Valid SC-401 Dumps shared by PassLeader for Helping Passing SC-401 Exam! PassLeader now offer the newest SC-401 VCE dumps and SC-401 PDF dumps, the PassLeader SC-401 exam questions have been updated and ANSWERS have been corrected, get the newest PassLeader SC-401 dumps with VCE and PDF here: https://www.passleader.com/sc-401.html (176 Q&As Dumps –> 237 Q&As Dumps)
BTW, DOWNLOAD part of PassLeader SC-401 dumps from Cloud Storage: https://drive.google.com/drive/folders/13683SpK3sRCjLQqgxAcbbmi8fxAV-smt
NEW QUESTION 150
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP). You have computers that run Windows 11 and have Microsoft 365 Apps installed. The computers are joined to a Microsoft Entra tenant. You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You deploy the Microsoft Purview Information Protection client to the computers.
Does this meet the goal?
A. Yes
B. No
Answer: B
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started
https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints
NEW QUESTION 151
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP). You have computers that run Windows 11 and have Microsoft 365 Apps installed. The computers are joined to a Microsoft Entra tenant. You need to ensure that Endpoint DLP policies can protect content on the computers.
Solution: You onboard the computers to Microsoft Defender for Endpoint.
Does this meet the goal?
A. Yes
B. No
Answer: A
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started
https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints
NEW QUESTION 152
You have a Microsoft 365 subscription. You create a new trainable classifier. You need to train the classifier. Which source can you use to train the classifier?
A. an on-premises Microsoft SharePoint Server site
B. an Azure Files share
C. a Microsoft SharePoint Online site
D. an NFS file share
Answer: A
Explanation:
https://learn.microsoft.com/en-us/purview/classifier-get-started-with
NEW QUESTION 153
You have a sensitive information type based on a trainable classifier. You are unsatisfied with the result of the trainable classifier. You need to retrain the classifier. What should you use in the Microsoft Purview portal?
A. Content explorer from Data classification.
B. Labels from information protection.
C. Labels from information governance.
D. Content search.
Answer: A
NEW QUESTION 154
You have a Microsoft 365 tenant that is opt-in for trainable classifiers. You need to ensure that a user named User1 can create custom trainable classifiers. The solution must use the principle of least privilege. Which role should you assign to User1?
A. Security Administrator
B. Compliance Administrator
C. Global Administrator
D. Security Operator
Answer: B
Explanation:
In Microsoft 365, the minimum required role to create custom trainable classifiers is Compliance Administrator. While Global Administrator and Security Administrator roles may also have the necessary permissions, the Compliance Administrator role is the most directly aligned with this specific task.
https://learn.microsoft.com/en-us/purview/trainable-classifiers-get-started-with
NEW QUESTION 155
You have a Microsoft 365 E5 subscription. You create a sensitivity label named Label1 and publish Label1 to all users and groups. You have the following files in a SharePoint site:
– File1.doc
– File2.docx
– File3.xlsx
– File4.txt
You need to identify which files can have Label1 applied. Which files should you identify?
A. File2.docx only.
B. File2.docx and File3.xlsx only.
C. File1.doc, File2.docx, and File3.xlsx only.
D. File1.doc, File2.doc, File3.xlsx, and File4.txt.
Answer: B
Explanation:
In Microsoft 365, sensitivity labels can be applied to various file types including Word (.docx, .docm), Excel (.xlsx, .xlsm, .xlsb), PowerPoint (.pptx, .ppsx), and PDF documents. These labels can be applied to files stored in OneDrive and SharePoint, as well as attachments in Outlook emails.
https://support.microsoft.com/en-gb/office/apply-sensitivity-labels-to-your-files-2f96e7cd-d5a4-403b-8bd7-4cc636bae0f9
NEW QUESTION 156
You need to test Microsoft Purview Advanced Message Encryption capabilities for your company. The test must verify the following information:
– The acquired default template names.
– The encryption and decryption verification status.
Which PowerShell cmdlet should you run?
A. Test-OAuthConnectivity
B. Test-ClientAccessRule
C. Test-IRMConfiguration
D. Test-Mailflow
Answer: C
Explanation:
You can verify that your Microsoft 365 tenant is properly configured to use Microsoft Purview Message Encryption in Exchange Online PowerShell.
1. Using a work or school account that has sufficient permissions in your organization, such as Compliance Administrator, start a Windows PowerShell session and connect to Exchange Online. For instructions, see Connect to Exchange Online PowerShell.
2. Run the Get-IRMConfiguration cmdlet.
You should see a value of $True for the AzureRMSLicensingEnabled parameter, which indicates that Microsoft Purview Message Encryption is configured in your tenant. If it is not, use Set-IRMConfiguration to set the value of AzureRMSLicensingEnabled to $True to enable Microsoft Purview Message Encryption.
https://docs.microsoft.com/en-us/microsoft-365/compliance/set-up-new-message-encryption-capabilities
NEW QUESTION 157
At the end of a project, you upload project documents to a Microsoft SharePoint Online library that contains many files. The following is a sample of the project document file names:
– aei_AA989.docx
– bci_WS098.docx
– cei_DF112.docx
– ebc_QQ454.docx
– ecc_BB565.docx
All documents that use this naming format must be labeled as Project Documents. You need to create an auto-apply retention label policy. What should you use to identify the files?
A. A retention label.
B. A trainable classifier.
C. A sensitive info type.
Answer: C
NEW QUESTION 158
You are configuring a data loss prevention (DLP) policy to report when credit card data is found on a Microsoft Entra joined Windows device. You plan to use information from the policy to restrict the ability to copy the sensitive data to the clipboard. What should you configure in the policy advanced DLP rule?
A. user notifications
B. an action
C. user overrides
D. the incident report
Answer: B
NEW QUESTION 159
You create a retention label that has a retention period of seven years. You need to ensure that documents containing a credit card number are retained for seven years. Other documents must not be retained. What should you create?
A. a retention label policy of type auto-apply
B. a retention label policy of type publish
C. a retention policy that deletes files automatically
D. a retention policy that retains files automatically
Answer: A
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-retention-labels-automatically
NEW QUESTION 160
You have a Microsoft 365 E5 subscription. A security manager receives an email message every time a data loss prevention (DLP) policy match occurs. You need to limit alert notifications to actionable DLP events. What should you do?
A. From the Microsoft Purview portal, modify the Policy Tips settings of a DLP policy.
B. From the Microsoft Defender portal, apply a filter to the alerts.
C. From the Microsoft Purview portal, modify the matched activities threshold of an alert policy.
D. From the Microsoft Purview portal, modify the User overrides settings of a DLP policy.
Answer: C
Explanation:
https://docs.microsoft.com/en-us/office365/securitycompliance/alert-policies
NEW QUESTION 161
You have a Microsoft 365 E5 subscription that contains two users named User1 and User2. The subscription has a data loss prevention (DLP) policy named Policy1. User2 sends an outbound message that generates a false positive for Policy1. You need to ensure that User1 can download the message that generated the alert. The solution must follow the principle of least privilege. To which role group should you add User1?
A. Data Investigator
B. Security Operator
C. eDiscovery Manager
D. Global Reader
Answer: D
Explanation:
https://learn.microsoft.com/en-us/defender-office-365/scc-permissions
NEW QUESTION 162
You need to provide a user with the ability to view data loss prevention (DLP) alerts in the Microsoft Purview portal. The solution must use the principle of least privilege. Which role should you assign to the user?
A. Security Operator
B. Security Reader
C. Compliance Data Administrator
D. Compliance Administrator
Answer: B
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-configure-view-alerts-policies
NEW QUESTION 163
You have a Microsoft 365 E5 subscription. The subscription contains 500 Windows devices that are onboarded to Microsoft Purview. You need to prevent users from sharing sensitive information with third-party generative AI websites. Which Microsoft Purview solution should you use?
A. Data Loss Prevention
B. Insider Risk Management
C. Information Protection
D. Information Barriers
Answer: A
Explanation:
To prevent users from sharing sensitive information with third-party generative AI websites when Windows devices are onboarded to Microsoft Purview, you can configure Data Loss Prevention (DLP) policies. These policies allow you to restrict access to specific service domains and block file uploads or sensitive data sharing with those domains.
https://learn.microsoft.com/en-us/purview/dspm-for-ai-considerations
NEW QUESTION 164
You create a label that encrypts email data. Users report that they cannot use the label in Outlook on the web to protect the email messages they send. You need to ensure that the users can use the new label to protect their email. What should you do?
A. Create a label policy.
B. Wait six hours and ask the users to try again.
C. Create a new sensitive information type.
D. Modify the priority order of label policies.
Answer: A
Explanation:
Admin has to publish labels by creating label policy.
https://docs.microsoft.com/en-us/microsoft-365/compliance/sensitivity-labels#what-label-policies-can-do
NEW QUESTION 165
You have a Microsoft 365 subscription. You create a retention policy and apply the policy to Exchange Online mailboxes. You need to ensure that the retention policy tags can be assigned to mailbox items as soon as possible. What should you do?
A. From the Microsoft Purview portal, create a data loss prevention (DLP) policy.
B. From the Microsoft Purview portal, create a label policy.
C. From Exchange Online PowerShell, run Start-ManagedFolderAssistant.
D. From Exchange Online PowerShell, run Start-RetentionAutoTagLearning.
Answer: C
Explanation:
The Managed Folder Assistant (MFA) is an Exchange Mailbox Assistant that applies and processes the message retention settings that are configured in retention policies. As in Exchange 2013, the Managed Folder Assistant in Exchange 2016 and Exchange 2019 is a throttle-based assistant that’s always running. The MFA doesn’t need to be scheduled, and the system resources that are consumed by the MFA can be throttled. You can configure the Managed Folder Assistant to process all mailboxes on a Mailbox server within a certain time period that’s known as a work cycle. By default, the work cycle for the MFA is one day (all mailboxes on the server are processed by the MFA every day). You can also force the MFA to immediately process a specified mailbox.
https://learn.microsoft.com/en-us/exchange/policy-and-compliance/mrm/configure-managed-folder-assistant
NEW QUESTION 166
You have Microsoft 365 E5 tenant that uses Microsoft Teams and contains two users named User1 and User2. You create a data loss prevention (DLP) policy that is applied to the Teams chat and channel messages location for User1 and User2. Which Teams entities will have DLP protection?
A. 1:1/n chats and general channels only.
B. 1:1/n chats and private channels only.
C. 1:1/n chats, general channels, and private channels.
Answer: B
Explanation:
DLP protection is applied differently to Teams entities.
https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-microsoft-teams
NEW QUESTION 167
You have a Microsoft 365 E5 tenant. You create a data loss prevention (DLP) policy. You need to ensure that the policy protects documents in Microsoft Teams chat sessions. Which location should you enable in the policy?
A. SharePoint sites.
B. Teams chat and channel messages.
C. Exchange email.
D. OneDrive accounts.
Answer: D
NEW QUESTION 168
You have a Microsoft 365 E5 subscription. You create a data loss prevention (DLP) policy and select Use Notifications to inform your users and help educate them on the proper use of sensitive info. Which apps will show the policy tip?
A. Outlook on the web only.
B. Outlook Win32 only.
C. Outlook for iOS and Android only.
D. Outlook on the web and Outlook Win32 only.
E. Outlook Win32 and Outlook for iOS and Android only.
F. Outlook on the web, Outlook Win32, and Outlook for iOS and Android.
Answer: D
Explanation:
When you compose a new email in Outlook on the web and Outlook 2013 and later, you’ll see a policy tip if you add content that matches a rule in a DLP policy, and that rule uses policy tips. The policy tip appears at the top of the message, above the recipients, while the message is being composed.
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-policy-tips-reference
https://docs.microsoft.com/en-us/microsoft-365/compliance/use-notifications-and-policy-tips
NEW QUESTION 169
HotSpot
You have a Microsoft 365 E5 subscription. You have a Microsoft Purview Advanced Message Encryption branding template named OME1. You need to create a Microsoft Exchange Online mail flow rule to apply OME1 to email. How should you configure the rule? (To answer, select the appropriate options in the answer area.)
Answer:
Explanation:
Box 1: The Sender. Create an Exchange mail flow rule that applies your custom branding to encrypted emails sent from your online organization to external recipients. In Apply this rule if, select the condition The sender is located inside the organization and other conditions you want from the list of available conditions. For example, you might want to apply a particular branding template to:
– All encrypted emails sent from members of the finance department.
– Encrypted emails sent with a certain keyword such as “External” or “Partner”.
– Encrypted emails sent to a particular domain.
Box 2: Is External/internal.
Box 3: Modify the message security. From Do the following, select Modify the message security –> Apply custom branding to OME messages. Next, from the drop-down, select a branding template. Select add action if you want to specify another action, or select Save, and then select OK.
https://learn.microsoft.com/en-us/microsoft-365/compliance/add-your-organization-brand-to-encrypted-messages
NEW QUESTION 170
Drag and Drop
You have a Microsoft 365 tenant. A new regulatory requirement states that all documents containing a patent ID be labeled, retained for 10 years, and then deleted. The policy used to apply the retention settings must never be disabled or deleted by anyone. You need to implement the regulatory requirement. Which three actions should you perform in sequence? (To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.)
Answer:
Explanation:
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention
https://docs.microsoft.com/en-us/microsoft-365/compliance/retention-preservation-lock
NEW QUESTION 171
……
Get the newest PassLeader SC-401 VCE dumps here: https://www.passleader.com/sc-401.html (176 Q&As Dumps –> 237 Q&As Dumps)
And, DOWNLOAD the newest PassLeader SC-401 PDF dumps from Cloud Storage for free: https://drive.google.com/drive/folders/13683SpK3sRCjLQqgxAcbbmi8fxAV-smt