Exam AB-900 Topic 2 Question 23 Discussion

Actual exam question for Microsoft's AB-900 exam
Question #: 23
Topic #: 2
A Marketing user requests Copilot to "Summarize the latest budget proposal" stored on a SharePoint site restricted to Finance. The Marketing user is not a site member. Which principle governs Copilot's behavior and prevents it from returning the restricted content?

Suggested Answer: C Vote an answer

This is the fundamental security principle of Microsoft 365 Copilot, often summarized as Copilot operates within your existing security, compliance, and privacy policies. If the user does not have permission to access a document (the budget proposal) via standard Microsoft 365 access controls (SharePoint permissions), Copilot will not be able to retrieve or include that content in its response. This is a primary security boundary.
References:
https://learn.microsoft.com/en-us/copilot/microsoft-365/microsoft-365-copilot-privacy
https://learn.microsoft.com/en-us/copilot/faq
https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/scenarios/ai/secure
https://learn.microsoft.com/en-us/copilot/microsoft-365/microsoft-365-copilot-ai-security

by Jessie at May 12, 2026, 04:41 PM

Limited Time Offer

15%

Off

Get Premium AB-900 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10