SC-401 Exam Questions 2026 – Real Practice Test with Verified Answers

Home / Microsoft / SC-401

Latest SC-401 Exam Practice Questions

The practice questions for SC-401 exam was last updated on 2026-05-25 .

Viewing page 1 out of 8 pages.

Viewing questions 1 out of 40 questions.

Question#1

You have a Microsoft 365 subscription that contains the devices shown in the following table.



From which devices can Microsoft Purview Insider Risk Management capture forensic evidence?

A. Device1 only
B. Device2 only
C. Device1 and Device2 only
D. Device2 and Device3 only
E. Device1, Device2, and Device3

Question#2

HOTSPOT
You have a Microsoft 365 subscription that has a retention label named Retention 1.
The subscription contains the files shown in the following table.



You create an auto-labeling policy named Policy1 that will automatically apply Retention1 as shown in the Auto-labeling policy exhibit. (Click the Auto-labeling policy tab.)



You configure Policy1 to apply Retention1 as shown in the Locations exhibit. (Click the Locations tab.)



For each of the following statements, select Yes if the statement is true. Otherwise, select No . NOTE: Each correct selection is worth one point.


A. 

Question#3

You plan to create a new data loss prevention (DLP) policy named DLP 1.
DLP1 will be applied to the Exchange email location.
You need to exclude two users named User1 and User2 from DLP 1.
What should you do first?

A. Create an organization sharing policy in Microsoft Exchange.
B. Create an advanced DLP rule.
C. Create a mail flow rule in Microsoft Exchange.
D. Create a distribution list that contains User1 and User2.

Question#4

HOTSPOT
You have a Microsoft 365 365 E5 subscription.
You plan to create a new sensitive information type (SIT) by using the Microsoft Purview portal.
You need to copy and modify an existing SIT from which to create the new SIT.
What are two SITs that you can copy and modify? To answer, select the appropriate SITs in the answer area . NOTE: Each correct selection is worth one point.


A. 

Question#5

You have a Microsoft 365 E5 subscription.
You need to review a Microsoft 365 Copilot usage report.
From where should you review the report?

A. Information Protection in the Microsoft Purview portal
B. the Microsoft 365 admin center
C. DSPM for AI in the Microsoft Purview portal
D. the Microsoft Defender portal

Disclaimer

This page is for educational and exam preparation reference only. It is not affiliated with Microsoft, Microsoft Certified: Information Security Administrator Associate, or the official exam provider. Candidates should refer to official documentation and training for authoritative information.

Exam Code: SC-401Q & A:  264  Q&As Updated:  2026-05-25

  Get All SC-401 Q&As

Top 20 Exams

CertQuestionsBank doesn't offer Real Microsoft, Amazon, Cisco Exam Questions. All CertQuestionsBank content is sourced from the Internet.

Important Links

Know Us

Follow Us

Payment Methods

Payment Methods

Copyright © 2026 Certquestionbank.com Limited. All Rights Reserved.