Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
MuleSoft
Okta
Palo Alto Networks
Salesforce
SAP
All Vendors
  1. Home
  2. Microsoft
  3. SC-400

Microsoft SC-400 Exam (page: 6)
Microsoft Information Protection Administrator
Updated on: 28-Jul-2025

Viewing Page 6 of 61
SC-400 PDF 387 Questions

Your company has a Microsoft 365 tenant that uses a domain named contoso.com.
The company uses Microsoft Office 365 Message Encryption (OME) to encrypt email sent to users in fabrikam.com.
A user named User1 erroneously sends an email to user2@fabrikam.com. You need to prevent user2@fabrikam.com from accessing the email.
What should you do?

  1. Run the Get-MessageTracecmdlet.
  2. Run the Set-OMEMessageRevocationcmdlet.
  3. Instruct User1 to delete the email from her Sent Items folder from Microsoft Outlook.
  4. Run the New-ComplianceSearchActioncmdlet.
  5. Instruct User1 to select Remove external access from Microsoft Outlook on the web.

Answer(s): B



You have a Microsoft 365 tenant.
You discover that email does NOT use Microsoft Office 365 Message Encryption (OME). You need to ensure that OME can be applied to email.
What should you do first?

  1. Enable Microsoft Defender for Office 365.
  2. Activate Azure Information Protection.
  3. Activate Azure Rights Management (Azure RMS).
  4. Create an Azure key vault.

Answer(s): C


Reference:

https://docs.microsoft.com/en-us/microsoft-365/compliance/set-up-new-message-encryption-capabilities?view=o365-worldwide



HOTSPOT (Drag and Drop is not supported)
You plan to implement a sensitive information type based on a trainable classifier. The sensitive information type will identify employment contracts.

You need to copy the required files to Microsoft SharePoint Online folders to train the classifier.
What should you use to seed content and test the classifier? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:


Reference:

https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-worldwide



HOTSPOT (Drag and Drop is not supported)
You plan to create a custom trainable classifier based on an organizational from template.
You need to identify which role-based access control (RBAC) role is required to create the trainable classifier and where to store the seed content for the trainable classifier. The solution must use the principle of least privilege.

What should you identify? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

  1. See Explanation section for answer.

Answer(s): A

Explanation:


Reference:

https://docs.microsoft.com/en-us/microsoft-365/compliance/classifier-get-started-with?view=o365-worldwide#prepare-for-a-custom-trainable-classifier



You have a Microsoft 365 tenant.
You create the following:

-A sensitivity label
-An auto-labeling policy

You need to ensure that the sensitivity label is applied to all the data discovered by the auto-labeling policy. What should you do first?

  1. Enable insider risk management.
  2. Create a trainable classifier.
  3. Run the Enable-TransportRulecmdlet.
  4. Run the policy in simulation mode.

Answer(s): D


Reference:

https://docs.microsoft.com/en-us/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-worldwide



Viewing Page 6 of 61



Share your comments for Microsoft SC-400 exam with other users:

Namrata 7/15/2023 2:22:00 AM

helpful questions
Anonymous