You have a Microsoft 365 subscription that uses Microsoft Defender for Office 365.
You have Microsoft SharePoint Online sites that contain sensitive documents. The documents contain customer account numbers that each consists of 32 alphanumeric characters.
You need to create a data loss prevention (DLP) policy to protect the sensitive documents.
What should you use to detect which documents are sensitive?
To detect which documents are sensitive, especially when looking for a specific pattern like a 32-character alphanumeric account number, RegEx pattern matching is the appropriate tool. Regular expressions allow you to define and search for specific patterns within text, making it possible to identify documents containing the sensitive information required. SharePoint search is more general and wouldn't necessarily recognize specific patterns like a 32-character alphanumeric string. A hunting query in Microsoft 365 Defender is designed for threat detection, not specific data patterns in documents. Azure Information Protection focuses on labeling and classifying documents rather than detecting them based on character patterns.
Azure API is the correct answer. The question is asking what you need. It is not asking you how to do it. You must use Azure AIP as a tool for DLP. And then Regex is a way to build your pattern in case there is not any built-in sensitive pattern type that supports your case (account number with 32 char). So bonus the regex ^[a-zA-Z0-9]{32}$
is correct!
I love the accurate answers!
Agreed
This is correct
You would use both C and D, so as with many MS exam questions, toss a coin, pick your answer and hope for the best.
I tried to apply the different solution, but only D seems to be correct, below the steps I followed in my environment: Open the Microsoft Pureview portal: 1) Create a new classifier: - Data Classification -> Classifiers -> Sensitive Info Type -> Create a new classifier with the regex (32 alphanumeric characters) https://learn.microsoft.com/en-us/purview/create-a-custom-sensitive-information-type?view=o365-worldwide 2) Create the DLP rule (using the previously created classifier) - Data Loss Prevention -> Policies -> Create a policy and using the previously created classifier. AIP uses labels, and I couldn't find the option to create them with Regex, moreover this functionality should be part of another plan
Read the question carefully ! We have a Defender for O365 and SPO sites containing sensitive docs and each of these docs contains CUSTOMER ACCOUNT NUMBER ! We need to use a " DLP POLICY" to protect the docs. The question is what should we need to "DETECT" which doc is sensitive ? Answer : " D "
One thing I know about Microsoft exams is the Scenario miss leads you. The question says, What should you use to detect which documents are sensitive? The account number in the scenario has nothing to do with the question. The answer is Azure Information Protection. what you should be thinking is sensitivity labels not how to do it.
Agree. Keyword is "detect"
D should be the correct answer as DLP policies in SharePoint and OneDrive for work or school web clients support various conditions and actions. You can define sensitive information types (SITs) or use regular expressions (RegEx) to match content and enforce protection.
D is correct; AIP provides a label function but cannot be used for DLP policy conditions;,DLP policies can be regular expressions https://learn.microsoft.com/ja-jp/purview/dlp-policy-learn-about-regex-use
Regular expressions (RegEx) are a powerful tool for pattern matching in text. They can be used to identify specific patterns of characters, such as 32 alphanumeric characters. This makes them ideal for detecting customer account numbers in documents.
https://learn.microsoft.com/en-us/purview/dlp-policy-learn-about-regex-use
Re-reading the question and focusing on the custom "PII" value format, I feel D is the better choice.
https://learn.microsoft.com/en-us/defender-cloud-apps/tutorial-dlp
I agree D is the correct answer
I agree D
Regex since questions asks what you use to detect the sensitive documents. So you would use RegEx pattern matching to detect the sensitive documents and the DLP policy to protect them.
Regex is the correct answer because, in the question, you need to create a DLP. and only regex can identify/detect which documents has hit
Option C
Bing AI: To detect which documents are sensitive, you should use D. RegEx pattern matching. RegEx pattern matching is a powerful tool for identifying specific patterns of characters within text. In this case, it can be used to identify the pattern of the 32 alphanumeric customer account numbers in your documents. Once these sensitive documents are identified, a data loss prevention (DLP) policy can be implemented to protect them. Please note that while the other options listed (SharePoint search, a hunting query in Microsoft 365 Defender, and Azure Information Protection) have their uses within the Microsoft 365 ecosystem, they are not specifically designed for detecting sensitive information based on character patterns. Therefore, RegEx pattern matching is the most suitable choice for this specific task.