MS-102 Question #298: Real Exam Question with Answer & Explanation

Question

You have a Microsoft 365 E5 tenant. You create an auto-labeling policy to encrypt emails that contain a sensitive info type. You specify the locations where the policy will be applied. You need to deploy the policy. What should you do first?

Options

• ARun the policy in simulation mode.
• BTurn on co-authoring for files with sensitivity labels.
• CReview the sensitive information in Activity explorer.
• DTurn on the policy.

Explanation

The first step to deploy an auto-labeling policy is to run it in simulation mode to evaluate its impact and accuracy.

Common mistakes.

• B. Turning on co-authoring for files with sensitivity labels is a separate configuration related to document collaboration, not a prerequisite for deploying an auto-labeling policy for emails.
• C. Reviewing sensitive information in Activity explorer might be part of an investigation or monitoring, but it is not the required first step for deploying a new auto-labeling policy; simulation mode is specifically designed for pre-deployment testing.
• D. Turning on the policy immediately without prior testing in simulation mode is risky, as it could lead to unintended encryption or data access issues, especially for a policy with significant impact like email encryption.

Concept tested. Auto-labeling policy deployment best practices

Reference. https://learn.microsoft.com/en-us/microsoft-365/compliance/auto-apply-sensitivity-labels?view=o365-worldwide#run-the-policy-in-simulation-mode

No community discussion yet for this question.