Book Image

Microsoft Information Protection Administrator SC-400 Certification Guide

By : Shabaz Darr, Viktor Hedberg
2 (1)
Book Image

Microsoft Information Protection Administrator SC-400 Certification Guide

2 (1)
By: Shabaz Darr, Viktor Hedberg

Overview of this book

Cloud technologies have massively increased the amount of data being produced and the places in which this data is stored. Without proper planning and discipline in configuring information protection for your data, you may be compromising information and regulatory compliance. Microsoft Information Protection Administrator SC-400 Certification Guide begins with an overview of the SC-400 exam, and then enables you to envision, implement, and administer the Information Protection suite offered by Microsoft. The book also provides you with hands-on labs, along with the theory of creating policies and rules for content classification, data loss prevention, governance, and protection. Toward the end, you'll be able to take mock tests to help you prepare effectively for the exam. By the end of this Microsoft book, you'll have covered everything needed to pass the SC-400 certification exam, and have a handy, on-the-job desktop reference guide.

Related Content you might be interested in

Current Title:

Small book image
Microsoft Information Protection Administrator SC-400 Certification Guide
Shabaz Darr | Viktor Hedberg
Feb, 2022 | 326 pages
Small book image
Microsoft 365 Security, Compliance, and Identity Administration
Peter Rising
Aug, 2023 | 630 pages
Small book image
Microsoft 365 Security Administration: MS-500 Exam Guide
Peter Rising
Jun, 2020 | 672 pages
Small book image
Microsoft 365 Mobility and Security – Exam Guide MS-101
Nate Chamberlain
Nov, 2019 | 312 pages
Table of Contents (19 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Reviews
Share Your Thoughts
1
Section 1: Exam Overview and Introduction to Information Protection
Section 1: Exam Overview and Introduction to Information Protection
Free Chapter
2
Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives
Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives
Technical requirements
Preparing for a Microsoft exam
Accessing resources and Microsoft Learn
Creating a Microsoft 365 trial account
Introducing the SC-400 exam objectives
Why should I take this exam?
Summary
3
Chapter 2: Introduction to Information Protection
Chapter 2: Introduction to Information Protection
Technical requirements
What is Information Protection?
Information protection use cases
Understanding the scope of Information Protection
Why is Information Protection important?
What are the benefits of implementing Information Protection in your organization?
Summary
4
Section 2: Implementing Information Protection
Section 2: Implementing Information Protection
5
Chapter 3: Creating and Managing Sensitive Information Types
Chapter 3: Creating and Managing Sensitive Information Types
Technical requirements
Selecting a sensitive information type based on an organization's requirements
Creating and managing custom sensitive information types
Creating custom sensitive information types with exact data matches
Implementing document fingerprinting
Creating a keyword dictionary
Summary
6
Chapter 4: Creating and Managing Trainable Classifiers
Chapter 4: Creating and Managing Trainable Classifiers
Technical requirements
What are trainable classifiers?
Identifying when to use trainable classifiers
Creating a trainable classifier
Verifying that a trainable classifier is performing properly
Retraining a classifier
Summary
7
Chapter 5: Implementing and Managing Sensitivity Labels
Chapter 5: Implementing and Managing Sensitivity Labels
Technical requirements
Identifying roles and permissions for administering sensitivity labels
Creating and managing sensitivity labels and applying sensitivity labels to Microsoft SaaS applications
Configuring automatic labeling policies and monitoring label usage
Applying bulk classification to on-premises data and managing protection settings
Applying and managing protections and restrictions
Summary
8
Chapter 6: Planning and Implementing Encryption for Email Messages
Chapter 6: Planning and Implementing Encryption for Email Messages
Technical requirements
Introduction to encryption in Microsoft 365
Defining requirements for implementing Office 365 Advanced Message Encryption
Implementing Office 365 Advanced Message Encryption
Summary
9
Section 3: Implementing Data Loss Prevention
Section 3: Implementing Data Loss Prevention
10
Chapter 7: Creating and Configuring Data Loss Prevention Policies
Chapter 7: Creating and Configuring Data Loss Prevention Policies
Technical requirements
Configuring data loss prevention for policy precedence
Configuring policies for Exchange Online, SharePoint sites, OneDrive, and Microsoft Teams
Integrating Information Protection with, and configuring policies in Microsoft Defender for Cloud Apps
Implementing data loss prevention policies in test mode
Summary
11
Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention
Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention
Technical requirements
Onboarding devices to Endpoint DLP
Configuring Endpoint DLP settings
Configuring policies for endpoints
Monitoring endpoint activities
Summary
12
Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities
Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities
Technical requirements
Managing and responding to DLP policy violations
Reviewing and analyzing DLP reports
Managing permissions for DLP reports
Managing DLP violations in Microsoft Defender for Cloud Apps
Summary
13
Section 4: Implementing Information Governance
Section 4: Implementing Information Governance
14
Chapter 10: Configuring Retention Policies and Labels
Chapter 10: Configuring Retention Policies and Labels
Technical requirements
Creating and applying retention label policies
Creating and applying retention labels
Configuring and publishing auto-apply label policies
Summary
15
Chapter 11: Managing Data Retention in Microsoft 365
Chapter 11: Managing Data Retention in Microsoft 365
Technical requirements
Creating and applying retention policies in Microsoft SharePoint and OneDrive
Creating and applying retention policies in Microsoft Teams
Recovering content in SharePoint and OneDrive
Implementing retention policies and tags in Microsoft Exchange
Applying mailbox holds in Microsoft Exchange
Implementing Microsoft Exchange Online archiving policies
Summary
16
Chapter 12: Implementing Microsoft Purview Records Management
Chapter 12: Implementing Microsoft Purview Records Management
Technical requirements
Configuring labels for records management
Managing and migrating retention requirements with a file plan
Configuring automatic retention using file plan descriptors
Implementing in-place records management in Microsoft SharePoint
Configuring event-based retention
Managing the disposition of records
Summary
17
Practice Exam
Practice Exam
Test questions
Answer key
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Managing permissions for DLP reports

As with all services in Microsoft 365, you need specific permissions to be able to review DLP reports in the compliance center. The following table outlines the required permissions and their purpose:

Table 9.1 – Required permissions

Users within your IT admin team, or members of the compliance team who review DLP reports, require the correct permissions to the compliance center. The default permissions for your admin tenant are that they will have access to this area, therefore they are able to give the relevant team members access to the Microsoft Purview Compliance Portal without granting access to the entire tenant. Follow the next steps to do this:

  1. In Azure AD, create a group and add the members of your team that are compliance officers to it.
  2. On the Permissions & roles page, create a role group under Compliance center:

Figure 9.8 – Compliance center permissions...

Previous Section
End of Section 5
Next Section