Exam SC-200 topic 1 question 18 discussion

DE is correct , I have seen these configurations in Microsoft Learning video: https://www.microsoft.com/en-us/videoplayer/embed/RE4CMYG?postJsllMsg=true

Settings > Cloud Apps > Connected apps > Information Protection > Microsoft Information Protection settings > Automatically scan new files ...

DE correct

DE

A, D A: focuses on ensuring that only files classified with Azure Information Protection (AIP) labels are scanned, which is crucial for identifying sensitive or confidential files. By limiting the scope to AIP-classified files, you ensure that the system focuses on files requiring protection. This ensures the system scans the right files, adhering to the principle of least privilege, while identifying confidential files for monitoring and action. D: This automates the scanning of new files for AIP labels, ensuring ongoing protection of sensitive files.

Select Investigate files, and then select New policy from search (Option C). This allows you to create a new policy based on your search criteria, which can include conditions for external sharing of confidential files. From Settings, select Information Protection, select Azure Information Protection, and then select Automatically scan new files for Azure Information Protection classification labels and content inspection warnings (Option D). This ensures that new files are automatically scanned for classification labels and content inspection warnings, which can trigger alerts and remediation actions.

C + D D to enalble AIP C to scan the existing files.

Microsoft Cloud App Security is now known as **Microsoft Defender for Cloud Apps** This name change was part of a broader rebranding effort by Microsoft to consolidate its security and compliance services under the Microsoft Defender brand.

C and E

DE, correct

Make sense

Correct, go to M365 Defender settings, Cloud apps, Info Protection, MS Info Protection - "Auto scan new files .." and then Save and got to Files "File monitoring" Save. https://learn.microsoft.com/en-us/defender-cloud-apps/azip-integration#enable-microsoft-purview-information-protection

Once again based on your intuition due to Microsoft's vague answer choices. Based on the following: "generate alerts and [[trigger remediation actions]]" The answer would be CE. D would label the files with the appropriate Sensitive Data Classification Label and can block the file from being sent externally, but that does not 'trigger a remediation option' in response to an alert via MCAS. That's done within MPIP Compliance portal. If we're discussing how to remediate an alert from MCAS, you would use "Send alerts to Microsoft Power Automate" in an MCAS Policy and automate the remediation there.

D: Settings>Information Protection>Microsoft Information Protection>Automatically scan new files for Microsoft Information Protection classification labels and content inspection warnings. E: Settings>Information Protection>Files>Enable file monitoring.

D and E to achieve both outcomes

D. From Settings, select Information Protection, select Azure Information Protection, and then select Automatically scan new files for Azure Information Protection classification labels and content inspection warnings. This will enable Cloud App Security to automatically scan new files for Azure Information Protection classification labels and content inspection warnings, which can be used to detect and protect confidential files. E. From Settings, select Information Protection, select Files, and then enable file monitoring. This will enable Cloud App Security to monitor files for external sharing and other activities, and to generate alerts and trigger remediation actions in response to potential threats or policy violations.

DE tested