Exam MS-700 topic 2 question 85 discussion

I'm changing my mind: Here's a new analysis after reading all of the Microsoft documentation. The E3 license does not include the Data Loss Prevention (DLP) functionality to monitor file transfer from Teams to USB. You need to have the E5 license of Microsoft 365 to use this feature. However, the E3 license includes other security and compliance features such as Azure Active Directory Premium P1 and Microsoft Defender for Office 365. To monitor file transfer from Teams to USB devices, you can use the Endpoint DLP solution, which is part of the Microsoft 365 E5 Security add-on. With the E3 license, you can upgrade to Microsoft 365 E5 or purchase the Microsoft 365 E5 Security add-on separately. Moderation: Delete my previous opinion.

With Endpoint DLP, you can monitor and control the data transfers between the computers and USB devices. But Microsoft 365 E3 subscription does not include Endpoint DLP So the answer is D(It is first thing to do)

To access and use Endpoint DLP functionality, you must have one of these subscriptions or add-ons. Microsoft 365 E5 Microsoft 365 A5 (EDU) Microsoft 365 E5 compliance Microsoft 365 A5 compliance Microsoft 365 E5 information protection and governance Microsoft 365 A5 information protection and governance therefore the answer is D

Endpoint data loss prevention (Endpoint DLP) allows you to monitor and protect sensitive data on your organization's Windows 10 computers. By onboarding the Windows 10 computers to Endpoint DLP, you can enable the necessary monitoring and detection capabilities to identify when users copy documents from Microsoft Teams to USB devices. This will help you track any potential data loss or unauthorized data transfers. Once the Windows 10 computers are onboarded to Endpoint DLP, you can set up appropriate policies and configurations to monitor and detect data transfers to USB devices. This will enable you to generate the desired report and take necessary actions to ensure data security and compliance.

E3 DLP capabilities cannot control access to a USB drive - that is endpoint DLP which is enabled by E5 Compliance or ME5.

D is the correct

A is correct. With the E3 license, you can configure and generate data loss prevention (DLP) reports in Microsoft Teams, including reports on documents copied to USB devices. It is not necessary to have the E5 license for this. Therefore, to generate a report that identifies which documents users have copied from Microsoft Teams to USB devices, you can create a custom DLP policy and configure it to monitor and log copy activities to USB devices. Then, you can generate a report based on the data collected by the DLP policy.

With the E3 license, you can configure and generate data loss prevention (DLP) reports in Microsoft Teams, including reports on documents copied to USB devices. It is not necessary to have the E5 license for this. Therefore, to generate a report that identifies which documents users have copied from Microsoft Teams to USB devices, you can create a custom DLP policy and configure it to monitor and log copy activities to USB devices. Then, you can generate a report based on the data collected by the DLP policy.

Agree with unbelievable' s answer and explanation. You'll need an E5 license and once you have the correct license, then you would do a EDLP.

Quite straight forward, you only have an E3 license. You'll need an E5 and here it mentions compliance. So D is the answer. https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-microsoft-teams?view=o365-worldwide Once you have the correct license, then you would do a EDLP. Clearly here it mentions USB and it's in the associated reports: https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide

A. Create a custom data loss prevention (DLP) policy. To generate a report that identifies which documents the users copied from Microsoft Teams to USB devices, you should first create a custom Data Loss Prevention (DLP) policy. DLP policies in Microsoft 365 allow you to monitor and protect sensitive data in your organization. You can create a custom DLP policy that looks for specific types of files, such as documents, and specify the actions to take when a violation occurs, such as sending an alert or blocking the transfer of the files. B and D are not necessary for this task. C is incorrect as Endpoint DLP is only useful for data stored on endpoints and not on the cloud.

https://learn.microsoft.com/en-us/microsoft-365/compliance/dlp-microsoft-teams?view=o365-worldwide Office 365 and Microsoft 365 E3 include DLP protection for SharePoint Online, OneDrive, and Exchange Online. This also includes files that are shared through Teams because Teams uses SharePoint Online and OneDrive to share files.

Guys dont check just one documentation. C & D are part of the solution. First of all you need the E5 Compliance AddOn license and then you need to configure endpoint DLP. But the question is about the FIRST step. And the first step is a license assignment. License: https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide#skusubscriptions-licensing Learn about DLP: https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide Check the tip in the green box, then you will land on the removable Storage Access Control: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/device-control-removable-storage-access-control?view=o365-worldwide#microsoft-defender-for-endpoint-device-control-removable-storage-access-control

D based on this: https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide#skusubscriptions-licensing

B, because Endpoint DLP licensing requires minimum of E5. https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-worldwide#skusubscriptions-licensing

C. Endpoint DLP copy to USB removable media =>Detects when a user attempts to copy an item or information to removable media or USB device. https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide

C Endpoint DLP enables you to audit and manage the following types of activities users take on sensitive items that are physically stored Windows 10, Windows 11, or macOS devices. ->copy to USB removable media : Detects when a user attempts to copy an item or information to removable media or USB device. https://learn.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-worldwide