ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 3 question 49 discussion

Actual exam question from Microsoft's MS-500
Question #: 49
Topic #: 3
[All MS-500 Questions]

You have a Microsoft 365 tenant that uses Azure Information Protection to encrypt sensitive content.

You plan to implement Microsoft Defender for Cloud Apps to inspect protected files that are uploaded to Microsoft OneDrive for Business.

You need to ensure that all Azure Information Protection-protected files can be scanned by using Defender for Cloud Apps.

Which two actions should you perform? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

  • A. From the Microsoft Purview compliance portal, create a data loss prevention (DLP) policy that contains an exception for content that contains a sensitive information type.
  • B. From the Microsoft Defender for Cloud Apps portal, enable file monitoring of software as a service (SaaS) apps.
  • C. From the Microsoft Defender for Cloud Apps portal, create an OAuth app policy for apps that have the Have full access to user files permission.
  • D. From the Azure Active Directory admin center, grant Microsoft Defender for Cloud Apps permission to read all the protected content of the tenant.
Show Suggested Answer Hide Answer
Suggested Answer: AD 🗳️
by niesz1 at March 8, 2023, 6:58 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
niesz1
2 years, 3 months ago
To ensure that all Azure Information Protection-protected files can be scanned by using Defender for Cloud Apps, the following actions should be performed: B. From the Microsoft Defender for Cloud Apps portal, enable file monitoring of software as a service (SaaS) apps: This will allow Defender for Cloud Apps to monitor the files uploaded to OneDrive for Business and other SaaS apps. D. From the Azure Active Directory admin center, grant Microsoft Defender for Cloud Apps permission to read all the protected content of the tenant: This will allow Defender for Cloud Apps to access the encrypted content and scan it for threats. Option A is not relevant to this scenario as it pertains to creating a data loss prevention policy that contains an exception for content that contains a sensitive information type, which is not related to enabling Defender for Cloud Apps to scan encrypted content. Option C is also not relevant to this scenario as it pertains to creating an OAuth app policy for apps that have the "Have full access to user files" permission, which is not related to enabling Defender for Cloud Apps to scan encrypted content.
upvoted 3 times
Pointless
2 years, 2 months ago
I don’t know how much accurate ChatGPT answers are.
upvoted 3 times
harburn422
2 years ago
I agree, I got similar answer from ChatGPT with out putting answers on the message. AI can be wrong, and will be wrong at times. Humans write these exam questions and parse the answers. So I agree I do not believe ChatGPT answers are solid ones.
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel