You are the Microsoft 365 administrator for a company.
An employee requests personal data under General Data Protection Regulation (GDPR) guidelines.
You need to retrieve data for the employee.
What should you do?
Correct Answer: A
Explanation:
Under GDPR, when an employee requests access to their personal data, Microsoft 365 provides Data Subject Requests (DSRs) to help organizations locate, export, review, or delete personal data.
A. Create a data subject request case ✅
This is the correct method for handling and retrieving an individual's personal data under GDPR.
Why the others are incorrect
B. Create a retention policy ❌
Used to retain or delete content according to compliance requirements, not to retrieve personal data.
C. Create a data-loss prevention (DLP) policy ❌
Prevents sensitive information from being shared improperly.
D. Create a GDPR assessment ❌
Used to evaluate compliance readiness, not to fulfill a user's data request.
✅ Correct Answer: A. Create a data subject request case.
Question 2
Your organization plans to deploy Microsoft 365 in a hybrid scenario.
You need to ensure that employees can use a smart card for authentication.
Which hybrid identity solution should you implement?
Correct Answer: B
Explanation:
If employees must use smart cards for authentication in a Microsoft 365 hybrid environment, you need a federated identity solution that supports smart card authentication.
B. Active Directory Federation Services (AD FS) ✅
AD FS supports advanced authentication methods, including smart cards and certificate-based authentication, making it the correct choice.
Why the others are incorrect
A. Password Hash Synchronization with Single Sign-On ❌
Uses password-based authentication and does not provide native smart card authentication.
C. PingFederate and federation integration ❌
While PingFederate can support smart cards, Microsoft exam questions typically expect the Microsoft-native solution, AD FS, for this requirement.
D. Pass-through Authentication and Single Sign-On ❌
Validates passwords against on-premises Active Directory but does not provide smart card authentication.
✅ Correct Answer: B. Active Directory Federation Services (AD FS).
Question 3
You are the Microsoft 365 administrator for a company.
Your company plans to open a new office in the United Kingdom.
You need to provide penetration test and security assessment reports for the new office.
Where can you locate the required reports?
Correct Answer: D
Explanation:
The Services Trust Portal (STP) provides Microsoft audit reports, compliance documentation, penetration test summaries, security assessments, and regional compliance information. For a new office in the United Kingdom, you would use the Regional Compliance section to access reports related to regional regulations and compliance requirements. Why the others are incorrect
A. Data Governance page of the Security and Compliance portal ❌
Focuses on data classification, retention, and governance, not penetration test reports.
B. Compliance Manager page of the Services Trust Portal ❌
Used to assess and manage compliance posture, not primarily to obtain penetration testing and security assessment reports.
C. Data Loss Prevention page of the Security and Compliance portal ❌
Used to create and manage DLP policies.
✅ Correct Answer: D. Regional Compliance page of the Services Trust Portal.
Demo Practice Mode
You are viewing only the questions marked as Demo.