Free Microsoft SC-400 Exam Questions

Become Microsoft Certified with updated SC-400 exam questions and correct answers

Page: 1 / 66

Total 326 Questions | Updated On: Mar 11, 2025

Add To Cart

Question 1

Your company has a Microsoft 365 tenant that uses a domain named contoso.com. You are implementing data loss prevention (DLP). The company's default browser is Microsoft Edge. During a recent audit, you discover that some users use Firefox and Google Chrome browsers to upload files labeled as Confidential to a third-party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint.com. Users are blocked from uploading the confidential files to the site from Microsoft Edge. You need to ensure that the users cannot upload files labeled as Confidential from Firefox and Google Chrome to any cloud services. Which two actions should you perform? Each correct answer presents part of the solution. (Choose two.) NOTE: Each correct selection is worth one point

A : From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add m365x076709.sharepoint.com as a blocked service domain.

B : Create a DLP policy that applies to the Devices location.

C : From the Microsoft 365 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google Chrome to the unallowed browsers list.

D : From the Microsoft 365 compliance center, onboard the devices.

E : From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an allowed service domain.

Answer: C,D

Question 2

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it as a result, these questions will not appear in the review screen. You are configuring a file policy m Microsoft Defender for Cloud Apps. You need to configure the policy to apply to all files. Alerts must be sent to every file owner who Is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected department. Solution: You use the Built-in DIP inspection method and send alerts to Microsoft Power Automate. Does this meet the goal?

A : Yes

B : No

Answer: B

Question 3

You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your company.

What should you do?

A : From the Exchange admin center, create a data loss prevention (DLP) policy.

B : From the Azure portal, create an Azure Active Directory (Azure AD) Identity Protection policy.

C : From the Microsoft 365 compliance center, create an insider risk policy.

D : From the Cloud App Security portal, create a file policy.

Answer: D

Question 4

You have a Microsoft 365 E5 subscription.

You need to identify personal data stored in the subscription and control the transfer of personal data between users and groups.

Which type of license should you acquire?

A : Microsoft Purview Audit (Premium)

B : Priva Privacy Risk Management

C : Microsoft 365 E5 Compliance

D : Priva Subject Rights Requests

Answer: B

Question 5

You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site1.

You need to implement a records management solution for the files stored on Site1. The solution must meet the following requirements:

• The files must be retained for seven years.

• Files older than seven years must be deleted automatically.

What should you use to manage the files?

A : a label policy

B : an adaptive scope

C : a file plan

D : a disposition review

Answer: C

Page: 1 / 66

Total 326 Questions | Updated On: Mar 11, 2025

Add To Cart