Manage External Document Sharing in Microsoft OneDrive for Enhanced Security

Alerts for External Document Sharing in Microsoft OneDrive

Prev Question Next Question

Question

You need to be alerted when users share sensitive documents from Microsoft One Drive to any users outside your company.

What should you do?

Answers

A. From the Exchange admin center, create a data loss prevention (DLP) policy.

B. From the Azure portal, create an Azure Active Directory (Azure AD) Identity Protection policy.

C. From the Microsoft 365 compliance center, create an insider risk policy.

D. From the Cloud App Security portal, create a file policy.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-worldwide

The correct answer is D. From the Cloud App Security portal, create a file policy.

Explanation:

OneDrive for Business is a cloud-based storage platform that allows users to store, share, and collaborate on files securely. However, it is essential to monitor and control data sharing to prevent data breaches and unauthorized access to sensitive information.

To achieve this, you need to configure a file policy in the Cloud App Security portal. This policy will allow you to monitor and control file sharing and access in OneDrive for Business.

Here are the steps to create a file policy in the Cloud App Security portal:

Go to the Cloud App Security portal (https://portal.cloudappsecurity.com).
Click on the Policy tab on the left-hand side of the screen.
Click on the Create policy button.
Select the File policy option.
Give your policy a name and description.
Under the Conditions section, select the criteria for detecting sensitive files that are being shared.
Under the Actions section, select the action you want to take when sensitive files are being shared outside the company.
Click on the Create button to save the policy.

With this policy, you can set up alerts to be notified when users share sensitive files with external users, and you can take appropriate actions to prevent data breaches.

Option A, creating a data loss prevention (DLP) policy in the Exchange admin center, is not the correct answer because this policy will only monitor email messages, not OneDrive for Business sharing.

Option B, creating an Azure Active Directory (Azure AD) Identity Protection policy in the Azure portal, is not the correct answer because this policy is designed to monitor user sign-ins and risky user behavior, not OneDrive for Business sharing.

Option C, creating an insider risk policy in the Microsoft 365 compliance center, is not the correct answer because this policy is designed to detect and prevent insider threats, not external sharing of sensitive files in OneDrive for Business.

Prev Question Next Question