You are planning a data loss prevention (DLP) solution that will apply to computers that run Windows 10
You need to ensure that when users attempt to copy a file that contains sensitive information to a USB storage device, the following requirements are met: -> If the users are members of a group named Group1, the users must be allowed to copy the file, and an event must be recorded in the audit log.
-> All other users must be blocked from copying the file.
What should you create?
Click on the arrows to vote for the correct answer
A. B. C.A.
To meet the requirements of allowing members of a specific group to copy a file containing sensitive information and block all other users, a Data Loss Prevention (DLP) policy needs to be created. The DLP policy should be applied to computers that run Windows 10.
There are a few options for creating this policy, but the best approach would be to create one DLP policy that contains two DLP rules. The two rules are:
By using a single policy with two rules, it ensures that the policy can be easily managed and updated in the future. It also ensures that the policy is efficient and will not cause unnecessary disruptions to normal business operations.
Creating two separate DLP policies, each containing one rule, is not the best approach because it would require managing multiple policies, and it would not allow for easy updates to the policy.
Creating one DLP policy with one rule would not meet the requirements of allowing members of a specific group to copy the file while blocking all other users. Therefore, the best approach is to create one DLP policy that contains two DLP rules.