Microsoft 365 Administrator — Question 200

You have a Microsoft 365 E5 subscription.

You plan to create an anti-malware policy named Policy1.

You need to ensure that Policy1 can detect malicious email messages that were already delivered to a user's mailbox.

What should you do in the Microsoft Defender portal?

Answer options

• A. Enable zero-hour auto purge (ZAP).
• B. Enable enhanced filtering.
• C. Configure a quarantine policy.
• D. Modify the common attachments filter.

Correct answer: A

Explanation

The correct answer is A, as enabling zero-hour auto purge (ZAP) allows the detection and removal of malicious emails that have already been delivered to users' mailboxes. Options B, C, and D do not specifically address the need to retroactively identify and handle previously delivered harmful messages.