1. Home
  2. Microsoft
  3. SC-400

Microsoft Information Protection Administrator

Exam Details

  • Exam Code
    :SC-400
  • Exam Name
    :Microsoft Information Protection Administrator
  • Certification
    :Microsoft Certifications
  • Vendor
    :Microsoft
  • Total Questions
    :362 Q&As
  • Last Updated
    :Mar 24, 2025

Microsoft Microsoft Certifications SC-400 Questions & Answers

  • Question 61:

    You plan to import a file plan to the Microsoft 365 compliance center.

    Which object type can you create by importing a records management file plan?

    A. retention label policies

    B. sensitive info types

    C. sensitivity labels

    D. retention labels

  • Question 62:

    After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

    You are configuring a file policy in Microsoft Cloud App Security.

    You need to configure the policy to apply to all files. Alerts must be sent to every file owner who is affected by the policy. The policy must scan for credit card numbers, and alerts must be sent to the Microsoft Teams site of the affected

    department.

    Solution: You use the Built-in DLP inspection method and send alerts to Microsoft Power Automate.

    Does this meet the goal?

    A. Yes

    B. No

  • Question 63:

    Your company manufactures parts that are each assigned a unique 12-character alphanumeric serial number. Emails between the company and its customers reference the serial number.

    You need to ensure that only Microsoft Exchange Online emails containing the serial numbers are retained for five years.

    Which three objects should you create? Each correct answer presents part of the solution.

    NOTE: Each correct selection is worth one point.

    A. a sensitivity label

    B. a retention policy

    C. an auto-labeling policy

    D. a trainable classifier

    E. a sensitive info type

    F. a retention label

    G. a data loss prevention (DLP) policy

  • Question 64:

    You have a Microsoft 365 tenant that uses the following sensitivity labels:

    1.

    Confidential

    2.

    Internal

    3.

    External

    The labels are published by using a label policy named Policy1.

    Users report that Microsoft Office for the wen apps do not display the Sensitivity button. The Sensitivity button appears in Microsoft 365 Apps that are installed locally.

    You need to ensure that the users can apply sensitivity labels to content when they use Office for the web apps.

    Solution: You run the Execute-AzureAdLabelSync cmdlet.

    Does this meet the goal?

    A. Yes

    B. No

  • Question 65:

    Your company has a Microsoft 365 tenant that uses a domain named Contoso.com.

    You are implementing data loss prevention (DIP).

    The company's default browser in Microsoft Edge.

    During a recent audit, you discover that some user use Firefox and Google Chromo browsers to upload files labeled as Confidential to a third party Microsoft SharePoint Online site that has a URL of https://m365x076709.sharepoint .

    Uses are blocked from uploading the confidential files to the site from Microsoft Edge.

    You need to ensure that the users cannot upload files labels as Confidential from Firefox and Google Chrome to any cloud services.

    NOTE: Each correct selection is worth one point.

    A. From the Microsoft 3G5 Endpoint data loss prevention (Endpoint DLP) settings, add Firefox and Google Chrome to the unallowed browsers list.

    B. Create a DIP policy that applies to the Devices location.

    C. From the Microsoft 365 Endpoint data loss prevention (Endpoint) DLP settings, add contoso.com as an allowed service domain.

    D. From the Microsoft 365 compliance center, onboard the dcvu.es.

    E. From the Microsoft J6b Endpoint data loss prevention (Endpoint) DLP settings, add: m36Sx0767W-sharepomt.com as a blacked service domain.

  • Question 66:

    You receive an email that contains a list of words that will be used few a sensitive information type.

    You need to create a file that can be used as the source of a keyword dictionary.

    In which format should you save the list?

    A. an XLSX file that contains one word in each cell of the first row

    B. a ISV file that contains words separated by tabs

    C. a JSON file that that an element tor each word

    D. a text file that has one word on each line

  • Question 67:

    You have a Microsoft 365 tenant that uses the following sensitivity labels:

    1.

    Confidential

    2.

    Internal

    3.

    External

    The labels are published by using a label policy named Policy1.

    Users report that Microsoft Office for the wen apps do not display the Sensitivity button. The Sensitivity button appears in Microsoft 365 Apps that are installed locally.

    You need to ensure that the users can apply sensitivity labels to content when they use Office for the web apps.

    Solution: You modify the scope of the Confidential label.

    Does this meet the goal?

    A. Yes

    B. No

  • Question 68:

    Your company has a Microsoft 365 tenant that uses a domain named contoso.

    The company uses Microsoft Office 365 Message Encryption (OMI ) to encrypt email sent to users in fabrikam.com.

    A user named User1 erroneously sends an email to user2@fabrikam

    You need to disable [email protected] from accessing the email.

    What should you do?

    A. Run the New-ComplianceSearchAction cmdlet.

    B. Instruct User1 to delete the email from her Sent Items folder from Microsoft Outlook.

    C. Run the Get-MessageTrace Cmdlet.

    D. Run the Set-OMEMessageRevocation Cmdlet.

    E. instruct User1 to select Remove external access from Microsoft Outlook on the web.

  • Question 69:

    You are planning a data loss prevention (DLP) solution that will apply to computers that run Windows 10.

    You need to ensure that when users attempt to copy a file that contains sensitive information to a USB storage device, the following requirements are met:

    1.

    If the users are members of a group named Group1, the users must be allowed to copy the file, and an event must be recorded in the audit log.

    2.

    All other users must be blocked from copying the file. What should you create?

    A. one DLP policy that contains one DLP rule

    B. two DLP policies that each contains on DLP rule

    C. one DLP policy that contains two DLP rules

  • Question 70:

    You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP).

    You have computers that run Windows 10 and have Microsoft 365 Apps installed. The computers are joined to Azure Active Directory (Azure AD).

    You need to ensure that Endpoint DLP policies can protect content on the computers.

    Solution: You onboard the computers to Microsoft Defender fur Endpoint.

    Does this meet the goal?

    A. Yes

    B. No

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Microsoft exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SC-400 exam preparations and Microsoft certification application, do not hesitate to visit our Vcedump.com to find your solutions here.