Answer: B,E


NEW QUESTION # 80
You have a Microsoft E5 365 tenant.
You need to ensure that you can use sensitivity labels to declare regulatory records.
Which PowerShell cmdlet should you run, and which type of policy should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/declare-records?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/get-started-with-sensitivity-labels?view=o365-worldwide


NEW QUESTION # 81
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant that uses the following sensitivity labels:
* Confidential
* Internal
* External
The labels are published by using a label policy named Policy1. Users report that Microsoft Office for the wen apps do not display the Sensitivity button. The Sensitivity button appears in Microsoft
365 Apps that are installed locally.
You need to ensure that the users can apply sensitivity labels to content when they use Office for the web apps.
Solution: You modify the scope of the Confidential label.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: A


NEW QUESTION # 82
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a Microsoft 365 tenant and 500 computers that run Windows 10. The computers are onboarded to the Microsoft 365 compliance center.
You discover that a third-party application named Tailspin_scanner.exe accessed protected sensitive information on multiple computers. Tailspin_scanner.exe is installed locally on the computers.
You need to block Tailspin_scanner.exe from accessing sensitive documents without preventing the application from accessing other documents.
Solution: From the Cloud App Security portal, you mark the application as Unsanctioned.
Does this meet the goal?

  • A. No
  • B. Yes

Answer: A


NEW QUESTION # 83
Case Study 1 - Fabrikam, Inc
Overview
Fabrikam, Inc. is a consulting company that has a main office in Montreal and six branch offices in New York, Seattle, Miami, Houston, Los Angeles, and Vancouver.
Existing Environment
Cloud Environment
Fabrikam has a Microsoft 365 tenant that contains the following resources:
An Azure Active Directory (Azure AD) tenant that syncs to an on-premises Active Directory domain named corp.fabrikam.com Microsoft Cloud App Security connectors configured for all supported cloud applications used by the company Some users have company Dropbox accounts.
Compliance Configuration
Fabrikam has the following in the Microsoft 365 compliance center:
A data loss prevention (DLP) policy is configured. The policy displays a tooltip to users. Users can provide a business justification to override a DLP policy violation.
The Azure Information Protection unified labeling scanner is installed and configured.
A sensitivity label named Fabrikam Confidential is configured.
An existing third-party records management system is managed by the compliance department.
Human Resources (HR) Management System
The HR department has an Azure SQL database that contains employee information. Each employee has a unique 12-character alphanumeric ID. The database contains confidential employee attributes including payroll information, date of birth, and personal contact details.
On-Premises Environment
You have an on-premises file server that runs Windows Server 2019 and stores Microsoft Office documents in a shared folder named Data.
All end-user computers are joined to the corp.fabrikam.com domain and run a third-party antimalware application.
Business Processes
Sales Contracts
Users in the sales department receive draft sales contracts from customers by email. The sales contracts are written by the customers and are not in a standard format.
Employment Applications
Employment applications and resumes are received by HR department managers and stored in either mailboxes, Microsoft SharePoint Online sites, OneDrive for Business folders, or Microsoft Teams channels.
The employment application form is downloaded from SharePoint Online and a serial number is assigned to each application.
The resumes are written by the applicants and are in any format.
Requirements
HR Requirements
You need to create a DLP policy that will notify the HR department of a DLP policy violation if a document that contains confidential employee attributes is shared externally. The DLP policy must use an Exact Data Match (EDM) classification derived from a CSV export of the HR department database.
The HR department identifies the following requirements for handling employment applications:
Resumes must be identified automatically based on similarities to other resumes received in the past.
Employment applications and resumes must be deleted automatically two years after the applications are received.
Documents and emails that contain an application serial number must be identified automatically and marked as an employment application.
Sales Requirements
A sensitivity label named Sales Contract must be applied automatically to all draft and finalized sales contracts.
Compliance Requirements
Fabrikam identifies the following compliance requirements:
All DLP policies must be applied to computers that run Windows 10, with the least possible changes to the computers.
Users in the compliance department must view the justification provided when a user receives a tooltip notification for a DLP violation.
If a document that has the Fabrikam Confidential sensitivity label applied is uploaded to Dropbox, the file must be deleted automatically.
The Fabrikam Confidential sensitivity label must be applied to existing Microsoft Word documents in the Data shared folder that have a document footer containing the following string: Company use only.
Users must be able to manually select that email messages are sent encrypted. The encryption will use Office 365 Message Encryption (OME) v2. Any email containing an attachment that has the Fabrikam Confidential sensitivity label applied must be encrypted automatically by using OME.
Existing policies configured in the third-party records management system must be replaced by using Records management in the Microsoft 365 compliance center. The compliance department plans to export the existing policies, and then produce a CSV file that contains matching labels and policies that are compatible with records management in Microsoft 365.
The CSV file must be used to configure records management in Microsoft 365.
Executive Requirements
You must be able to restore all email received by Fabrikam executives for up to three years after an email is received, even if the email was deleted permanently.
You need to recommend a solution to configure the Microsoft 365 Records management settings by using the CSV file. The solution must meet the compliance requirements.
What should you recommend?

  • A. Use a PowerShell command that pipes the import csv cmdlet to the New-RetentionPolicy cmdlet.
  • B. Use EdmUploadAgent.exe to upload a hash of the CSV to a datastore.
  • C. Use a PowerShell command that pipes the import-csv cmdlet to the New-Label cmdlet.
  • D. From the Microsoft 365 compliance center, import the CSV file to a file plan.

Answer: D

Explanation:
The file plan template is a comma separated value (CSV) file. You download it from the file plan page of the records management solution.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/file-plan-manager?view=o365- worldwide#import-retention-labels-into-your-file-plan


NEW QUESTION # 84
You need to test Microsoft Office 365 Message Encryption (OME) capabilities for your company.
The test must verify the following information:
- The acquired default template names
- The encryption and decryption verification status
Which PowerShell cmdlet should you run?

  • A. Test-IRMConfiguration
  • B. Test-OAuthConnectivity
  • C. Test-ClientAccessRule
  • D. Test-Mailflow

Answer: A

Explanation:
You will get all required info by running the Test-IRMConfiguration cmdlet Results : Acquiring RMS Templates ...
- PASS: RMS Templates acquired. Templates available: Contoso - Confidential View Only, Contoso - Confidential, Do Not Forward.
Verifying encryption ...
- PASS: Encryption verified successfully.
Verifying decryption ...
- PASS: Decryption verified successfully.
Verifying IRM is enabled ...
- PASS: IRM verified successfully.
OVERALL RESULT: PASS


NEW QUESTION # 85
You have a Microsoft OneDrive for Business folder that contains the files shown in the following table.

In Microsoft Cloud App Security, you create a file policy to automatically apply a classification.
What is the effect of applying the policy?

  • A. The policy will apply to only the .docx and .txt files. The policy will classify the files within 24 hours.
  • B. The policy will apply to all the files. The policy will classify only 100 files daily.
  • C. The policy will apply to only the .docx and .txt files. The policy will classify the files immediately.
  • D. The policy will apply to only the .docx files. The policy will classify only 100 files daily.

Answer: D

Explanation:
Reference:
https://docs.microsoft.com/en-us/cloud-app-security/azip-integration


NEW QUESTION # 86
You create a retention policy as shown in the following exhibit.

A user named User1 deletes a file named File1.docx from a Microsoft SharePoint Online site named Site1.
A user named User2 deletes an email and empties the Deleted Items folder in Microsoft Outlook.
Where is the content retained one year after deletion? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide


NEW QUESTION # 87
You need to recommend a solution that meets the compliance requirements for Dropbox.
What should you recommend?

  • A. Create a DLP policy that applies to devices.
  • B. Edit an existing retention label that enforces the item deletion settings.
  • C. Create a DLP policy that applies to Cloud App Security.
  • D. Create a retention label that enforces the item deletion settings.

Answer: C

Explanation:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-use-policies-non-microsoft-cloud-apps?view=o365-worldwide


NEW QUESTION # 88
You have a Microsoft 365 E5 tenant.
Data loss prevention (DLP) policies are applied to Exchange email, SharePoint sites, and OneDrive accounts locations.
You need to use PowerShell to retrieve a summary of the DLP rule matches from the last seven days.
Which PowerShell module and cmdlet should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/powershell/module/exchange/get-dlpdetectionsreport?view=exchange-ps


NEW QUESTION # 89
Hotspot Question
At the end of a project you upload project documents to a Microsoft SharePoint Online library that contains many fifes. Files that have the following naming format must be labeled as Project Documents:
- aei_AA989.docx
- bci_WS098.docx
- cei_DF112.docx
- ebc_QQ454.docx
- ecc_BB565.docx
You plan to create an auto-apply retention label policy.
What should you use to identify the files, and which regular expression should you use? To answer, select the appropriate options in the answer area.

Answer:

Explanation:


NEW QUESTION # 90
You need to implement a solution to encrypt email. The solution must meet the compliance requirements.
What should you create in the Exchange admin center and the Microsoft 36.S compliance center? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/ome-sensitive-info-types?view=o365-worldwide


NEW QUESTION # 91
Hotspot Question
From the Microsoft Purview compliance portal, you review the activity details as shown in the following exhibit.

Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:


NEW QUESTION # 92
You plan to implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).
You need to identify which end user activities can be audited on the endpoints, and which activities can be restricted on the endpoints.
What should you identify for each activity? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide


NEW QUESTION # 93
You have a Microsoft 365 tenant.
All Microsoft OneDrive for Business content is retained roe five years.
A user named User1 left your company a year ago, after which the account of User 1 was deleted from Azure Active Directory (Azure AD) You need to recover an important file that was stored in the OneDrive of User1.
What should you use?

  • A. the Restore-SPODeletedSite PowerShell cmdlet
  • B. the OneDrive recycle bin
  • C. the Restore-ADObject PowerShell cmdlet
  • D. Deleted users in the Microsoft 365 admin center

Answer: B

Explanation:
Reference:
https://docs.microsoft.com/en-us/onedrive/set-retention
https://docs.microsoft.com/en-us/onedrive/retention-and-deletion


NEW QUESTION # 94
Hotspot Question
You have a Microsoft 365 E5 tenant that contains the users shown in the following table.

You have a retention policy that has the following configurations:
Name: Policy1
Retain items for a specific period: 5 years
Locations to apply the policy: Exchange email, SharePoint sites
You place a Preservation Lock on Policy1.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:
When a retention policy is locked:
No one, including the global admin, can disable the policy or delete it Locations can be added but not removed You can extend the retention period but not decrease it Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-preservation- lock?view=o365-worldwide


NEW QUESTION # 95
Your company manufactures parts that are each assigned a unique 12-character alphanumeric serial number. Emails between the company and its customers reference the serial number.
You need to ensure that only Microsoft Exchange Online emails containing the serial numbers are retained for five years.
Which three objects should you create? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. an auto-labeling policy
  • B. a retention polity
  • C. a sensitivity label
  • D. a data loss prevention (DLP) policy
  • E. a retention label
  • F. a trainable classifier
  • G. a sensitive info type

Answer: A,E,G

Explanation:
B: Sensitive information types are pattern-based classifiers. They detect sensitive information like social security, credit card, or bank account numbers to identify sensitive items. Custom sensitive information types use regular expressions, keywords, and keyword dictionaries.
E: One of the most powerful features of retention labels is the ability to apply them automatically to content that matches specified conditions.
F: You can apply retention labels to content automatically when that content contains:
- Specific types of sensitive information
- Specific keywords or searchable properties that match a query you create
- A match for trainable classifiers
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitive-information-type-learn- about?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label- automatically?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention?view=o365-worldwide


NEW QUESTION # 96
You have a Microsoft 365 subscription.
You are creating a retention policy named Retention1 as shown in the exhibit. (Click the Exhibit tab.)

You apply Retention1 to SharePoint sites and OneDrive accounts.
Use the drop-down menus to select the answer choice that completes each statement based on the information presented in the graphic.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Explanation:


NEW QUESTION # 97
You have the files shown in the following table.

You configure a retention policy as shown in the exhibit.

The start of the retention period is based on when items are created. The current date is January 01, 2021.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-policies-sharepoint?view=o365-worldwide


NEW QUESTION # 98
You have a Microsoft 365 E5 subscription.
You plan to use insider risk management to collect and investigate forensic evidence.
You need to enable forensic evidence capturing.
What should you do first?

  • A. Create priority user groups.
  • B. Configure the information protection scanner.
  • C. Enable Adaptive Protection.
  • D. Claim capacity.

Answer: A

Explanation:
Before you can enable forensic evidence capturing in insider risk management, you need to claim capacity for your organization. This ensures that adequate resources are reserved for evidence collection and investigation. After claiming capacity, you can proceed with configuring other aspects of insider risk management, such as creating policies and enabling evidence capture.


NEW QUESTION # 99
You have a Microsoft 365 subscription.
You need to be notified by email whenever an administrator starts an eDiscovery search.
What should you do from the Microsoft Purview compliance portal?

  • A. From Content search, create a new search.
  • B. From eDiscovery, create an eDiscovery case.
  • C. From Records management, create event type.
  • D. From Policies, create an alert policy.

Answer: D


NEW QUESTION # 100
......

Pass Microsoft SC-400 Exam in First Attempt Easily: https://www.examslabs.com/Microsoft/Microsoft-Certified-Information-Protection-Administrator-Associate/best-SC-400-exam-dumps.html

The Most Efficient SC-400 Pdf Dumps For Assured Success : https://drive.google.com/open?id=1jPfJe5xEIRZBtHyYvM-imppxgyX0TdEJ