Crucial Exams

Microsoft 365 Administrator Expert MS-102 Practice Question

Contoso uses Microsoft Defender for Cloud Apps integrated with Microsoft Purview sensitivity labels. You are asked to alert SecOps and automatically quarantine any file labeled "Highly Confidential" when a user creates a sharing link that allows anonymous (Anyone) access in SharePoint Online or OneDrive. Which type of policy should you configure in Defender for Cloud Apps, and which action must the policy include to meet the requirement?

  • Create a Session policy that monitors downloads from SharePoint Online and applies a Block control.

  • Create a File policy that targets the "Highly Confidential" label and public sharing links, then configure the Put in quarantine governance action.

  • Enable the built-in Anomaly detection policy for Suspicious sharing to automatically generate alerts.

  • Create an Activity policy that filters on the Share activity and configure the Send alert action.

Microsoft 365 Administrator Expert MS-102
Manage security and threats by using Microsoft Defender XDR
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot