SC-401 Lab 5 – Create and Configure DLP Policies

Design and deploy Data Loss Prevention policies to monitor and protect sensitive information across Microsoft 365 services.

Tools Used

Steps Taken

  1. Signed into Microsoft Purview portal as MOD Administrator.
  2. Navigated to Data Loss Prevention → Policies.
  3. Created a new DLP policy targeting Exchange, SharePoint, and OneDrive.
  4. Selected built-in sensitive information types and configured detection thresholds.
  5. Defined policy actions including user notifications and incident reports.
  6. Enabled policy and verified deployment status.
  7. Tested policy by sending content that matched sensitive data criteria.

Outcome

DLP policy successfully created and validated. Microsoft 365 services now monitor and protect sensitive data based on defined rules, supporting compliance and risk mitigation.

Certification Alignment

SC-401 Domain 1.3 – Implement Data Loss Prevention Solutions

Sandbox Link

Lab 5 – Create and Configure DLP Policies