| Exam Code | SC-401 |
| Exam Name | Administering Information Security in Microsoft 365 |
| Questions | 223 Questions Answers With Explanation |
| Update Date | July 16,2026 |
| Price |
Was : |
Welcome to Certsleader, your ultimate source for top-quality SC-401 dumps tailored for Microsoft SC-401 exam. Our comprehensive resources are designed to help you excel in your exam preparations and achieve your certification goals. Whether you are a beginner looking to start a career in Microsoft or an experienced professional seeking to advance your skills, Certsleader has the right tools to support your journey.
At Certsleader, we are committed to your success. Our practice questions answers are designed to improve your knowledge and help you pass your exams on the first attempt with high scores. In the rare event that you do not succeed, we offer a full refund, taking responsibility for your satisfaction.
Join thousands of satisfied learners who have successfully passed their certification exams with Certsleader. Explore our study materials, download your PDF files, and take the first step towards a rewarding IT career today.
You have a Microsoft 365 subscription. You need to customize encrypted email for the subscription. The solution must meet the following requirements. Ensure that when an encrypted email is sent, the email includes the company logo. Minimize administrative effort. Which PowerShell cmdlet should you run?
A. Set-IRMConfiguration
B. Set-OMEConfiguration
C. Set-RMSTemplate
D. New-OMEConfiguration
You have a Microsoft 365 E5 subscription that contains a user named User1. You deploy Microsoft Purview Data Security Posture Management for AD (DSPM for AD). You need to ensure that User1 can verify the auditing status of the subscription. The solution must follow the principle of least privilege. To which role group should you add User1?
A. Insider Risk Management Analysts
B. Security Reader
C. Insider Risk Management Investigators
D. View-Only Organization Management for Microsoft Exchange Online
At the end of a project, you upload project documents to a Microsoft SharePoint Online library that contains many files. The following is a sample of the project document file names: • aei_AA989.docx • bd_WS098.docx • cei_DF112.docx • ebc_QQ454.docx • ecc_BB565.docx All documents that use this naming format must be labeled as Project Documents: You need to create an auto-apply retention label policy. What should you use to identify the files?
A. A retention label
B. A trainable classifier
C. A sensitive info type
You have a Microsoft 365 E5 subscription. You plan to deploy Microsoft Purview Data Security Posture Management for Al (DSPM for Al) to protect company data that contains Personally Identifiable Information (Pll) from being shared with third-party generative Al tools. You need to complete the prerequisites for the planned deployment. Which two Microsoft Purview solutions should you use? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
A. Data Loss Prevention
B. Communication Compliance
C. Audit
D. Insider Risk Management
E. Information Barriers
You have Microsoft 365 E5 subscription that uses data loss prevention (DLP) to protect sensitive information. You have a document named Form.docx. You plan to use PowerShell to create a document fingerprint based on Form.docx. You need to first connect to the subscription. Which cmdlet should you run?
A. Connect-IPPSSession
B. Connect-SPOService
C. Connect-ExchangeOnline
D. Connect-MgGraph
You have a Microsoft 565 subscription that contains 100 users and a Microsoft 365 group named Group1. All users have Windows 11 devices and use Microsoft SharePoint Online and Exchange Online. A sensitivity label named Label! is published as the default label for Group1. You add two sublabels named Sublabel1 and Sublabel2 lo Label1. You need to ensure that the settings in Sublabel 1 are applied by default to Group 1. What should you do?
A. Change the order of Sublabel!
B. Duplicate all the settings from Sublabel! to Label1.
C. Modify the policy of Label1.
D. Delete the policy of Label1 and publish Sublabel1.
You have a data loss prevention (DIP) policy that applies to the Devices location. The policy protects documents that contain United States passport numbers Users report that they cannot upload documents to a travel management website because of the pokey. You need to ensure that the users can upload the documents to the travel management website. The solution must prevent the protected content from being uploaded to other locations. Which Microsoft 365 Endpoint data loss prevention (Endpoint DIP) setting should you configure?
A. Service domains
B. Unallowed browsers
C. File path exclusions
D. Unallowed apps
You have a Microsoft 365 E5 subscription. Users access their mailbox by using the following apps. • Outlook for Microsoft 365 • Outlook on the web • Outlook Mobile fiOS. Android) You create a data loss prevention (DLP) policy named DLP1 that has the following settings: • Location; Exchange email • Status: On • User notifications: On • Notify users with a policy tip: Enabled Which apps display a policy tip when content is matched by using DIP1 ?
A. Outlook for Microsoft 365 only
B. Outlook on the web only
C. Outlook for Microsoft 365 and Outlook on the web only
D. Outlook for Microsoft 365 and Outlook Mobile (iOS. Android) only
E. Outlook for Microsoft 365. Outlook on the web, and Outlook Mobile (iOS. Android)
You receive an email that contains a list of words that will be used for a sensitive information type. You need to create a file that can be used as the source of a keyword dictionary. In which format should you save the list?
A. an XLSX file that contains one word in each cell of the first row
B. an XML file that contains a keyword tag for each word
C. an ACCDB database file that contains a table named Dictionary
D. a text file that has one word on each line
You have a Microsoft 365 E5 subscription. You need to prevent users from uploading data loss prevention (DLP)-protected documents to the following third-party websites: web1.contoso.com web2.cont The solution must minimize administrative effort. To what should you set the Service domains setting for Endpoint DLP?
A. *.contoso.com
B. contoso.com
C. web1.contoso.com and web2.contoso.com
D. web*.contoso.com
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have a Microsoft 365 subscription. You have a user named User1. Several users have full access to the mailbox of User1. Some email messages sent to User1 appear to have been read and deleted before the user viewed them. When you search the audit log in the Microsoft Purview portal to identify who signed in to the mailbox of User1, the results are blank. You need to ensure that you can view future sign-ins to the mailbox of User1. Solution: You run the Set-MailboxFolderPermission -Identity "User1" -User [email protected] -AccessRights Owner command. Does that meet the goal?
A. Yes
B. No
You have a Microsoft 365 ES subscription. A security manager receives an email message every time a data loss prevention (DIP) policy match occurs. You need to limit alert notifications to actionable DLP events. What should you do?
A. From the Microsoft Defender portal, apply a filter to the alerts.
B. From the Microsoft Purview portal, modify the Policy Tips settings of a DLP policy.
C. From the Microsoft Purview portal, modify the matched activities threshold of an alert policy.
D. From the Microsoft Purview portal, modify the User overrides settings of a DLP policy.
You have a Microsoft 365 E5 subscription. The subscription contains 500 Windows devices that are onboarded to Microsoft Purview. You need to prevent users from sharing sensitive information with third-party generative Al websites. Which Microsoft Purview solution should you use?
A. Information Protection
B. Information Barriers
C. Insider Risk Management
D. Data Loss Prevention
You have a Microsoft 365 E5 tenant that contains a user named User1. User1 is assigned the Compliance Administrator role. User1 cannot view the regular expression in the IP Address sensitive info type. You need to ensure that User! can view the regular expression. What should you do?
A. Assign Used to the Reviewer role group
B. Create a copy of the IP Address sensitive info type and instruct User1 to edit the copy.
C. Instruct User1 to use the Test function on the sensitive info type.
D. Assign User1 the Global Reader role.
You have a Microsoft 365 E5 subscription that contains a user named User1. You deploy Microsoft Purview insider risk management. You need ensure that insider risk management events related to User1 are visible only to specific users. What should you create?
A. a global exclusion
B. an indicator variant
C. a priority user group
D. a detection group
You have a Microsoft 365 E5 subscription that uses Microsoft Defender for Cloud Apps. You need to ensure that you receive an alert when a user uploads a document to a thirdparty cloud storage service. What should you use?
A. an activity policy
B. a sensitivity label
C. a file policy
D. an insider risk policy
You have a Microsoft 365 E5 subscription that contains a device named Device1. You need to enable Endpoint data loss prevention (Endpoint DLP) for Device1. What should you do first in the Microsoft Purview portal?
A. Turn on device onboarding.
B. Enable Microsoft Priva Privacy Risk Management.
C. Create a Microsoft Purview Information Barriers (IBs) segment.
D. Add a Microsoft Purview Information Protection scanner cluster.
E. Onboard Device1 to Microsoft Purview.
Nate: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You implement Microsoft 365 Endpoint data loss prevention (Endpoint DLP). You have computers that run Windows 11 and have Microsoft 365 Apps installed. The computers are joined to a Microsoft Entra tenant. You need to ensure that Endpoint DLP policies can protect content on the computers. Solution: You onboard the computers to Microsoft Defender for Endpoint. Does this meet the goal?
A. Yes
B. No
You have a sensitive information type based on a trainable classifier. You are unsatisfied with the result of the trainable classifier. You need to retrain the classifier. What should you use in the Microsoft Purview portal?
A. Content explorer from Data classification
B. Labels from Information protection
C. Labels from Information governance
D. Content search
You have a Microsoft 365 subscription. You create a retention policy and apply the policy to Exchange Online mailboxes. You need to ensure that the retention policy tags can be assigned to mailbox items as soon as possible. What should you do?
A. From Exchange Online PowerShell. run Start-ManagedFolderAssistant.
B. From the Microsoft Purview portal, create a data loss prevention (DLP) policy.
C. From the Microsoft Purview portal, create a label policy.
D. From Exchange Online PowerShell, run start -RetentionAutoTagLearning.