Verified SC-401 dumps Q&As - Pass Guarantee Exam Dumps Test Engine [2025]
SC-401 dumps and 203 unique questions
Microsoft SC-401 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
NEW QUESTION # 82
You have a Microsoft 365 E5 subscription that contains three DOCX files named File1, File2, and File3.
You create the sensitivity labels shown in the following table.
You apply the labels to the files as shown in the following table.
You ask Microsoft 365 Copilot to summarize the files, and you receive the results shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
NEW QUESTION # 83
You have a Microsoft 365 subscription.
You create and run a content search from the Microsoft Purview portal.
You need to download the results of the content search.
What should you obtain first?
- A. a pin
- B. a certificate
- C. a password
- D. an export key
Answer: D
Explanation:
When you run a Content Search in the Microsoft Purview compliance portal and want to download/export the search results, you must:
Select Export results in the Content Search tool.
Purview generates an Export key.
Use the eDiscovery Export Tool (ClickOnce application) to download the results.
The Export key is required to authenticate the export process.
Certificate # Not used in this process.
Password # Not required for export.
PIN # Not relevant here.
Export Key # # Mandatory to export search results.
# Reference:
Export Content Search results - Microsoft Learn
NEW QUESTION # 84
You have a Microsoft 365 E5 tenant that uses a domain named contoso.com.
A user named User 1 sends link based, branded emails that are encrypted by using Microsoft Purview Advanced Message Encryption to the recipients shown in the following table.
For which recipients Can User1 revoke the emails?
- A. Reciptent1 and Recipient^ only
- B. Reciptent1, Recipient2. Recipient3, and Recipient4
- C. Reclpient3 and Recipients only
- D. Recipient1 only
- E. Recipient4 only
Answer: C
NEW QUESTION # 85
You have a Microsoft 365 E5 subscription that contains a data loss prevention (DLP) policy named DLP1.
DLP1 contains the DLP rules shown in the table.
You need to ensure that when a document matches all the rules, users will see Tip 2.
What should you change?
- A. the priority setting of Rule3 and Rule4 to 0
- B. the priority setting of Rule2 to 0
- C. the If there's a match for this rule, stop processing additional DLP policies and rules setting for Rule3 to Enabled
- D. the priority setting of Rule2 to 2
Answer: B
NEW QUESTION # 86
You are creating a custom trainable classifier to Identify organizational product codes referenced in Microsoft
36S content. You identify 300 files to use as seed content When? should you store the seed content?
- A. a Microsoft OneDrive folder
- B. an Azure file share
- C. a Microsoft Exchange Online shared mailbox
- D. a Microsoft SharePoint Online folder
Answer: D
NEW QUESTION # 87
You have the files shown in the following table.
You configure a retention policy as shown >n the exhibit. (Click the Exhibit lab.) The start of the retention period is based on when items are created. The current date is January 01. 207S.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
Answer:
Explanation:
Explanation:
File1
Location: SharePoint Online.
Created: Dec 28, 2015.
As of Jan 1, 2025 # File is 9+ years old.
If retention is (example: 7 years), then the retention period has expired, and the file will be deleted once the policy is turned on.
# answer: Yes
File2
Location: OneDrive.
Created: Jan 2, 2015.
As of Jan 1, 2025 # File is 10 years old.
Retention period (7 years, for example) has expired # File will be deleted once the policy is turned on.
# answer: Yes
File3
Location: Exchange Online public folder.
Created: May 1, 2010.
As of Jan 1, 2025 # File is 15 years old.
But Exchange public folders are not supported locations for Microsoft 365 retention policies.
Therefore, policy does not apply, and file will not be deleted.
answer: No
NEW QUESTION # 88
You have a Microsoft 365 ES subscription.
You have a Microsoft SharePoint Online document library that contains Microsoft Word and Excel documents. The documents contain the following types of information:
* Credit card numbers
* Physical addresses in the UK
* National hearth service numbers from the UK
* Sensitive projects that contain the following words: Project Tailspin. Project Contoso, and Project falcon You have email messages m Microsoft Exchange Online that contain the following information types:
* Credit card numbers
* User sign-in credentials
* National health service numbers from the UK
You plan to use sensitive information types (SITs) for compliance policies.
What is the minimum number of SITs required to classify all the information types?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: D
NEW QUESTION # 89
You have a Microsoft 36S subscription that contains the users shown in the following table.
You create the data loss prevention (DLP) policies shown in the following table.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
NEW QUESTION # 90
HOTSPOT
You have a Microsoft SharePoint Online site that contains the following files.
Users are assigned roles for the site as shown in the following table.
Which files can User1 and User2 open? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
Let's break it down:
File1.docx # DLP action = None
No DLP restrictions, so it is fully accessible to both User1 (owner) and User2 (member).
File2.docx # DLP action = Matched by DLP
"Matched" means the DLP policy detected sensitive content but has not blocked access. Instead, it may generate an alert or policy tip.
Both User1 and User2 can still open this file.
File3.docx # DLP action = Blocked by DLP
"Blocked" means the DLP policy actively restricts access or sharing of the file.
User2 (member) cannot open this file.
However, User1 (site owner) can open it because site collection admins and owners always retain full control over content, even if a DLP rule applies.
Ref: Microsoft Purview DLP policy tips and enforcement
# DLP policies do not prevent SharePoint/OneDrive site collection admins (owners) from accessing content.
# Final Answer Table:
User1 (Site Owner): File1.docx, File2.docx, File3.docx
User2 (Site Member): File1.docx, File2.docx
NEW QUESTION # 91
You implement Microsoft 365 Endpoint data loss prevention (Endpoint DIP).
You have computers that run Windows 11 and have Microsoft 365 Apps instated. The computers are joined to a Microsoft Entra tenant You need to ensure that Endpoint DIP policies can protect content on the computers.
Solution: You deploy the Endpoint DLP configuration package to the computers.
Does this meet the goal?
- A. No
- B. Yes
Answer: B
NEW QUESTION # 92
Your company has offices in multiple countries.
The company has a Microsoft 365 E5 subscription that uses Microsoft Purview insider risk management.
You plan to perform the following actions:
*In a new country, open an office named Office1.
*Create a new user named User1.
*Deploy insider risk management to Office1.
*Add User1 to the Insider Risk Management Admins role group.
You need to ensure that User1 can perform insider risk management tasks for only the users and the devices in Office1.
What should you create first?
- A. a dynamic user group
- B. a management group
- C. a dynamic device group
- D. an administrative unit
Answer: D
NEW QUESTION # 93
You have a Microsoft 565 subscription that contains 100 users and a Microsoft 365 group named Group1. All users have Windows 11 devices and use Microsoft SharePoint Online and Exchange Online. A sensitivity label named Label! is published as the default label for Group1. You add two sublabels named Sublabel1 and Sublabel2 lo Label1. You need to ensure that the settings in Sublabel 1 are applied by default to Group 1.
What should you do?
- A. Change the order of Sublabel!
- B. Delete the policy of Label1 and publish Sublabel1.
- C. Duplicate all the settings from Sublabel! to Label1.
- D. Modify the policy of Label1.
Answer: D
NEW QUESTION # 94
You have a Microsoft 365 £5 subscription.
You need to prevent the sharing of sensitive information in Microsoft Teams.
Which entities can you protect by applying a data loss prevention (DLP) policy to each resource? To answer, drag the appropriate activities to the correct entity. Each activity may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE; Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
NEW QUESTION # 95
You have a Microsoft 365 alert named Alert2 as shown in the following exhibit.
You need to manage the status of Alert? To which status can you change Alette?
- A. Active or Investigating only
- B. Dismissed only
- C. The status cannot be changed.
- D. Investigating only
- E. Investigating. Active, or Dismissed
Answer: E
Explanation:
Step 1 - Scenario
The alert in the exhibit is named Alert2.
Current status = Resolved.
The task is to identify which statuses you can change the alert to.
Step 2 - Microsoft 365 Alert Lifecycle
In Microsoft 365 compliance and security alerts, an alert can move between multiple statuses depending on investigation and remediation. The available statuses are:
Active - The alert is new and not yet acted upon.
Investigating - The alert is under review.
Resolved - The alert has been addressed.
Dismissed - The alert is ignored or deemed not relevant.
Step 3 - Status changes from "Resolved"
If an alert is in the Resolved state, administrators can reopen or reclassify it. According to Microsoft documentation, from Resolved, you can change it to:
Active
Investigating
Dismissed
This allows flexibility in continuing investigations if needed or dismissing false positives.
Step 4 - Microsoft Reference
From Microsoft Docs: "You can change the status of an alert between Active, Investigating, Resolved, and Dismissed to reflect its current stage in the triage process." Reference: Manage alerts in the Microsoft 365 security and compliance center
NEW QUESTION # 96
How many files in Site2 can User1 and User2 access after you turn on DLPpolicy1? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
NEW QUESTION # 97
You have a Microsoft 365 alert named Alert2 as shown in the following exhibit.
You need to manage the status of Alert? To which status can you change Alette?
- A. Dismissed only
- B. The status cannot be changed.
- C. Investigating only
- D. Active or Investigating only
- E. Investigating. Active, or Dismissed
Answer: D
NEW QUESTION # 98
You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint Online site named Site! and the data loss prevention (DLP) policies shown in the following table.
The DLP rules are configured as shown In the following table.
All the policies are assigned to Site1.
You need to ensure that if a user uploads a document to Site1 that matches all the rules, the user will be shown the Tip 2 policy tip. What should you do?
- A. Change the priority of DLP2 to 3.
- B. Prevent additional processing of the policies if there is a match for Rule2
- C. Change the priority of DLP2 to 0.
- D. Enable additional processing of the policies if there is a match for Rule1.
Answer: B
NEW QUESTION # 99
You have a Microsoft 365 E5 subscription that uses Microsoft Purview.
You are creating an exact data match (EDM) classifier named EDM1.
For EDM1, you upload a schema file that contains the fields shown in the following table.
What is the maximum number of primary elements that EDM1 can have?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: C
Explanation:
In Microsoft Purview Exact Data Match (EDM) classifiers, a primary element is a unique, identifying field used for data matching. EDM allows up to two primary elements per schema.
From the provided table, the Match mode indicates how data is analyzed:
# PP (EU Passport Number) # Likely a primary element because it's unique.
# Name (All Full Names) # Typically not a primary element as names are common.
# DateOfBirth (Single-token) # Usually a secondary element, not unique.
# AccountNumber (Multi-token) # Can be a primary element, as it's a unique identifier.
# Since EDM supports a maximum of two primary elements, the correct answer is 2.
NEW QUESTION # 100
DRAG DROP
You have a Microsoft 365 E5 subscription that has data loss prevention (DLP) implemented.
You need to create a custom sensitive info type. The solution must meet the following requirements:
# Match product serial numbers that contain a 10-character alphanumeric string.
# Ensure that the abbreviation of SN appears within six characters of each product serial number.
# Exclude a test serial number of 1111111111 from a match.
Which pattern settings should you configure for each requirement? To answer, drag the appropriate settings to the correct requirements. Each setting may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Answer:
Explanation:
Explanation:
NEW QUESTION # 101
......
SC-401 Dumps for Pass Guaranteed - Pass SC-401 Exam: https://actualtests.trainingquiz.com/SC-401-training-materials.html

