Microsoft MS-900 Exam - Topic 3 Question 127 Discussion

Actual exam question for Microsoft's MS-900 exam

Question #: 127
Topic #: 3

You deploy Enterprise Mobility + Security E5 and assign Microsoft 365 licenses to all employees.

Employees must not be able to share documents at forward emails that contain sensitive information outside the company.

You need to enforce the file sharing restrictions.

What should you do?

AUse Microsoft Azure Information Protection to define a label. Associate the label with an Azure Rights Management template that prevents the sharing of files or emails that are marked with the label.

BCreate a MicrosoftSharePoint Online content type named Sensitivity Apply the content type to other content types in Microsoft. 356 a Microsoft Azure Rights Management template that prevents the sharing of any content where the Sensitivity column value is set to Sensitive.

CC. Use Microsoft Azure Information Rights Protection to define a label. Associate the label with an Active Directory Rights Management template that prevents the sharing of files or emails that are marked with the label.

DCreate a label named Sensitive. Apply a Data Layer Protection policy that notifies users when their document contains personally identifiable information (PII).

Show Suggested Answer

Suggested Answer: A

https://docs.microsoft.com/en-us/azure/information-protection/what-is-azure-rms

by Malcolm at Jan 05, 2026, 05:16 AM

Limited Time Offer

25%

Off

Get Premium MS-900 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Darnell

10 days ago

B) Hmm, not sure about using SharePoint content types for this. Seems like overkill compared to the Azure Information Protection option.

upvoted 0 times

...

Catarina

15 days ago

C) I think this is the correct answer. Using Azure Information Protection and AD RMS templates is the way to go.

upvoted 0 times

...

Iola

20 days ago

A) Looks like the right approach to me. Azure Information Protection and RMS templates should do the trick.

upvoted 0 times

...

Marshall

25 days ago

I feel like option D is more about notifying users rather than enforcing restrictions, so it might not be the best answer for this question.

upvoted 0 times

...

Gladys

1 month ago

Option C seems like it could be the right choice since it mentions Azure Information Rights Protection, but I’m a bit confused about the difference between that and Azure Information Protection.

upvoted 0 times

...

Herman

1 month ago

I remember practicing a similar question where we had to apply rights management templates, but I can't recall if it was specifically for emails or files.

upvoted 0 times

...

Daisy

1 month ago

I think option A sounds familiar because we discussed using Azure Information Protection labels in class, but I'm not entirely sure if it covers all scenarios for sharing restrictions.

upvoted 0 times

...

Elenore

2 months ago

Based on the details provided, I think option B might be the best approach. Creating a content type and applying an RMS template seems like a comprehensive way to handle this.

upvoted 0 times

...

Vicky

2 months ago

I'm a bit confused by the differences between the Azure Information Protection and Azure Rights Management options. I'll need to review those in more detail.

upvoted 0 times

...

Jeannetta

2 months ago

Okay, the key here is to enforce file sharing restrictions for sensitive information. I'm leaning towards option A, since it seems to directly address that requirement.

upvoted 0 times

...

Percy

2 months ago

Hmm, this seems like a tricky one. I'll need to make sure I understand the requirements fully before deciding on an approach.

upvoted 0 times

...

Martin

2 months ago

I think I've seen this type of question before. Let me think through the options carefully.

upvoted 0 times

...