ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-500 All Questions

View all questions & answers for the MS-500 exam
Go to Exam

Exam MS-500 topic 3 question 30 discussion

Actual exam question from Microsoft's MS-500
Question #: 30
Topic #: 3
[All MS-500 Questions]

DRAG DROP -
You have a Microsoft 365 subscription that contains 20 data loss prevention (DLP) policies.
You need to identify the following:
✑ Rules that are applied without triggering a policy alert
✑ The top 10 files that have matched DLP policies
✑ Alerts that are miscategorized
Which report should you use for each requirement? To answer, drag the appropriate reports to the correct requirements. Each report may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/view-the-dlp-reports?view=o365-worldwide
by xyz213 at Sept. 12, 2022, 5:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
abrub
2 years, 1 month ago
https://learn.microsoft.com/en-us/microsoft-365/compliance/view-the-dlp-reports?view=o365-worldwide
upvoted 1 times
...
Eve123
2 years, 2 months ago
can confirm this question is on exam 3/11/2023
upvoted 3 times
...
niesz1
2 years, 2 months ago
Chat GPT: Rules that are applied without triggering a policy alert DLP rule usage The top 10 files that have matched DLP policies DLP policy matches Alerts that are miscategorized DLP false positives Explanation: DLP rule usage report(Incident report) shows the rules that are applied without triggering a policy alert. This report can help you identify the rules that are not generating alerts and make necessary changes to your DLP policies. DLP policy matches report shows the top 10 files that have matched DLP policies. This report can help you understand which files are being impacted the most by DLP policies and take necessary actions to secure them. DLP false positives report shows alerts that are miscategorized. This report can help you identify the alerts that are not relevant or accurate and fine-tune your DLP policies to reduce false positives.
upvoted 3 times
...
B0bacer
2 years, 7 months ago
maybe ............. Rules that are applied without triggering a policy alert Incident reports The top 10 files that have matched DLP policies DLP policy matches False positive and override Alerts that are miscategorized
upvoted 4 times
Anonymousse
2 years, 6 months ago
I agree with this. Definition of DLP Incidents: The incidents report is better for identifying specific pieces of content that are problematic for your DLP policies. This to me seems to coincidence with issues of the policies not triggering. My vote would be Incident Reports, DLP policy matches, False Positives and Overrides
upvoted 1 times
...
...
xyz213
2 years, 8 months ago
Correct for me!
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago