New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-401 Exam - Topic 2 Question 13 Discussion

Actual exam question for Microsoft's SC-401 exam
Question #: 13
Topic #: 2
[All SC-401 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You recently discovered that the developers at your company emailed Azure Storage Account keys in plain text to third parties.

You need to ensure that when Azure Storage Account keys are emailed, the emails are encrypted.

Solution: You configure a mail flow rule that matches a sensitive info type.

Does this meet the goal?

Show Suggested Answer Hide Answer
Suggested Answer: B

To ensure Azure Storage Account keys are encrypted when sent via email, you need a Data Loss Prevention (DLP) policy that detects Azure Storage Account keys using a sensitive information type and automatically encrypts emails containing these keys.

Mail flow rules (transport rules) can detect sensitive info, but they are limited in encryption capabilities.

DLP policies provide more advanced protection and integration with Microsoft Purview for sensitive info detection.


by Leonida at Aug 12, 2025, 02:44 AM

Limited Time Offer

25%

Off

Get Premium SC-401 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Albert
2 months ago
But what if the rule doesn't catch all sensitive info?
upvoted 0 times
...
Blondell
3 months ago
Wait, can you really encrypt emails like that?
upvoted 0 times
...
Erinn
3 months ago
Yes, definitely meets the goal!
upvoted 0 times
...
Sueann
3 months ago
I don't think that's enough, though.
upvoted 0 times
...
Miriam
3 months ago
That sounds like a solid solution!
upvoted 0 times
...
Lauran
3 months ago
I believe this solution might meet the goal, but I wonder if there are additional steps needed to fully secure the keys.
upvoted 0 times
...
Kattie
4 months ago
I'm a bit confused about whether just matching a sensitive info type is enough to guarantee encryption.
upvoted 0 times
...
Cassi
4 months ago
I remember a practice question where we had to ensure data protection in emails, and I feel like this approach might be similar.
upvoted 0 times
...
Anna
4 months ago
I think using a mail flow rule for sensitive info types could work, but I'm not entirely sure if it covers all scenarios.
upvoted 0 times
...
Julianna
4 months ago
This seems like a tricky one. I'll need to review the Azure Storage Account key handling best practices to make sure I'm on the right track with the proposed solution.
upvoted 0 times
...
Novella
4 months ago
Okay, I think I've got a handle on this. Configuring a mail flow rule to match a sensitive info type sounds like a reasonable approach to encrypt the emails. I'll double-check the details to make sure it fully meets the goal.
upvoted 0 times
...
Rosio
5 months ago
I'm a bit unsure about this one. The question mentions that there could be multiple correct solutions, so I'll need to think through the requirements carefully.
upvoted 0 times
...
Mabelle
5 months ago
Hmm, this seems like a straightforward question. I'll start by carefully reading the scenario and the proposed solution to make sure I understand the context.
upvoted 0 times
...

Save Cancel