You have a Microsoft 365 E5 subscription that contains a Microsoft SharePoint site named site1.
You need to ensure that site1 meets the following requirements:
• Retains all data for 10 years
• Prevents the sharing of data outside the organization
Which two items should you create and apply to site1? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
To meet the requirements of retaining all data for 10 years and preventing the sharing of data outside the organization, you need to create a retention policy and a data loss prevention (DLP) policy. The retention policy ensures that all data on the SharePoint site is retained for the specified period (10 years). The DLP policy helps prevent the sharing of sensitive information outside the organization by applying rules and restrictions to the data stored in the SharePoint site.
A, B IS THE RIGHT ANSWER
Would be ABF if that was an option. Need a retention policy obviously for 10 yr requirement obviously, but you should create a DLP policy that looks at sensitivity labels to determine if a file should be shared externally. However sensitivity labels alone won't stop sharing without a DLP policy in place to act on them. https://microsoft.github.io/ComplianceCxE/notes/mip-dlp/DLP-policy-externalshare/
1. Retention Policy 2. Sensitivity Label https://techcommunity.microsoft.com/t5/microsoft-365/sensitivity-labels-control-external-sharing-for-sharepoint/m-p/1970242
AB for sure
AB is correct
I choose DLP create a retention label Because you might have the retention label before making a label policy. You make a label policy by publishing a label.
Answer: A and B Retains all data for 10 years: Retention Policy Prevents the sharing of data outside the organization: DLP Policy For all A + F Persons: you dont need a sensitiv label for DLP + SharePoint and you ignore the "Retains all data for 10 years" requirement. New DLP Policy -> Only SharePoint (maybe specific site) -> Condition: Content is shared for M365 (Detects when content is sent in email message, Teams chat or channel message, or shared in a SharePoint or OneDrive document.) -> Action: Block access
I think it is AB because yes, you can use a sensitivity label for your DLP policy, but the labels themselves won't do anything in this scenario, the DLP policy prevents content from being shared externally.
A and B is correct
Only think I doubt about is that a retention policy is for the whole sharepoint environment instead of just one site