Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-401 Exam - Topic 1 Question 5 Discussion

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You recently discovered that the developers at your company emailed Azure Storage Account keys in plain text to third parties.You need to ensure that when Azure Storage Account keys are emailed, the emails are encrypted.Solution: You create a data loss prevention (DLP) policy that has only the Exchange email location selected.Does this meet the goal?
A) Yes
B) No

Microsoft SC-401 Exam - Topic 1 Question 5 Discussion

Actual exam question for Microsoft's SC-401 exam
Question #: 5
Topic #: 1
[All SC-401 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You recently discovered that the developers at your company emailed Azure Storage Account keys in plain text to third parties.

You need to ensure that when Azure Storage Account keys are emailed, the emails are encrypted.

Solution: You create a data loss prevention (DLP) policy that has only the Exchange email location selected.

Does this meet the goal?

Show Suggested Answer Hide Answer
Suggested Answer: A

To ensure Azure Storage Account keys are encrypted when sent via email, you need a Data Loss Prevention (DLP) policy that detects Azure Storage Account keys using a sensitive information type and automatically encrypts emails containing these keys.

A DLP policy with Exchange email as the only location meets this requirement because it identifies sensitive data in email messages and it applies protection actions, such as encryption, blocking, or alerts.


by Fidelia at Mar 22, 2025, 05:57 AM

Limited Time Offer

25%

Off

Get Premium SC-401 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Gussie
6 months ago
Wait, are we sure this actually encrypts the keys?
upvoted 0 times
...
Blythe
6 months ago
I don't think just selecting Exchange is enough.
upvoted 0 times
...
Marquetta
6 months ago
Yes, but what about other locations?
upvoted 0 times
...
Glendora
6 months ago
This seems like a good start, but not comprehensive.
upvoted 0 times
...
Kristofer
6 months ago
DLP policies can help with email encryption.
upvoted 0 times
...
Ressie
7 months ago
If I recall correctly, DLP policies need to encompass all potential email locations to be effective.
upvoted 0 times
...
Tammara
7 months ago
I'm not entirely sure, but I feel like just focusing on Exchange might leave other channels unprotected.
upvoted 0 times
...
Bo
7 months ago
I remember a practice question where we had to consider all email locations for DLP policies. This feels similar.
upvoted 0 times
...
Walton
7 months ago
I think selecting only the Exchange email location might not cover all scenarios where the keys could be sent.
upvoted 0 times
...
Justine
8 months ago
I'm a little confused here. The question mentions that the solution is to create a DLP policy, but it doesn't specify what the policy should do. I'll need to think through the details of how DLP policies can be used to encrypt email content before I can confidently answer this.
upvoted 0 times
...
Leslie
8 months ago
Okay, I've got this. The question is asking if the given solution of creating a DLP policy with only the Exchange email location selected will meet the goal of ensuring Azure Storage Account keys are encrypted when emailed. Based on my understanding of DLP policies, this should work, as it will apply the encryption to any emails containing those sensitive keys.
upvoted 0 times
...
Carmen
8 months ago
Hmm, I'm a bit unsure about this one. The question seems straightforward, but I want to make sure I fully understand the implications of the DLP policy before answering. I'll need to review the details of how DLP policies work with email encryption.
upvoted 0 times
...
Ahmed
8 months ago
I think the key here is to focus on the specific requirement of ensuring that Azure Storage Account keys are encrypted when emailed. The question states that the solution is to create a DLP policy with only the Exchange email location selected, so I'll carefully consider whether that meets the goal.
upvoted 0 times
...
Sommer
1 year ago
The correct answer is B) No. Limiting the DLP policy to just email won't prevent keys from being shared through other methods. This is a good start, but more comprehensive measures are needed.
upvoted 0 times
Fausto
1 year ago
User 2: No
upvoted 0 times
...
Deonna
1 year ago
User 1: Yes
upvoted 0 times
...
...
Brandee
1 year ago
I agree, we should consider all possible email locations to ensure complete encryption.
upvoted 0 times
...
Nickie
1 year ago
Haha, emailing Azure keys in plain text? Someone's getting fired! But seriously, this DLP policy is just a bandaid, not a real solution.
upvoted 0 times
Rupert
1 year ago
Altha: We need a more secure solution
upvoted 0 times
...
Loren
1 year ago
User 3: Agreed, this is just a temporary fix
upvoted 0 times
...
Altha
1 year ago
User 2: No
upvoted 0 times
...
Dalene
1 year ago
User 1: Yes
upvoted 0 times
...
Paulene
1 year ago
User 4: No
upvoted 0 times
...
Jacquelyne
1 year ago
User 3: No
upvoted 0 times
...
Jettie
1 year ago
User 2: No
upvoted 0 times
...
Chauncey
1 year ago
User 1: Yes
upvoted 0 times
...
...
Cassi
1 year ago
I see your point, including other email locations could provide better protection.
upvoted 0 times
...
Micaela
1 year ago
I'm not sure, wouldn't it be better to include other email locations as well?
upvoted 0 times
...
Cassi
1 year ago
Yes, that sounds like a good solution.
upvoted 0 times
...
Bobbie
1 year ago
B) No, this solution is not sufficient. The DLP policy should cover all potential communication channels, not just email.
upvoted 0 times
Glory
1 year ago
B) No, this solution is not sufficient. The DLP policy should cover all potential communication channels, not just email.
upvoted 0 times
...
Caprice
1 year ago
B) No
upvoted 0 times
...
Misty
1 year ago
A) Yes
upvoted 0 times
...
...
Steffanie
1 year ago
Encrypting the emails is a good start, but it doesn't address the root issue of developers emailing sensitive information in plain text. This needs a wider policy review.
upvoted 0 times
Joni
1 year ago
Encrypting the emails is a good start, but it doesn't address the root issue of developers emailing sensitive information in plain text. This needs a wider policy review.
upvoted 0 times
...
Mi
1 year ago
B) No
upvoted 0 times
...
Shawnda
1 year ago
A) Yes
upvoted 0 times
...
...
Jaclyn
1 year ago
The DLP policy only covers Exchange email, but the keys could still be shared through other channels. A more comprehensive solution is needed.
upvoted 0 times
Leonardo
1 year ago
User 3: The DLP policy only covers Exchange email, but the keys could still be shared through other channels. A more comprehensive solution is needed.
upvoted 0 times
...
Kenneth
1 year ago
User 2: B) No
upvoted 0 times
...
Dudley
1 year ago
User 1: A) Yes
upvoted 0 times
...
...

Save Cancel