DRAG DROP
You have an Office 365 tenant that has an Enterprise E3 subscription.
You enable Azure Rights Management for users in the tenant. You need to define the methods that you
can implement to encrypt and decrypt email message.
What should you do? To answer, drag the appropriate method to the correct action. Each method may
be used once, more than once or not at all. You may need to drag the split bar between panes or scroll
to view content.)
Answer: See the explanation
Explanation:
Send Encrypted email: Transport Rule https://technet.microsoft.com/en-us/library/dn569289.aspx
Receive encrypted email : Organization account https://technet.microsoft.com/en-us/library/dn569287.aspx
View encrypted email: organization account https://technet.microsoft.com/en-us/library/dn569287.aspx
The links seem to suggest that transport rule would be used for the first two and either a Microsoft account (organization account?) or a one-time password for the third.
I think I would go for:
Transport
Transport
One-time password
Good explanation can be found here: https://technet.microsoft.com/nl-nl/library/dn948533.aspx
Office 365 Message Encryption (OME) is a service built on Azure Rights Management (Azure RMS) that lets you send encrypted email to people inside or outside your organization, regardless of the destination email address (Gmail, Yahoo! Mail, Outlook.com, etc.).
As an admin, you can set up transport rules that define the conditions for encryption. When a user sends a message that matches a rule, encryption is applied automatically.
To view encrypted messages, recipients can either get a one-time password, sign in with a Microsoft account, or sign in with a work or school account associated with Office 365. Recipients can also send encrypted replies. They don’t need an Office 365 subscription to view encrypted messages or send encrypted replies.
So I would say: Transport / Transport / One-time password
Organization account in this case sounds to me like an account in the same organisation, which isn’t necessary. A ‘work or school’ account will do and no O365 subscription is required.
Thanks for the enlightenment 🙂
From what I read in Marty’s link Office 365 uses the TLS connection to send the encrypted email so nothing would be required to receive the email. Perhaps in the new exam the question will be different or will have a nothing option.
Transport rule
Nothing
One Time Password
Have set this up in the past, the wording is funny but I think the answer is
Transport – This is set up to encrypt any mail that leaves exchange (internal isn’t encrypted)
Organization Account – You need to be able to sign in to view the email. You can create a transport rule that decrypts encrypted replies, but to actually then view that reply, you would need to be able to log in
One Time Password – See Marty’s explanation
I think I was wrong on the second one, Marty was correct as usual. Hard to tell exactly what they are going for here but:
“You can create transport rules to automatically remove encryption from replies so email users in your organization don’t have to sign in to the encryption portal to view them.”
https://technet.microsoft.com/en-us/library/dn569289.aspx
IT seems according to this https://support.office.com/en-us/article/How-do-I-open-a-protected-message-1157a286-8ecc-4b1e-ac43-2a608fbf3098
its only TRansport rule that you need nothing else, again it depends so its a bad question.