ExamGecko
Home / Microsoft / SC-401 / List of questions
Ask Question

Microsoft SC-401 Practice Test - Questions Answers

Add to Whishlist

List of questions

Question 1

Report Export Collapse

HOTSPOT

You have a Microsoft 365 E5 subscription.

You need to implement a compliance solution that meets the following requirements:

Captures clips of key security-related user activities, such as the exfiltration of sensitive company data.

Integrates data loss prevention (DLP) capabilities with insider risk management.

What should you use for each requirement? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-401 image Question 1 142137 03192025063839000
Correct answer: Microsoft SC-401 image answer Question 1 142137 03192025063839000
asked 19/03/2025
Narmada Balaji
35 questions

Question 2

Report Export Collapse

You have a Microsoft 365 subscription.

Users have devices that run Windows 11.

You plan to create a Microsoft Purview insider risk management policy that will detect when a user performs the following actions:

Deletes files that contain a sensitive information type (SIT) from their device

Copies files that contain a SIT to a USB drive

Prints files that contain a SIT

You need to prepare the environment to support the policy.

What should you do?

Configure the physical badging connector.

Configure the physical badging connector.

Configure the HR data connector.

Configure the HR data connector.

Create a Microsoft Purview communication compliance policy.

Create a Microsoft Purview communication compliance policy.

Onboard the devices to Microsoft Purview.

Onboard the devices to Microsoft Purview.

Suggested answer: D
Explanation:

To ensure that Microsoft Purview Insider Risk Management can detect file deletions, USB copies, and print actions on sensitive information, you must onboard the Windows 11 devices to Microsoft Purview.

Device onboarding enables endpoint activity monitoring, allowing Purview to track and log user activities such as file deletions, USB transfers, and printing of sensitive files. Once onboarded, the Insider Risk Management policy can analyze these activities and generate risk alerts when sensitive information types (SITs) are involved.

asked 19/03/2025
Raymond LaFrance
58 questions

Question 3

Report Export Collapse

You have a Microsoft 365 E5 subscription that contains a Microsoft Teams channel named Channel1. Channel1 contains research and development documents.

You plan to implement Microsoft 365 Copilot for the subscription.

You need to prevent the contents of files stored in Channel1 from being included in answers generated by Copilot and shown to unauthorized users.

What should you use?

data loss prevention (DLP)

data loss prevention (DLP)

Microsoft Purview insider risk management

Microsoft Purview insider risk management

Microsoft Purview Information Barriers

Microsoft Purview Information Barriers

sensitivity labels

sensitivity labels

Suggested answer: D
Explanation:

To prevent the contents of files stored in Channel1 from being included in Microsoft 365 Copilot responses and ensure unauthorized users cannot access them, you should use Microsoft Purview Sensitivity Labels.

Sensitivity labels allow you to classify, protect, and restrict access to sensitive files. You can configure label-based encryption and access control policies to ensure that only authorized users can access or interact with the files in Channel1. Microsoft 365 Copilot respects sensitivity labels, meaning if a file is labeled with restricted permissions, Copilot will not use it in generated responses for unauthorized users.

asked 19/03/2025
Stephen DeWhite
38 questions

Question 4

Report Export Collapse

DRAG DROP

You need to meet the technical requirements for the Site1 documents.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.


Microsoft SC-401 image Question 4 142140 03192025063839000
Correct answer: Microsoft SC-401 image answer Question 4 142140 03192025063839000
asked 19/03/2025
yusuf sivrikaya
49 questions

Question 5

Report Export Collapse

You need to meet the technical requirements for the creation of the sensitivity labels.

To which user or users must you assign the Sensitivity Label Administrator role?

Admin1 only

Admin1 only

Admin1 and Admin4 only

Admin1 and Admin4 only

Admin1 and Admin5 only

Admin1 and Admin5 only

Admin1, Admin2, and Admin3 only

Admin1, Admin2, and Admin3 only

Admin1, Admin2, Admin4, and Admin5 only

Admin1, Admin2, Admin4, and Admin5 only

Suggested answer: D
Explanation:

To meet the requirement that all administrative users must be able to create Microsoft 365 sensitivity labels, we need to assign the Sensitivity Label Administrator role to the correct users.

Sensitivity Label Administrator Role Responsibilities

This role allows users to:

Create and manage sensitivity labels in Microsoft Purview.

Publish and configure auto-labeling policies.

Modify label encryption and content marking settings.

Review of Admin Roles from the Table:

Microsoft SC-401 image Question 5 explanation 63878006318870125574353

Users that must be assigned the Sensitivity Label Administrator role:

Admin2 (Compliance Data Administrator)

Admin3 (Compliance Administrator)

Admin1 (Global Reader) (should be assigned this role to fulfill the requirement that all admins can create labels).

asked 19/03/2025
justen layne
44 questions

Question 6

Report Export Collapse

HOTSPOT

You need to meet the technical requirements for the confidential documents.

What should you create first, and what should you use for the detection method? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-401 image Question 6 142142 03192025063839000
Correct answer: Microsoft SC-401 image answer Question 6 142142 03192025063839000
asked 19/03/2025
Luigi Trigilio
46 questions

Question 7

Report Export Collapse

HOTSPOT

How many files in Site2 can User1 and User2 access after you turn on DLPpolicy1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.


Microsoft SC-401 image Question 7 142143 03192025063839000
Correct answer: Microsoft SC-401 image answer Question 7 142143 03192025063839000
asked 19/03/2025
Simon Tam
42 questions

Question 8

Report Export Collapse

HOTSPOT

You are reviewing policies for the SharePoint Online environment.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.


Microsoft SC-401 image Question 8 142144 03192025063839000
Correct answer: Microsoft SC-401 image answer Question 8 142144 03192025063839000
asked 19/03/2025
luis lozano
42 questions

Question 9

Report Export Collapse

You need to meet the retention requirement for the users' Microsoft 365 data.

What is the minimum number of retention policies required to achieve the goal?

1

1

2

2

3

3

4

4

6

6

Suggested answer: B
Explanation:

The requirement states that all Microsoft 365 data for users must be retained for at least one year. In Microsoft 365, retention policies must be configured for each type of data storage.

Step 1: Identifying Where Data is Stored

From the case study, users store data in the following locations:

SharePoint Online sites

OneDrive accounts

Exchange email

Exchange public folders

Teams chats

Teams channel messages

Since these locations fall under two broad categories:

Microsoft Exchange data (Emails, Public folders)

SharePoint, OneDrive, and Teams data

Step 2: Required Retention Policies

1. A single retention policy can cover:

SharePoint Online

OneDrive

Microsoft Teams

2. A second retention policy is required for:

Exchange (Emails & Public Folders)

Thus, the minimum number of retention policies required to meet the requirement is 2.

Microsoft 365 retention policies can be applied broadly across multiple services with just two policies:

One for Exchange & Public Folders

One for SharePoint, OneDrive, and Teams

There's no need for separate policies for each individual workload unless different retention durations are required, which is not stated in the requirement.

asked 19/03/2025
Edgar Santiago
50 questions

Question 10

Report Export Collapse

You have a Microsoft 365 E5 subscription.

You need to create a sensitivity label named Label1. The solution must ensure that users can use Microsoft 365 Copilot to summarize files that have Label1 applied.

Which permission should you select for Label1?

Export content(EXPORT)

Export content(EXPORT)

Copy and extract content(EXTRACT)

Copy and extract content(EXTRACT)

Edit content(DOCEDIT)

Edit content(DOCEDIT)

View rights(VIEW)

View rights(VIEW)

Suggested answer: B
Explanation:

To allow Microsoft 365 Copilot to summarize files that have Label1 applied, the label must grant permission to extract content from the document. The correct permission for this is Copy and extract content (EXTRACT).

Microsoft 365 Copilot requires access to read and process content in documents to generate summaries. The EXTRACT permission allows users (and AI tools like Copilot) to copy and extract content for processing while still maintaining the protection applied by the sensitivity label.

asked 19/03/2025
Ahsan Ilyas
36 questions
Total 72 questions
Go to page: of 8
Search

Related questions