Microsoft Information Protection and Compliance Administrator — Question 43

You have a Microsoft 365 E5 subscription.

You need to prevent users from uploading data loss prevention (DLP)-protected documents to the following third-party websites:

• web1.contoso.com
• web2.contoso.com

The solution must minimize administrative effort.

To what should you set the Service domains setting for Endpoint DLP?

Answer options

• A. contoso.com
• B. web*.contoso.com
• C. *.contoso.com
• D. web1.contoso.com and web2.contoso.com

Correct answer: D

Explanation

Setting the Service domains to 'web1.contoso.com and web2.contoso.com' specifically targets the two websites in question, ensuring DLP protection is enforced there. The other options either generalize too much or do not restrict access to the specified sites, failing to meet the requirement.