Administering Information Security in Microsoft 365 v1.0

HOTSPOT
-

You have a Microsoft 365 E5 subscription that contains the sensitive information types (SITs) shown in the following table.



A user sends the email messages shown in the following table.



For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

You have a Microsoft 365 E5 subscription that contains two users named User1 and User2.

On January 1, you create the sensitivity label shown in the following table.



On January 2, you publish Label1 to User.

On January 3, User1 creates a Microsoft Word document named Doc1 and applies Label1 to the document.

On January 4, User2 edits Doc1.

On January 15, you increase the content expiry period for Label1 to 28 days.

When will access to Doc1 expire for User2?

HOTSPOT
-

You have a Microsoft 365 E5 tenant that contains a trainable classifier named Classifier1.
You need to increase the accuracy of Classifier1. The solution must use the principle of least privilege.

Which feature should you use and to which role group should you be added? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

HOTSPOT
-

You have a Microsoft 365 E5 subscription that contains the resources shown in the following table.



The subscription contains a Windows 11 device named Device1 and has the Microsoft Purview Information Protection client installed. Device1 contains the resources shown in the following table.



You publish a sensitivity label named Label1 to User1 and Group1.

For each of the following statements, select Yes if the statement is true, Otherwise, select No.

NOTE: Each correct selection is worth one point.

You have a Microsoft 365 E5 tenant that uses a domain named contoso.com.

A user named User1 sends link-based, branded emails that are encrypted by using Microsoft Purview Advanced Message Encryption to the recipients shown in the following table.



For which recipients can User1 revoke the emails?

HOTSPOT
-

You have a Microsoft 365 E5 subscription that contains the data loss prevention (DLP) policies shown in the following table.



You have a custom employee information form named Template1.docx.

You plan to create a sensitive info type named Sensitive1 that will use the document fingerprint from Template1.docx.

What should you use to create Sensitive1, and in which DLP policies can you use Sensitive1? To answer, select the appropriate options in the answer area.

HOTSPOT
-

You have a Microsoft 365 tenant that uses Microsoft Teams.

You create a data loss prevention (DLP) policy to prevent Microsoft Teams users from sharing sensitive information,

You need to identify which locations must be selected to meet the following requirements:

• Documents that contain sensitive information must not be shared inappropriately in Microsoft Teams.
• If a user attempts to share sensitive information during a Microsoft Teams chat session, the message must be deleted immediately.

Which three locations should you select? To answer, select the appropriate locations in the answer area.

NOTE: Each correct selection is worth one point.

You need to be alerted when users share sensitive documents from Microsoft OneDrive to any users outside your company.

What should you do?

HOTSPOT
-

You have a Microsoft 365 subscription.

You identify the following data loss prevention (DLP) requirements:

• Send notifications to users if they attempt to send attachments that contain an EU Social Security Number (SSN) or Equivalent ID.
• Prevent any email messages that contain credit card numbers from being sent outside your organization.
• Block the external sharing of Microsoft OneDrive content that contains EU passport numbers.
• Send administrators email alerts if any rule matches occur.

What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

You have a Microsoft OneDrive folder that contains the files shown in the following table.



In Microsoft Defender for Cloud Apps, you create a file policy to automatically apply a classification.

What is the effect of applying the policy?

You have a Microsoft 365 E5 subscription.

You plan to deploy Microsoft Purview Data Security Posture Management for AI (OSPM for AI) to protect company data that contains Personally Identifiable Information (PII) from being shared with third-party generative AI tools.

You need to complete the prerequisites for the planned deployment.

Which two Microsoft Purview solutions should you use? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

You have a Microsoft 365 E5 subscription that contains four users named User1, User2, User3, and User4 and a file named File1.docx. File1 has a sensitivity label applied. The label is configured as shown in the following table.



Which users can summarize File1 by using Microsoft 365 Copilot?

You have a Microsoft 365 E5 subscription. The subscription contains a user named User1 and the sensitivity labels shown in the following table.



You publish the labels to User1.

The subscription contains the files shown in the following table.



Which files can Microsoft 365 Copilot summarize for User1?

You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Cloud Apps.

You need to ensure that you receive an alert when a user uploads a document to a third-party cloud storage service.

What should you use?