Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

← Manage compliance by using Microsoft Purview practice sets

MS-102 Manage compliance by using Microsoft Purview • Complete Question Bank

MS-102 Manage compliance by using Microsoft Purview — All Questions With Answers

Complete MS-102 Manage compliance by using Microsoft Purview question bank — all 0 questions with answers and detailed explanations.

166
Questions
Free
No signup
Certifications/MS-102/Practice Test/Manage compliance by using Microsoft Purview/All Questions
Question 1mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically retain emails that contain personally identifiable information (PII) for 10 years and then permanently delete them. Which Microsoft Purview feature should be configured?

Question 2hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent external users from printing or copying content from documents stored in a SharePoint Online site. Which Microsoft Purview feature should be configured to enforce this restriction?

Question 3mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically classify documents in SharePoint Online that contain credit card numbers. The classification should apply a label that restricts access and adds a header. Which two Microsoft Purview features must be configured? (Choose two.)

Question 4mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator needs to ensure that all documents in a SharePoint library are retained for exactly 7 years and then allow users to manually dispose of them sooner after a review. What should they configure in Microsoft Purview?

Question 5mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

An organization uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data. They want to create a policy that blocks users from pasting credit card numbers into web forms in Microsoft Edge. Which type of DLP policy should they configure?

Question 6mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A legal department needs to preserve all communications related to an ongoing lawsuit. They identify specific users and require that their mailbox items and OneDrive files are not altered or deleted. Which Microsoft Purview feature should be used?

Question 7mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator wants to automatically apply a 'Confidential' sensitivity label to documents that contain tax identification numbers. Which two configurations are required? (Choose two.)

Question 8hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all emails containing sensitive information (e.g., passport numbers) are automatically encrypted when sent to external recipients. The encryption should be enforced without requiring users to manually select an option. Which Microsoft Purview feature should they configure?

Question 9mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator needs to preserve all documents in a SharePoint Online site that were created before a specific date for a legal hold. The hold should prevent any modification or deletion of those documents. What should the administrator configure?

Question 10mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator needs to automatically apply a retention label to all documents in a SharePoint Online site that contain Social Security numbers. The label should retain the documents for 5 years and then automatically delete them. Which feature should they configure?

Question 11mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from accidentally sharing documents containing credit card numbers with external users via email. The block should occur at the time the user attempts to send the email. Which Microsoft Purview feature should be configured?

Question 12mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A legal hold is required for all emails in a user's mailbox related to a litigation case. The administrator needs to ensure that the mailbox content is preserved even if the user tries to delete emails. Which Microsoft Purview feature should be used?

Question 13mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer wants to automatically apply a 'Confidential' sensitivity label to documents in SharePoint Online that contain credit card numbers. The label should be applied when the documents are created or modified. Which Microsoft Purview feature should be configured?

Question 14mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer wants to automatically apply a retention label to documents that contain SWIFT codes (financial identifiers) when uploaded to SharePoint Online. Which two Microsoft Purview features are required for this configuration? (Choose two.)

Question 15mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator needs to preserve all communications in a user's mailbox and OneDrive for an ongoing litigation. The user must continue working normally, but their data should not be altered or deleted. Which Microsoft Purview feature should be applied?

Question 16easymulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer wants to automatically apply a 'Confidential' sensitivity label to documents in SharePoint Online that contain credit card numbers. Which two Microsoft Purview features must be configured together? (Choose two.)

Question 17hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all emails containing payment card information (PCI) are automatically encrypted when sent to external recipients. The encryption should occur without user intervention. Which two features should be configured together? (Choose two.)

Question 18mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all documents uploaded to SharePoint Online that contain passport numbers are automatically labeled with a 'Highly Confidential' sensitivity label. Which two Microsoft Purview features must be configured together to achieve this? (Choose two.)

Question 19mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance administrator needs to automatically apply a retention label to documents in a SharePoint Online site that contain the keyword 'Project Alpha'. The label should retain the documents for 5 years and then delete them. Which two Microsoft Purview features must be configured to achieve this? (Choose two.)

Question 20mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all outbound emails containing credit card numbers sent to external recipients are automatically encrypted without requiring user intervention. Which Microsoft Purview feature should be configured?

Question 21mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

An organization is involved in litigation and needs to search for all communications containing a specific keyword across Exchange Online, SharePoint Online, and OneDrive for Business. The results must be preserved as evidence without allowing deletion. Which Microsoft Purview solution should the compliance officer use?

Question 22mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

An organization has a legal requirement to preserve certain contracts as immutable records. Once a contract is declared as a record, it must not be editable or deletable by users, including administrators. Which Microsoft Purview solution should be configured?

Question 23mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically retain documents in a SharePoint Online document library for 7 years and then automatically delete them. The retention must be applied based on when the document is created. Which Microsoft Purview feature should be configured?

Question 24mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

An organization is involved in a legal case and needs to preserve all emails in a user's mailbox, including future emails, without deleting or modifying them. The user must continue to work normally. Which Microsoft Purview feature should be applied to the user's mailbox?

Question 25hardmulti select
Read the full NAT/PAT explanation →

A compliance officer needs to ensure that all documents containing a custom sensitive info type (Employee ID with pattern EMP-####) are automatically labeled with a retention label that retains the documents for 3 years. Which two Microsoft Purview components must be configured? (Choose two.)

Question 26mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sharing documents labeled 'Confidential' via email with external recipients. If a user attempts to send such an email, the action should be blocked and a policy tip displayed. Which Microsoft Purview feature should be configured?

Question 27mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a retention label to documents in a SharePoint Online document library that contain the exact phrase 'Project Alpha'. The label must retain the documents for 5 years and then delete them. Which two Microsoft Purview components must be configured to achieve this? (Choose two.)

Question 28easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a retention label to all documents in SharePoint Online that contain the exact phrase 'Contract'. The label must retain the documents for 10 years. Which Microsoft Purview feature should the officer configure?

Question 29mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A user is leaving the organization, and a litigation hold must be placed on their Exchange Online mailbox to preserve all existing and future data indefinitely. The user's mailbox will continue to be monitored for any attempts to delete data. Which Microsoft Purview feature should the compliance officer use?

Question 30mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sending emails that contain sensitive information, such as social security numbers, to external recipients. If a user attempts to send such an email, the action should be blocked and a policy tip should be displayed to the user. Which Microsoft Purview solution should the officer configure?

Question 31easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all emails sent to a specific distribution group are automatically retained for 3 years and then deleted. Which Microsoft Purview feature should be used?

Question 32hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that no user can permanently delete a document from a specific SharePoint Online site. The document must be kept for at least 5 years. Which Microsoft Purview solution should the officer configure?

Question 33easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to identify documents in SharePoint Online that contain confidential business information by using a machine learning model. Which Microsoft Purview solution should be configured?

Question 34mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sending emails that contain credit card numbers to external recipients. When a user attempts to send such an email, the action should be blocked and a policy tip should be displayed in Outlook telling them why the email was blocked. Which Microsoft Purview solution should be configured?

Question 35hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a sensitivity label to all documents in SharePoint Online that contain a credit card number. The label must mark the document as 'Confidential' and encrypt it. Which two Microsoft Purview components must be configured to achieve automatic labeling based on sensitive content? (Choose two.)

Question 36easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer wants to prevent users from sending emails that contain personally identifiable information (PII), such as social security numbers, to external recipients. If a user attempts to send such an email from Outlook, the email should be blocked and a policy tip explaining the block should be displayed. Which Microsoft Purview solution should the officer configure?

Question 37easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to identify documents in SharePoint Online that contain credit card numbers. The officer wants a solution that can automatically detect and mark these documents for further review without applying any protection actions. Which Microsoft Purview solution should the officer use?

Question 38mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sharing confidential documents with external users outside the organization. The policy should block sharing via email attachments or sharing links from SharePoint Online. Which Microsoft Purview solution should be configured?

Question 39easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to preserve all mailbox data for a user who is under a legal investigation. The data must be preserved indefinitely, and no deletion (by the user or system) should be possible. Which Microsoft Purview feature should the officer use?

Question 40easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that any email sent from the organization that contains personally identifiable information (PII) such as social security numbers is automatically encrypted when the recipient is outside the organization. Which Microsoft Purview solution should the officer configure?

Question 41mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sharing protected health information (PHI) with external users in Microsoft Teams chat messages. When a user attempts to send a message containing a known PHI data type (e.g., medical record numbers), the message should be blocked and the sender should see a policy tip. Which Microsoft Purview solution should the officer configure?

Question 42hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to preserve all communications (email and Teams messages) for employees in the legal department for a minimum of 7 years. Additionally, any deletion (by users or system) must be blocked, and after the retention period, the items must be disposed of automatically. The solution must also ensure that the communications are marked as 'records' to prevent tampering. Which Microsoft Purview solution should the officer configure?

Question 43mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a sensitivity label that encrypts documents in SharePoint Online when they contain credit card numbers. The solution must not require manual user action. Which two Microsoft Purview components must be configured? (Select the option that correctly identifies both required components.)

Question 44mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sending emails that contain social security numbers to external recipients. When a user attempts to send such an email from Outlook, the email should be blocked and a policy tip should be displayed explaining why the email was blocked. Which Microsoft Purview solution should the officer configure?

Question 45mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to discover and review documents in SharePoint Online that contain driver's license numbers, but the officer does not want to apply any protection actions automatically. Which Microsoft Purview solution should be used?

Question 46mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all documents in a SharePoint Online site library are declared as permanent records, preventing any edits or deletions. Which Microsoft Purview solution should be used?

Question 47mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a 'Highly Confidential' sensitivity label to any email in Exchange Online that contains social security numbers. The labeling must happen automatically without user interaction. Which two Microsoft Purview components must be configured? (Select the option that correctly identifies both required components.)

Question 48mediummultiple choice
Read the full NAT/PAT explanation →

A compliance officer needs to monitor employee communications across Microsoft Teams and Outlook for potential insider trading, using predefined policies. The solution must detect keywords like 'insider tip' and 'stock' and allow designated reviewers to take action. Which Microsoft Purview solution should the officer use?

Question 49mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a 'Highly Confidential' sensitivity label that encrypts documents in SharePoint Online when they contain credit card numbers. The labeling must happen automatically without user interaction. Which two Microsoft Purview components must be configured? (Select the option that correctly identifies both required components.)

Question 50hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically encrypt and apply a 'Do Not Forward' restriction to all outgoing emails sent by the finance department that contain credit card numbers. The solution must work without requiring users to manually apply labels. Which configuration is required?

Question 51mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to retain all documents in a SharePoint Online site associated with the Finance department for 7 years, and after that automatically delete them. During the retention period, users must not be able to edit or delete the documents. Which solution should they use?

Question 52mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to retain all documents in a SharePoint Online site associated with the Finance department for 10 years, after which the documents must be automatically deleted. During the retention period, users must be allowed to edit the documents but not delete them. Which Microsoft Purview solution should the officer configure?

Question 53mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

The legal department is investigating a potential data breach involving a specific user. The compliance officer needs to place a hold on all content in the user's Exchange Online mailbox and OneDrive for Business to prevent deletion until the investigation is complete. Which Microsoft Purview solution should the officer use?

Question 54mediummulti select
Read the full NAT/PAT explanation →

A compliance officer needs to automatically apply a sensitivity label that encrypts documents in SharePoint Online when the documents contain a custom regex pattern (e.g., employee ID). The labeling must occur automatically without requiring user interaction. Which two Microsoft Purview components must be configured? (Select the option that correctly identifies both components.)

Question 55mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a sensitivity label named 'Confidential' to documents stored in SharePoint Online whenever the documents contain social security numbers. Users must be prevented from removing the label. Which configuration should the officer implement?

Question 56mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to retain all email messages in a user's Exchange Online mailbox for 7 years after the message is sent or received, and then automatically delete them. The retention must be enforced regardless of user actions. Which Microsoft Purview solution should be used?

Question 57easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to block users from sharing emails that contain credit card numbers with external recipients. When a user attempts to send such an email, it should be blocked immediately, and a policy tip should notify the user. Which Microsoft Purview solution should the officer configure?

Question 58mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from copying sensitive data (e.g., credit card numbers) from a finance application into personal email or documents. The solution must inspect the content in real-time and block the action if sensitive data is detected. Which Microsoft Purview feature should the officer configure?

Question 59hardmultiple choice
Read the full NAT/PAT explanation →

A compliance officer needs to automatically detect and apply a sensitivity label to documents in SharePoint Online that contain a custom sensitive information type (e.g., employee ID pattern). The label must be applied automatically, and users must be prompted to provide a justification when attempting to remove the label. Which combination of configurations should the officer implement?

Question 60mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all documents in a SharePoint Online site are retained for 5 years and then automatically deleted. During the retention period, users must be allowed to edit the documents but not delete them. Which Microsoft Purview solution should the officer configure?

Question 61easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sharing emails that contain credit card numbers with external recipients. When a user attempts to send such an email, it should be blocked immediately, and a policy tip should notify the user. Which Microsoft Purview solution should the officer configure?

Question 62mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to retain all documents in a SharePoint Online site for 7 years and then automatically delete them. During the retention period, users must be able to edit the documents but not delete them. Which Microsoft Purview solution should the officer configure?

Question 63easymultiple choice
Read the full NAT/PAT explanation →

A compliance officer needs to automatically detect documents in SharePoint Online that contain a custom pattern (e.g., employee ID in the format EMP-12345). The pattern will be used to apply a sensitivity label. Which Microsoft Purview feature should the officer use to define the pattern?

Question 64mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically detect and apply a sensitivity label to documents in SharePoint Online that contain personally identifiable information (PII) such as social security numbers. The label should be applied automatically, and users must be able to override the label with a justification. Which two Microsoft Purview components must be configured to achieve this?

Question 65mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A company must ensure that all outgoing emails containing credit card numbers are blocked from being sent to external recipients. When a user attempts to send such an email, it should be blocked immediately, and the user should see a policy tip explaining the rule. Which Microsoft Purview solution should the administrator configure?

Question 66hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

An administrator is creating a Microsoft Purview auto-labeling policy for documents containing personally identifiable information. Before turning the policy on automatically, what should the administrator do to reduce false positives?

Question 67mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to prevent users from sharing documents that have been labeled 'Highly Confidential' with external users. When a user attempts to share such a document externally, the action should be blocked and the user should see a policy tip. Which Microsoft Purview solution should the officer configure?

Question 68hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A Microsoft Purview auto-labeling policy for sensitivity labels is matching too many SharePoint documents after simulation. Which two changes would most directly reduce false positives before enabling automatic labeling? (Choose two.)

Question 69easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all documents in a SharePoint Online library are automatically labeled with a 'Confidential' sensitivity label if they contain at least one of a predefined list of sensitive information types such as credit card numbers or social security numbers. Users should be able to override the label with a business justification. Which Microsoft Purview feature should the officer configure?

Question 70hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A company uses Microsoft Purview Data Lifecycle Management. They have a retention policy that retains all documents in a specific SharePoint Online site for 5 years and then automatically deletes them. Some documents in that site have a retention label that retains them for 7 years and then deletes them. What is the effective retention period for those labeled documents?

Question 71easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to mark documents in a SharePoint Online library as regulatory records. These records must be immutable (cannot be modified or deleted) for 3 years. After 3 years, a disposition review must be initiated to decide if the records can be deleted. Which Microsoft Purview solution should the officer configure?

Question 72easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically apply a retention label to all documents in a SharePoint Online site that have not been modified for more than 3 years. The label should retain the documents for an additional 5 years, then trigger a disposition review. Which action should the officer configure in the auto-apply retention label policy?

Question 73mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to ensure that all documents in a Microsoft Teams channel are automatically retained for 3 years after creation and then permanently deleted. The retention policy should apply only to the specific channel, not the entire team. Which approach should the officer use?

Question 74mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to implement a policy that automatically marks emails containing a specific custom sensitive information type as a regulatory record upon sending. The regulatory record must be retained for 10 years and cannot be deleted by users. Which two components must be configured to achieve this?

Question 75hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A compliance officer needs to automatically identify and label content that is conceptually similar to existing sensitive documents, such as internal strategy memos or proprietary technical specifications, without relying on explicit keywords or recognized sensitive information types. Which Microsoft Purview solution should the officer use to achieve this?

Question 76mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

You are the Microsoft 365 administrator for Contoso Ltd. The compliance team needs to implement data lifecycle management and records management using Microsoft Purview. Which three of the following actions should you take to meet these requirements? (Choose three.)

Question 77mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

A global administrator at Fabrikam Inc. plans to implement Microsoft Purview to manage compliance for sensitive information. The solution must include the ability to discover, classify, and protect sensitive data across Microsoft 365 services. Which three of the following should the administrator configure? (Choose three.)

Question 78mediummulti select
Read the full NAT/PAT explanation →

You are the Microsoft 365 Administrator for a multinational organization that must comply with various regulatory requirements, including GDPR, SOX, and internal data retention policies. You are deploying Microsoft Purview compliance solutions. Which four of the following actions are valid steps when managing compliance using Microsoft Purview? (Choose all that apply. There are four correct answers.)

Question 79mediumdrag order
Read the full Manage compliance by using Microsoft Purview explanation →

Drag and drop the steps to configure Data Loss Prevention (DLP) policies in Microsoft Purview in the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4
5Step 5
Question 80mediumdrag order
Read the full Manage compliance by using Microsoft Purview explanation →

Drag and drop the steps to configure Microsoft 365 audit log search in the correct order.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4
5Step 5
Question 81mediummatching
Read the full Manage compliance by using Microsoft Purview explanation →

Match each Microsoft 365 role to its administrative scope.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Full access to all admin features

Resets passwords for non-admins

Manages Exchange Online

Manages users and groups

Manages security policies

Question 82mediummatching
Read the full Manage compliance by using Microsoft Purview explanation →

Match each Microsoft 365 migration tool to its use case.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Migrate mailboxes from on-premises to Exchange Online

Migrate files from on-premises to SharePoint and OneDrive

Sync on-premises identities to Azure AD

Orchestrate large-scale migrations

Migrate data from Google Workspace

Question 83mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview to enforce data loss prevention (DLP) policies. Users report that a DLP policy blocks legitimate sharing of a document containing sensitive financial data. You need to allow the sharing while still protecting the data. What should you do?

Question 84easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A company needs to automatically retain all emails sent to or from external partners for 7 years. They also need to ensure that after 7 years, the emails are permanently deleted. What should you configure in Microsoft Purview?

Question 85hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Information Protection with sensitivity labels. Users complain that when they apply the 'Confidential' label to a document, the footer and header are not applied automatically. The label is configured to have a footer reading 'Confidential' and a header reading 'Sensitive'. What is the most likely cause?

Question 86mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Compliance Manager to manage compliance activities. Which TWO actions can be performed directly from Compliance Manager?

Question 87hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Lifecycle Management to manage data retention. You need to retain all documents in a SharePoint site for 5 years and then allow users to delete them manually. Which THREE settings must be configured?

Question 88easymulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your company is implementing Microsoft Purview Data Loss Prevention (DLP) to protect credit card numbers in emails. Which THREE actions can a DLP policy take when a match is found?

Question 89hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are reviewing a Microsoft Purview auto-labeling policy configuration. The SensitivityTypes GUID corresponds to a sensitive info type that detects credit card numbers. The LabelId is for a 'Confidential' label. Users report that documents containing credit card numbers are not being automatically labeled. What is the most likely reason?

Exhibit

{
  "Assignment": {
    "Target": {
      "All": "AllUsers"
    },
    "Method": "Automatic",
    "Condition": {
      "SensitivityTypes": ["9f1cff3e-8e2d-4b9a-9a0d-1c2d3e4f5a6b"]
    },
    "LabelId": "e1f6a5b4-3c2d-4e5f-9a8b-7c6d5e4f3a2b"
  }
}
Question 90mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You run the Get-RetentionCompliancePolicy cmdlet and see the output. Your organization wants to retain all ProjectX documents for 10 years and then allow users to delete them. However, users complain that documents are being deleted automatically. What is the issue?

Exhibit

Get-RetentionCompliancePolicy -Identity "ProjectXRetention" | Format-List

Name                        : ProjectXRetention
Comment                     : Retain ProjectX documents
Enabled                     : False
Mode                        : Enable
Locations                   : {SharePoint, Exchange}
RetentionDuration           : 3650
RetentionDurationDisplayHint : Days
RetentionTrigger            : DateCreated
RetentionAction             : Delete
Question 91easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You search the unified audit log and find an entry where the SecureScore changed from 75 to 80. Which Microsoft Purview feature is most likely responsible for this change?

Exhibit

Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-30) -Operations SecureScoreUpdate | Format-Table UserIds, Operations, AuditData

UserIds: admin@contoso.com
Operations: SecureScoreUpdate
AuditData: {"SecureScoreUpdate":{"Action":"ScoreChanged","NewScore":80,"OldScore":75}}
Question 92mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview eDiscovery (Premium) for a legal investigation. You need to collect data from Microsoft Teams chat messages and channel conversations. The case manager wants to search for specific keywords and exclude irrelevant content. What should you do?

Question 93hardmultiple choice
Read the full NAT/PAT explanation →

Your organization is implementing Microsoft Purview Communication Compliance to detect potential insider trading. You need to scan internal emails for specific patterns and assign reviewers from the legal team. What is the minimum number of policies required?

Question 94easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A user in your organization receives a 'Message blocked' notification when trying to send an email with a credit card number. The DLP policy is configured to block such emails. The user claims the credit card number is a valid test number used for training. What should you do to allow the email while maintaining security?

Question 95mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Records Management. You need to declare a document as a regulatory record. Which TWO conditions must be met?

Question 96hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are configuring an auto-labeling policy in Microsoft Purview. The policy is set to apply the 'Confidential' label to documents that contain a specific sensitive info type. However, when a document is auto-labeled, users report that the footer and header are not applied. The label 'Confidential' itself does not have marking configurations. What is the most likely reason?

Exhibit

{
  "InformationProtection": {
    "LabelPolicy": {
      "Id": "IP_LabelPolicy_1234",
      "Labels": [
        {"Id": "General", "DisplayName": "General"},
        {"Id": "Confidential", "DisplayName": "Confidential"}
      ],
      "Settings": {
        "DefaultLabelId": "General",
        "RemoveLabelingOnExit": false,
        "MarkingDefaults": {
          "Footer": "This document is confidential - Do not share",
          "Header": "Confidential"
        }
      }
    }
  }
}
Question 97mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Lifecycle Management. You need to review the disposition of content that has reached the end of its retention period. What should you configure?

Question 98mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company uses Microsoft Purview to manage data classification. A user reports that a sensitive document is being blocked from external sharing even though the applied sensitivity label allows external sharing. The document is stored in SharePoint Online. What should you check first?

Question 99easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization needs to ensure that all emails containing credit card numbers are automatically encrypted before being sent to external recipients. Which Microsoft Purview solution should you configure?

Question 100hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are reviewing a Microsoft Purview Data Lifecycle Management policy. A document labeled 'Personal Data' also contains EU_Deceased_Data. What is the retention outcome for this document?

Exhibit

{
  "Name": "GDPR Data Subject Request Policy",
  "PolicyType": "DataLifecycleManagement",
  "RetentionRules": [
    {
      "Action": "Retain",
      "Duration": 365,
      "Condition": {
        "SensitivityLabel": "Personal Data"
      }
    },
    {
      "Action": "Delete",
      "Duration": 90,
      "Condition": {
        "ContentContainsSensitiveInformation": "EU_Deceased_Data"
      }
    }
  ]
}
Question 101mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Information Protection. You need to ensure that when users manually apply a 'Confidential' label to a document in Word, the document is automatically marked with a footer 'CONFIDENTIAL' and encrypted. What must you configure?

Question 102hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A company uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data. They recently deployed Microsoft Copilot for Microsoft 365. Users can now ask Copilot to summarize documents that contain sensitive information. How should the company extend DLP protection to Copilot interactions?

Question 103easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization needs to automatically detect and classify documents containing passport numbers in SharePoint Online. Which Microsoft Purview feature should you use?

Question 104mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A user has a document in SharePoint Online that is subject to a retention policy with a retention period of 5 years. The user attempts to delete the document but receives an error. What is the most likely reason?

Question 105hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Compliance Manager. You need to assign a control to a specific user for implementation. What should you do?

Question 106easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company is implementing Microsoft Purview Audit (Standard). You need to search for activities performed by a specific user in Exchange Online. Which log should you query?

Question 107mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO Microsoft Purview solutions can be used to detect and prevent the unauthorized sharing of sensitive information in Microsoft Teams messages?

Question 108hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which THREE actions can be taken by a Microsoft Purview Data Loss Prevention (DLP) policy in Exchange Online?

Question 109easymulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO Microsoft Purview solutions are primarily used for data classification?

Question 110hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You run a Content Search in Microsoft Purview eDiscovery (Standard) for emails containing a specific keyword. The result shows one item in the DeletedItems folder. What is the most likely reason this email appears?

Exhibit

{
  "SearchResult": {
    "Status": "Completed",
    "Items": [
      {
        "Id": "1",
        "Location": "user@contoso.com",
        "Size": 1024,
        "OriginalPath": "/Users/user/DeletedItems/email.msg",
        "LastModifiedTime": "2024-01-15T10:00:00Z"
      }
    ]
  }
}
Question 111mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Records Management. You need to ensure that when a document is declared a record, it cannot be edited or deleted by users. Which type of record should you use?

Question 112hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company uses Microsoft Purview Data Lifecycle Management. You have a policy that retains items for 3 years and then deletes them. A user places an eDiscovery hold on a folder that contains items subject to this policy. What happens to those items after 3 years?

Question 113hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft 365 E5 licenses. You need to configure retention labels to automatically retain emails related to ongoing litigation for 5 years and then delete them. The labels must be applied based on specific keywords in the email subject. What should you use?

Question 114mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company has a Microsoft 365 E5 subscription. You need to prevent users from sharing files containing credit card numbers with external users. What should you configure?

Question 115hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Lifecycle Management. You need to ensure that after an employee leaves, their OneDrive content is retained for 7 years and then automatically deleted. The retention label must be applied automatically when the employee is marked as inactive in Microsoft Entra ID. What should you configure?

Question 116easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

You are a compliance administrator. You need to search for emails that contain trade secrets sent by a specific user in the last month. The search must include all mailboxes. What should you use?

Question 117mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Records Management. You need to ensure that records are marked as regulatory records and cannot be deleted or modified by any user, including administrators. The records must be retained for 10 years. What should you do?

Question 118easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

You need to implement a solution that allows users to classify documents containing personal data as 'Highly Confidential' and automatically encrypt them when shared via email. What should you configure?

Question 119hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company is migrating from an on-premises file server to SharePoint Online. You need to ensure that files containing personally identifiable information (PII) are automatically detected and classified with a sensitivity label. What should you use?

Question 120mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization has a Microsoft 365 E5 subscription and uses Microsoft Teams. You need to prevent external users from being added to sensitive teams that contain financial data. What should you configure?

Question 121easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

You need to monitor which users have accessed a specific document stored in SharePoint Online over the last 90 days. What should you use?

Question 122mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO actions can you perform using Microsoft Purview Data Loss Prevention (DLP) policies?

Question 123hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which THREE components are required to implement auto-labeling for sensitivity labels in Microsoft 365?

Question 124easymulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO features are part of Microsoft Purview Communication Compliance?

Question 125hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are a compliance administrator. You need to ensure that documents in the Project X site are retained for 365 days after the last modification and then deleted. The current configuration is shown. What is the outcome?

Exhibit

{
  "Labels": [
    {
      "Name": "ProjectX-Retention",
      "DisplayName": "Project X Retention",
      "Settings": {
        "RetentionAction": "KeepThenDelete",
        "RetentionDuration": 365,
        "RetentionType": "ModificationAgeInDays"
      }
    }
  ],
  "Policies": [
    {
      "Name": "ProjectX-Policy",
      "Labels": ["ProjectX-Retention"],
      "Locations": ["SharePoint"],
      "AdaptiveScopes": [
        {
          "Name": "ProjectX Site",
          "Query": "SiteUrl -eq 'https://contoso.sharepoint.com/sites/projectx'"
        }
      ]
    }
  ]
}
Question 126mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You run the PowerShell command shown. The output shows no results. The user confirms they downloaded files from SharePoint last week. What is the most likely cause?

Exhibit

Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-7) -EndDate (Get-Date) -RecordType SharePointFileOperation -Operations FileDownloaded -UserIds user@contoso.com | Format-Table CreationTime, Operation, ItemName
Question 127easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are configuring auto-labeling for sensitivity labels. The JSON snippet is part of the policy configuration. When a document containing a credit card number is detected, what will happen?

Exhibit

{
  "sensitivityRules": [
    {
      "id": "CreditCardRule",
      "sensitiveInfoTypeIds": ["Credit Card Number"],
      "action": "encrypt"
    }
  ]
}
Question 128mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Loss Prevention (DLP) policies to protect sensitive data. A user reports that they can still send credit card numbers via email despite the DLP policy being enabled. You verify that the policy is applied to the correct users and the rule includes the 'Credit Card Number' sensitive info type. What should you check next?

Question 129hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Contoso Ltd. uses Microsoft Purview to manage compliance for sensitive data across Microsoft 365 and Azure. They need to ensure that all documents containing personally identifiable information (PII) are automatically labeled with a 'Highly Confidential' sensitivity label. The solution must also require users to justify access to these labeled documents. Which two actions should you configure?

Question 130easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization needs to implement a Microsoft Purview data classification solution that scans data in Microsoft 365, Azure SQL Database, and Amazon S3. Which Microsoft Purview feature should you use?

Question 131mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization has a Microsoft Purview data classification policy that automatically applies a 'General' label to all documents. However, users are complaining that the label is not being applied to documents stored in SharePoint Online. You confirm that the policy is configured correctly and the license is assigned. What is the most likely cause?

Question 132hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company uses Microsoft Purview to manage compliance. You need to ensure that only users who have passed a training course can access documents labeled 'Confidential'. The solution must enforce this dynamically without manual intervention. What should you configure?

Question 133easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization is required to retain all financial records for seven years. Which Microsoft Purview solution should you use to enforce this requirement?

Question 134mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization has a Microsoft Purview auto-labeling policy that applies a 'Highly Confidential' label to emails containing 'Social Security Number'. The policy is configured to label emails when they are sent. However, some emails are still being sent without the label. What should you verify first?

Question 135hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company uses Microsoft Purview to manage compliance. You need to set up a process that allows users to request permission to access a document labeled 'Confidential' and automatically grants access if the user's manager approves. Which feature should you use?

Question 136mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview to classify and protect data. You need to create a custom sensitive info type that detects employee IDs formatted as 'EMP-XXXXX' where X is a digit. Which approach should you use?

Question 137hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You have a DLP policy in test mode as shown. A user reports that they received a notification that sharing credit card numbers is blocked, but they were still able to share them. What is the most likely reason?

Exhibit

Refer to the exhibit.

{
  "Name": "DLP Policy - Credit Card",
  "Mode": "Test",
  "Rules": [
    {
      "Name": "Block Credit Card Numbers",
      "Condition": {
        "SensitiveInformation": [
          {
            "id": "50842eb7-edc8-4019-85dd-5a5c1f2bb085",
            "minCount": 1
          }
        ]
      },
      "Actions": [
        "BlockAccess",
        "NotifyUser"
      ],
      "UserNotifications": {
        "Enabled": true,
        "NotifyUserInEmail": true
      }
    }
  ]
}
Question 138easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

You need to ensure that all documents in a SharePoint Online site are automatically labeled with a 'Confidential' sensitivity label. Which Microsoft Purview feature should you use?

Question 139mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization receives a data subject request (DSR) to export personal data of a user. Which Microsoft Purview solution should you use to search for and export the data?

Question 140hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You have two DLP compliance rules as shown. A user sends an email containing both PII and credit card numbers. Which rule will be applied?

Exhibit

Refer to the exhibit.

Get-DlpComplianceRule -Identity "Block PII" | Format-List

Name           : Block PII
Policy         : DLP Policy 1
Conditions     : @{SensitiveInformation=System.Object[]; MinCount=1}
Actions        : {BlockAccess, NotifyUser}
Mode           : Enable
Priority       : 2

Get-DlpComplianceRule -Identity "Block Credit Cards" | Format-List

Name           : Block Credit Cards
Policy         : DLP Policy 2
Conditions     : @{SensitiveInformation=System.Object[]; MinCount=1}
Actions        : {BlockAccess, NotifyUser}
Mode           : Enable
Priority       : 1
Question 141mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview to manage compliance. You need to ensure that all documents containing 'Project X' are automatically retained for 5 years. Which solution should you use?

Question 142hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are configuring Microsoft Purview Records Management. You have a document that is classified under 'Finance' department and 'Invoices' category. Which retention label will be applied if both labels are auto-applied based on the same condition?

Exhibit

Refer to the exhibit.

{
  "RecordsManagement": {
    "FilePlan": {
      "Departments": ["Finance", "HR"],
      "Categories": ["Financial Records", "Employee Records"],
      "SubCategories": ["Invoices", "Payroll"]
    },
    "RetentionLabels": [
      {
        "Name": "Finance Retention",
        "RetentionDuration": "7 Years",
        "RetentionAction": "Retain",
        "DispositionReview": true
      },
      {
        "Name": "HR Retention",
        "RetentionDuration": "5 Years",
        "RetentionAction": "RetainAndDelete",
        "DispositionReview": false
      }
    ]
  }
}
Question 143mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data. Users report that they are unable to share files containing credit card numbers via email. You need to allow sharing with specific business partners while maintaining protection for all other recipients. What should you configure?

Question 144easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company is implementing Microsoft Purview Records Management. You need to ensure that invoices are retained for seven years after they are paid, and then automatically deleted. Which type of label should you create?

Question 145hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Lifecycle Management and has a retention policy that retains all SharePoint documents for three years. However, for a specific research project, you need to retain documents for five years after the project ends. Some documents are already marked with a different retention label. What should you do?

Question 146mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Audit (Standard) for auditing user activity. You receive an alert that a user accessed sensitive files in SharePoint Online. You need to investigate the exact actions performed by the user. Which action should you take?

Question 147hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

A company uses Microsoft Purview Information Protection to classify and protect sensitive data. They have configured auto-labeling policies for Microsoft 365 apps. However, users report that some documents containing credit card numbers are not being labeled automatically. You verify that the sensitive info type for credit cards is correctly defined. What is the most likely cause?

Question 148easymultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization needs to prevent users from sharing documents containing personally identifiable information (PII) with external users. You have Microsoft Purview Data Loss Prevention (DLP) deployed. What should you configure?

Question 149mediummultiple choice
Read the full NAT/PAT explanation →

Your organization uses Microsoft Purview Records Management and has a file plan that categorizes records by department. You need to ensure that HR records are retained for seven years after employee termination, while finance records are retained for ten years after the end of the fiscal year. What is the most efficient way to implement this?

Question 150hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data in Microsoft Teams. Users are sharing credit card numbers in Teams chat messages. You have a DLP policy that detects credit card numbers and blocks the message. However, users report that they can still send messages containing credit card numbers without any block. What is the most likely reason?

Question 151mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Communication Compliance to detect inappropriate messages in Microsoft Teams. You need to define policies that automatically detect and review messages containing profanity or harassment. Which built-in classifier should you use?

Question 152mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO actions can you perform using Microsoft Purview eDiscovery (Premium)? (Choose two.)

Question 153hardmulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which THREE components are required to implement Microsoft Purview Data Lifecycle Management for Microsoft 365? (Choose three.)

Question 154easymulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Which TWO types of content can be reviewed using Microsoft Purview Communication Compliance? (Choose two.)

Question 155hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Refer to the exhibit. You are a Microsoft Purview administrator. The exhibit shows the configuration of a sensitivity label. Users report that when they create a document containing a credit card number, the label is automatically applied, but the document is not encrypted. What is the most likely cause?

Exhibit

{
  "LabelId": "12345678-1234-1234-1234-123456789abc",
  "DisplayName": "Confidential - Financial",
  "Settings": {
    "Encryption": {
      "Enabled": true,
      "RightsManagementTemplateId": "43218765-4321-4321-4321-432187654321"
    },
    "Marking": {
      "Enabled": true,
      "HeaderText": "CONFIDENTIAL",
      "FooterText": "This document is confidential."
    },
    "AutoLabeling": {
      "Enabled": true,
      "SensitiveInfoTypeIds": ["credit-card-number", "aba-routing-number"]
    }
  }
}
Question 156hardmultiple choice
Read the full NAT/PAT explanation →

You are the compliance administrator for Contoso Ltd., a multinational corporation with 10,000 users. The company uses Microsoft 365 E5 licenses and has deployed Microsoft Purview. The legal department requires that all email communications related to ongoing litigation be preserved for the duration of the case. You have identified the custodians and relevant keywords. You need to ensure that all relevant emails are preserved, regardless of whether users delete them. Additionally, you need to allow authorized reviewers to search and export the preserved emails without affecting the original data. Finally, you must ensure that the preservation is lifted automatically when the case is closed. What should you do?

Question 157mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data. You have a DLP policy that blocks sharing of documents containing personally identifiable information (PII) with external users. However, the HR department needs to share PII with a third-party benefits administrator for open enrollment. They request an exception that allows sharing only with the specific external domain 'benefits.contoso.com'. You need to implement the exception without weakening the overall policy. The solution must be centrally managed and auditable. What should you do?

Question 158hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive email. You have a DLP policy that blocks emails containing credit card numbers. However, users report that some legitimate emails with credit card numbers are being blocked, while others with similar content are allowed. You need to investigate the discrepancy and ensure consistent enforcement. What should you do first?

Question 159mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your company is implementing Microsoft Purview Information Protection to classify and protect sensitive documents. You need to ensure that all documents containing personally identifiable information (PII) are automatically labeled. Which TWO actions should you take? (Select TWO.)

Question 160mediummulti select
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization is deploying Microsoft Purview Data Lifecycle Management to manage data retention and deletion. You need to design a retention policy for SharePoint Online sites that automatically deletes documents after 7 years, but allows users to manually delete documents earlier if needed. Which THREE actions should you take? (Select THREE.)

Question 161hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

You are reviewing a Conditional Access policy JSON for your Microsoft Entra ID tenant. The first policy blocks access from high-risk IP addresses. The second policy requires MFA for all users from trusted locations. You notice that users from high-risk IP addresses are still prompted for MFA instead of being blocked. What is the most likely cause?

Exhibit

Refer to the exhibit.

{
  "rules": [
    {
      "name": "Block High Risk IP",
      "id": "12345678-1234-1234-1234-123456789012",
      "priority": "1",
      "action": "BlockAccess",
      "conditions": {
        "applications": ["All"],
        "clientType": "All",
        "devicePlatforms": ["All"],
        "locations": ["HighRiskIP"]
      },
      "grantControls": null
    },
    {
      "name": "Require MFA for External Users",
      "id": "87654321-4321-4321-4321-210987654321",
      "priority": "2",
      "action": "GrantAccess",
      "conditions": {
        "applications": ["All"],
        "clientType": "All",
        "devicePlatforms": ["All"],
        "locations": ["AllTrusted"]
      },
      "grantControls": {
        "builtInControls": ["mfa"]
      }
    }
  ]
}
Question 162mediummultiple choice
Read the full NAT/PAT explanation →

You are the compliance administrator for Contoso Ltd., a multinational corporation with 10,000 users. The company uses Microsoft 365 E5 licenses and has deployed Microsoft Purview Compliance Manager. The legal department requires that all contracts be retained for 10 years after the contract ends, and then be permanently deleted. Contracts are stored in a SharePoint Online site named 'Contracts'. The site already has a retention policy that retains all documents for 5 years. You need to configure additional retention settings to meet the legal requirement without disrupting existing retention. What should you do?

Question 163hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization, Fabrikam Inc., uses Microsoft Purview Data Loss Prevention (DLP) to protect sensitive data in Microsoft Teams. You have a DLP policy that blocks sharing of credit card numbers in Teams messages. Recently, users have reported that they cannot share legitimate credit card numbers for business purposes, even with customers. You need to allow users to override the block for legitimate sharing, but require them to provide a business justification. What should you configure?

Question 164mediummultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your company, Wingtip Toys, uses Microsoft Purview Audit (Standard) to track user activity. The compliance officer needs to investigate a potential data leak involving a user who may have accessed sensitive files in SharePoint Online. You need to search the audit log for file access events for that specific user over the past 30 days. The audit log contains millions of records. What is the most efficient way to retrieve the required audit records?

Question 165hardmultiple choice
Read the full Manage compliance by using Microsoft Purview explanation →

Your organization, Contoso, uses Microsoft Purview Data Lifecycle Management to manage data retention. You have a retention policy that deletes emails in Exchange Online after 3 years. The legal department has started a litigation hold for a specific user, requiring that all the user's emails be preserved indefinitely. You need to ensure that the litigation hold takes precedence over the retention policy, and that no emails are deleted. What should you do?

Question 166easymultiple choice
Read the full NAT/PAT explanation →

Your organization uses Microsoft Purview Communication Compliance to detect inappropriate messages in Microsoft Teams. You need to configure a policy that monitors for potential harassment based on a built-in classifier. The policy should alert designated reviewers when a match is found. What is the minimum configuration required?

Practice tests

Scored 10-question sessions with instant feedback and explanations.

MS-102 Practice Test 1 — 10 Questions→MS-102 Practice Test 2 — 10 Questions→MS-102 Practice Test 3 — 10 Questions→MS-102 Practice Test 4 — 10 Questions→MS-102 Practice Test 5 — 10 Questions→MS-102 Practice Exam 1 — 20 Questions→MS-102 Practice Exam 2 — 20 Questions→MS-102 Practice Exam 3 — 20 Questions→MS-102 Practice Exam 4 — 20 Questions→Free MS-102 Practice Test 1 — 30 Questions→Free MS-102 Practice Test 2 — 30 Questions→Free MS-102 Practice Test 3 — 30 Questions→MS-102 Practice Questions 1 — 50 Questions→MS-102 Practice Questions 2 — 50 Questions→MS-102 Exam Simulation 1 — 100 Questions→

Practice by domain

Each domain maps to a weighted exam section. Focus on the domain where you are weakest.

Deploy and manage a Microsoft 365 tenantImplement and manage Microsoft Entra identity and accessManage security and threats by using Microsoft Defender XDRManage compliance by using Microsoft PurviewManage users, groups, licensing, and supportImplement and manage identity and access in Microsoft Entra ID

Practice by scenario

Filter questions by type — troubleshooting, exhibit, drag-and-drop, PBQ, ACLs, OSPF, and more.

Browse scenarios→

Continue studying

All Manage compliance by using Microsoft Purview setsAll Manage compliance by using Microsoft Purview questionsMS-102 Practice Hub