Microsoft SC-400 Exam Real Questions

You have a Microsoft OneDrive for Business folder that contains the files shown in the following table.

In Microsoft Cloud App Security, you create a file policy to automatically apply a classification.

What is the effect of applying the policy?

Introductory Info Case study -

This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.

To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.

At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.

To start the case study -

To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab, note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.

Overview -

Contoso, Ltd. is a consulting company that has a main office in Montreal and three branch offices in Seattle, Boston, and Johannesburg.

Existing Environment -

Microsoft 365 Environment -

Contoso has a Microsoft 365 E5 tenant. The tenant contains the administrative user accounts shown in the following table.

Users store data in the following locations:

SharePoint sites

OneDrive accounts

Exchange email

Exchange public folders

Teams chats

Teams channel messages

When users in the research department create documents, they must add a 10-digit project code to each document. Project codes that start with the digits 999 are confidential.

SharePoint Online Environment -

Contoso has four Microsoft SharePoint Online sites named Site1, Site2, Site3, and Site4.

Site2 contains the files shown in the following table.

Two users named User1 and User2 are assigned roles for Site2 as shown in the following table.

Site3 stores documents related to the company's projects. The documents are organized in a folder hierarchy based on the project.

Site4 has the following two retention policies applied:

Name: Site4RetentionPolicy1

- Locations to apply the policy: Site4

- Delete items older than: 2 years

- Delete content based on: When items were created

Name: Site4RetentionPolicy2

- Locations to apply the policy: Site4

- Retain items for a specific period: 4 years

- Start the retention period based on: When items were created

- At the end of the retention period: Do nothing

Problem Statements -

Management at Contoso is concerned about data leaks. On several occasions, confidential research department documents were leaked.

Requirements -

Planned Changes -

Contoso plans to create the following data loss prevention (DLP) policy:

Name: DLPpolicy1

Locations to apply the policy: Site2

Conditions:

- Content contains any of these sensitive info types: SWIFT Code

- Instance count: 2 to any

Actions: Restrict access to the content

Technical Requirements -

Contoso must meet the following technical requirements:

All administrative users must be able to review DLP reports.

Whenever possible, the principle of least privilege must be used.

For all users, all Microsoft 365 data must be retained for at least one year.

Confidential documents must be detected and protected by using Microsoft 365.

Site1 documents that include credit card numbers must be labeled automatically.

All administrative users must be able to create Microsoft 365 sensitivity labels.

After a project is complete, the documents in Site3 that relate to the project must be retained for 10 years. Question You need to meet the technical requirements for the creation of the sensitivity labels.

To which user or users must you grant the Sensitivity label administrator role?

You have a Microsoft 365 E5 subscription.

You plan to implement information barriers (IBs).

You need to create an IB segment named Segment1.

What should you use to define Segment1?

You need to provide a user with the ability to view data loss prevention (DLP) alerts in the Microsoft 365 compliance center. The solution must use the principle of least privilege.

Which role should you assign to the user?

Your company manufactures parts that are each assigned a unique 12-character alphanumeric serial number. Emails between the company and its customers reference the serial number.

You need to ensure that only Microsoft Exchange Online emails containing the serial numbers are retained for five years.

Which three objects should you create? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.