Exam MS-102 topic 1 question 207 discussion

my opinion is Y-Y-Y @sigvast is right https://learn.microsoft.com/en-us/purview/dlp-policy-reference#actions

Answer is correct. 1. File2 meet rules but Owner can open. 2, File1 don't meet rules 3. Because File2 meet rules only Owner can open, even Admin is blocked

My answers YYN -User 1 is owner, so the answer is YES https://learn.microsoft.com/en-us/purview/dlp-policy-reference#actions Block everyone. Only the content owner, last modifier, and site admin will continue to have access -User 2: don't meet the criteria, so YES -Admin 1: is a Sharepoint admin, not Site Admin, si NO https://learn.microsoft.com/en-us/sharepoint/sharepoint-admin-role#site-management "Global Administrators and SharePoint Administrators don't have automatic access to all sites and each user's OneDrive, but they can give themselves access to any site or OneDrive. "

1.User1 can open File2: NO User1 is a Site owner and has the highest level of permissions. However, the DLP policy blocks access to files that contain sensitive information if the content meets the criteria of having an instance count of 3 to Any for the sensitive info type (IP Address). File2 contains 5 IP addresses, which triggers the policy, blocking access. 2. User2 can open File1: YES User2 is a Site Member with permissions to access files. File1 contains only 2 IP addresses, which does not meet the DLP policy's condition of having at least 3 instances. Therefore, User2 can still access File1. 3. Admin1 can open File2: NO Admin1, as a SharePoint Admin, typically has full control over SharePoint sites. However, the DLP policy is applied to restrict access to the content based on the defined rules, which applies to all users, including admins. Since File2 meets the criteria of the DLP policy, access is blocked.

It looks given answer is correct YYN site owner can open file, Admin1 is blocked as per policy.

File 2 - 5 ip address’s , 3 threshold to trip dlp how ever user 1 is owner so can open File 1 - 2 ip addresses below threshold there for can user 2 open File 2 - 5 ip address’s , 3 threshold to trip dlp and admin is not owner so shut out .

Actions Any item that makes it through the conditions filter will have any actions that are defined in the rule applied to it. You'll have to configure the required options to support the action. For example, if you select Exchange with the Restrict access or encrypt the content in Microsoft 365 locations action, you need to choose from these options: Block users from accessing shared SharePoint, OneDrive, and Teams content Block everyone. Only the content owner, last modifier, and site admin will continue to have access Block only people from outside your organization. Users inside your organization will continue to have access. Encrypt email messages (applies only to content in Exchange) The actions that are available in a rule depend on the locations that have been selected. The available actions for each individual location are listed below.

I think this is a typical Microsoft question. A SITE admin has access to blocked files. A SharePoint admin does not. A SharePoint admin could make himself site admin, but that's not part of the question here. So I do not think the SharePoint admin can access the file.

You have a Microsoft 365 E5 subscription that contains a SharePoint site named Site1. You have a sharepoint site named Site 1. Sorry, my logic was stucked by Microsoft exams, I could not tell whether 'You have a Microsoft 365 E5 subscription that contains a SharePoint site named Site1' is the correct logic.

Admin1 is 'SharePoint Admin' not 'Site Admin'

Agree with Christian, Owners & Admin can always open files if even if it says 'block everyone' There needs to be people who can resolve these problems, if only the 'owner' can access it, say a member of reception, they'll have no idea how to resolve. Needs an admin to resolve

Posible incomplete question: https://www.examtopics.com/discussions/microsoft/view/108499-exam-ms-101-topic-3-question-163-discussion/