Restricting Clipboard Access for Credit Card Data | SC-400 Exam
Question
You are configuring a data loss prevention (DLP) policy to report when credit card data is found on a Windows 10 device joined to Azure Active Directory (Azure AD)
You plan to use information from the policy to restrict the ability to copy the sensitive data to the clipboard.
What should you configure in the policy rule?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.D.
https://docs.microsoft.com/en-us/microsoft-365/compliance/endpoint-dlp-using?view=o365-worldwideTo configure a data loss prevention (DLP) policy to report when credit card data is found on a Windows 10 device joined to Azure Active Directory (Azure AD), and then use the information from the policy to restrict the ability to copy the sensitive data to the clipboard, you need to configure an "Action" in the policy rule.
The "Action" is a response that occurs when a data loss prevention (DLP) policy is triggered. In this case, when the policy rule detects credit card data on a Windows 10 device joined to Azure AD, it will trigger the "Action" you have configured.
To restrict the ability to copy the sensitive data to the clipboard, you need to choose an appropriate "Action." One of the available actions is to "Block Access" to the sensitive data. You can also customize the action by choosing to "Notify User" with a custom message that explains why the access has been blocked. This will help prevent users from unknowingly violating the policy by providing them with clear information about what actions are permitted and what are not.
Therefore, the correct answer is B - an Action. The incident report is used to notify the appropriate personnel when a policy rule is triggered. User notifications and user overrides are not directly related to configuring an action to restrict the ability to copy sensitive data to the clipboard.
