Exam MS-101: Microsoft 365 Mobility and Security
Candidates for this exam are Microsoft 365 Enterprise Administrators who take part in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. They perform Microsoft 365 tenant management tasks for an enterprise, including its identities, security, compliance, and supporting technologies.
Candidates have a working knowledge of Microsoft 365 workloads and should have been an administrator for at least Exchange, SharePoint, Teams, Windows 10 deployment. Candidates also have a working knowledge of networking, server administration, and IT fundamentals such as DNS, Active Directory, and PowerShell.
Course Outline
Plan device management
- plan device monitoring
- plan Microsoft Endpoint Manager implementation and integration with Azure AD
- plan co-management between Endpoint Configuration Manager and Intune
- plan for configuration profiles
Manage device compliance
- plan for device compliance
- plan for attack surface reduction
- configure security baselines
- configure device compliance policy
- plan and configure conditional access policies
Plan for apps
- create and configure Microsoft Store for Business
- plan app deployment
- plan for mobile application management (MAM)
Plan Windows 10 deployment
- plan for Windows as a Service (WaaS)
- plan for managing Windows quality and feature updates
- plan Windows 10 Enterprise deployment methods
- analyze upgrade readiness for Windows 10 by using services such as Desktop Analytics
- evaluate and deploy additional Windows 10 Enterprise security features
Enroll devices
- plan for device join or device registration to Azure Active Directory (Azure AD)
- plan for manual and automated device enrollment into Intune
- enable device enrollment into Intune
Manage security reports and alerts
- evaluate and manage Microsoft Office 365 tenant security by using Secure Score
- manage incident investigation
- review and manage Microsoft 365 security alerts
Plan and implement threat protection with Microsoft 365 Defender
- plan Microsoft Defender for Endpoint
- design Microsoft Defender for Office 365 policies
- implement Microsoft Defender for Identity
Plan Microsoft Cloud App Security
- plan information protection by using Cloud App Security
- plan policies to manage access to cloud apps
- plan for application connectors
- configure Cloud App Security policies
- review and respond to Cloud App Security alerts
- monitor for unauthorized cloud applications
Plan for compliance requirements
- plan compliance solutions
- assess compliance
- plan for and implement privileged access management
- plan for legislative and regional or industry requirements and drive implementation
Manage information governance
- plan data classification
- plan for classification labeling
- plan for restoring deleted content
- implement records management
- design data retention labels and policies in Microsoft 365
Implement Information protection
- plan an information protection solution
- plan and implement sensitivity labels and policies
- monitor label alerts and analytics
- deploy Azure Information Protection unified labels clients
- configure Information Rights Management (IRM) for workloads
- plan for Windows information Protection (WIP) implementation
Plan and implement data loss prevention (DLP)
- plan for DLP
- configure DLP policies
- monitor DLP
Manage search and investigation
- plan and configure auditing
- plan and configure eDiscovery
- implement and manage insider risk management
- design a Content Search solution
Popular Courses
Learn new skills to boost your productivity and enable your organization to accomplish more with Microsoft Certifications.