ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 3 question 36 discussion

Actual exam question from Microsoft's MS-500
Question #: 36
Topic #: 3
[All MS-500 Questions]

You have a Microsoft 365 E5 subscription.
You need to prevent users from uploading data loss prevention (DLP)-protected documents to the following third-party websites:
✑ web1.contoso.com
web2.contoso.com

The solution must minimize administrative effort.
To what should you set the Service domains setting for Endpoint DLP?

  • A. web1.contoso.com and web2.contoso.com
  • B. contoso.com
  • C. *.contoso.com
  • D. web*.contoso.com
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by dakasa at Sept. 4, 2022, 3:42 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Commissar
Highly Voted 2 years, 9 months ago
Selected Answer: A
So, A, C or D would stop you uploading to web1.contoso.com and web2.contoso.com, but only A would stop you uploading to ONLY web1.contoso.com and web2.contoso.com. C would stop you from uploading to <anysubdomain>.contoso.com and D would stop you uploading to web<anynumber>.contoso.com, both of which could have unintented consequences. So, like any multiple choice, it seems we need to go with the MOST correct answer, A.
upvoted 6 times
...
kmk_01
Most Recent 2 years, 3 months ago
Selected Answer: C
In real life, I would block the whole domain, not just specific URLs. If you can trust two addresses in the same external domain, you shouldn't trust any site in the domain.
upvoted 1 times
AnonymousJhb
2 years, 2 months ago
i disagree. doing entire domain wide blocks could break other apps. keep your denials as focused as possible. same as never use any | any rule.
upvoted 1 times
...
...
WickedMJ
2 years, 9 months ago
So what's the real answer here anyone? Its confusing...
upvoted 1 times
...
jeff1988
2 years, 9 months ago
Selected Answer: A
an * is a wildcard for example : *.contoso.com wil include evrything befor .contoso.com and will be blocked web*.contoso.com web1wil be blocked web2 wil be blocked web3 wil be blocked so the only correct awnser is A
upvoted 1 times
...
skycrap
2 years, 10 months ago
I would say C as *contoso.com according to de site matches ://anysubdomain.contoso.com/
upvoted 2 times
...
dakasa
2 years, 10 months ago
Selected Answer: D
Why it is not D? https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-configure-endpoint-settings?view=o365-worldwide
upvoted 1 times
ewu
2 years, 10 months ago
Because you will also block all other numbers (web3, web4,...). Question is only to block web1 and web2
upvoted 2 times
...
jimmyjose
2 years ago
Because web*.contoso.com would block not only web1.contoso.com and web2.contoso.com, but also, web4, web5, ..... etc.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel