MS-102 Training: Microsoft 365 Administrator

Overview

This course covers the following key elements of Microsoft 365 administration: Microsoft 365 tenant management, Microsoft 365 identity synchronization, and Microsoft 365 security and compliance.

In Microsoft 365 tenant management, you learn how to configure your Microsoft 365 tenant, including your organizational profile, tenant subscription options, component services, user accounts and licenses, security groups, and administrative roles. You then transition to configuring Microsoft 365, with a primary focus on configuring Office client connectivity. Finally, you explore how to manage user-driven client installations of Microsoft 365 Apps for enterprise deployments.

The course then transitions to an in-depth examination of Microsoft 365 identity synchronization, with a focus on Azure Active Directory Connect and Connect Cloud Sync. You learn how to plan for and implement each of these directory synchronization options, how to manage synchronized identities, and how to implement password management in Microsoft 365 using multifactor authentication and self-service password management.

Audience Profile

This course is designed for persons aspiring to the Microsoft 365 Administrator role and have completed at least one of the Microsoft 365 role-based administrator certification paths.

Course Outline

Configure your Microsoft 365 experience

• Explore your Microsoft 365 cloud environment
• Configure your Microsoft 365 organizational profile
• Manage your tenant subscriptions in Microsoft 365
• Integrate Microsoft 365 with customer engagement apps
• Complete your tenant configuration in Microsoft 365

Manage users, licenses, and mail contacts in Microsoft 365

• Determine the user identity model for your organization
• Create user accounts in Microsoft 365
• Manage user account settings in Microsoft 365
• Manage user licenses in Microsoft 365
• Recover deleted user accounts in Microsoft 365
• Perform bulk user maintenance in Azure Active Directory
• Create and manage guest users
• Create and manage mail contacts

Manage groups in Microsoft 365

• Examine groups in Microsoft 365
• Create and manage groups in Microsoft 365
• Create dynamic groups using Azure rule builder
• Create a Microsoft 365 group naming policy
• Create groups in Exchange Online and SharePoint Online

Add a custom domain in Microsoft 365

• Plan a custom domain for your Microsoft 365 deployment
• Plan the DNS zones for a custom domain
• Plan the DNS record requirements for a custom domain
• Create a custom domain in Microsoft 365

Configure client connectivity to Microsoft 365

• Examine how automatic client configuration works
• Explore the DNS records required for client configuration
• Configure Outlook clients
• Troubleshoot client connectivity

Configure administrative roles in Microsoft 365

• Explore the Microsoft 365 permission model
• Explore the Microsoft 365 admin roles
• Assign admin roles to users in Microsoft 365
• Delegate admin roles to partners
• Manage permissions using administrative units in Azure Active Directory
• Elevate privileges using Azure AD Privileged Identity Management
• Examine best practices when configuring administrative roles

Manage tenant health and services in Microsoft 365

• Monitor the health of your Microsoft 365 services
• Monitor tenant health using Microsoft 365 Adoption Score
• Monitor tenant health using Microsoft 365 usage analytics
• Develop an incident response plan
• Request assistance from Microsoft

Deploy Microsoft 365 Apps for enterprise

• Explore Microsoft 365 Apps for enterprise functionality
• Explore your app compatibility by using the Readiness Toolkit
• Complete a self-service installation of Microsoft 365 Apps for enterprise
• Deploy Microsoft 365 Apps for enterprise with Microsoft Configuration Manager
• Deploy Microsoft 365 Apps for enterprise from the cloud
• Deploy Microsoft 365 Apps for enterprise from a local source
• Manage updates to Microsoft 365 Apps for enterprise
• Explore the update channels for Microsoft 365 Apps for enterprise
• Manage your cloud apps using the Microsoft 365 Apps admin center

Analyze your Microsoft 365 workplace data using Microsoft Viva Insights

• Examine the analytical features of Microsoft Viva Insights
• Explore Personal insights
• Explore Team insights
• Explore Organization insights
• Explore Advanced insights

Explore identity synchronization

• Examine identity models for Microsoft 365
• Examine authentication options for the hybrid identity model
• Explore directory synchronization

Prepare for identity synchronization to Microsoft 365

• Plan your Azure Active Directory deployment
• Prepare for directory synchronization
• Choose your directory synchronization tool
• Plan for directory synchronization using Azure AD Connect
• Plan for directory synchronization using Azure AD Connect Cloud Sync

Implement directory synchronization tools

• Configure Azure AD Connect prerequisites
• Configure Azure AD Connect
• Monitor synchronization services using Azure AD Connect Health
• Configure Azure AD Connect Cloud Sync prerequisites
• Configure Azure AD Connect Cloud Sync

Manage synchronized identities

• Manage users with directory synchronization
• Manage groups with directory synchronization
• Use Azure AD Connect Sync Security Groups to help maintain directory synchronization
• Configure object filters for directory synchronization
• Explore Microsoft Identity Manager
• Troubleshoot directory synchronization

Manage secure user access in Microsoft 365

• Manage user passwords
• Enable pass-through authentication
• Enable multifactor authentication
• Enable passwordless sign-in with Microsoft Authenticator
• Explore self-service password management
• Explore Windows Hello for Business
• Implement Azure AD Smart Lockout
• Implement conditional access policies
• Explore Security Defaults in Azure AD
• Investigate authentication issues using sign-in logs

Examine threat vectors and data breaches

• Explore today’s work and threat landscape
• Examine how phishing retrieves sensitive information
• Examine how spoofing deceives users and compromises data security
• Compare spam and malware
• Examine account breaches
• Examine elevation of privilege attacks
• Examine how data exfiltration moves data out of your tenant
• Examine how attackers delete data from your tenant
• Examine how data spillage exposes data outside your tenant
• Examine other types of attacks

Explore the Zero Trust security model

• Examine the principles and components of the Zero Trust model
• Plan for a Zero Trust security model in your organization
• Examine Microsoft’s strategy for Zero Trust networking
• Adopt a Zero Trust approach

Explore security solutions in Microsoft 365 Defender

• Enhance your email security using Exchange Online Protection and Microsoft Defender for Office 365
• Protect your organization’s identities using Microsoft Defender for Identity
• Protect your enterprise network against advanced threats using Microsoft Defender for Endpoint
• Protect against cyber attacks using Microsoft 365 Threat Intelligence
• Provide insight into suspicious activity using Microsoft Cloud App Security
• Review the security reports in Microsoft 365 Defender

Examine Microsoft Secure Score

• Explore Microsoft Secure Score
  Assess your security posture with Microsoft Secure Score
  Improve your secure score
  Track your Microsoft Secure Score history and meet your goals

Examine Privileged Identity Management

• Explore Privileged Identity Management in Azure AD
• Configure Privileged Identity Management
• Audit Privileged Identity Management
• Control privileged admin tasks using Privileged Access Management

Examine Azure Identity Protection

• Explore Azure Identity Protection
• Enable the default protection policies in Azure Identity Protection
• Explore the vulnerabilities and risk events detected by Azure Identity Protection
• Plan your identity investigation

Examine Exchange Online Protection

• Examine the anti-malware pipeline
• Detect messages with spam or malware using Zero-hour auto purge
• Explore anti-spoofing protection provided by Exchange Online Protection
• Explore other anti-spoofing protection
• Examine outbound spam filtering

Examine Microsoft Defender for Office 365

• Climb the security ladder from EOP to Microsoft Defender for Office 365
• Expand EOP protections by using Safe Attachments and Safe Links
• Manage spoofed intelligence
• Configure outbound spam filtering policies
• Unblock users from sending email

Manage Safe Attachments

• Protect users from malicious attachments by using Safe Attachments
• Create Safe Attachment policies using Microsoft Defender for Office 365
• Create Safe Attachments policies using PowerShell
• Modify an existing Safe Attachments policy
• Create a transport rule to bypass a Safe Attachments policy
• Examine the end-user experience with Safe Attachments

Manage Safe Links

• Protect users from malicious URLs by using Safe Links
• Create Safe Links policies using Microsoft 365 Defender
• Create Safe Links policies using PowerShell
• Modify an existing Safe Links policy
• Create a transport rule to bypass a Safe Links policy
• Examine the end-user experience with Safe Links

Explore threat intelligence in Microsoft 365 Defender

• Explore Microsoft Intelligent Security Graph
• Explore alert policies in Microsoft 365
• Run automated investigations and responses
• Explore threat hunting with Microsoft Threat Protection
• Explore advanced threat hunting in Microsoft 365 Defender
• Explore threat analytics in Microsoft 365
• Identify threat issues using Microsoft Defender reports

Implement app protection by using Microsoft Defender for Cloud Apps

• Explore Microsoft Defender Cloud Apps
• Deploy Microsoft Defender for Cloud Apps
• Configure file policies in Microsoft Defender for Cloud Apps
• Manage and respond to alerts in Microsoft Defender for Cloud Apps
• Configure Cloud Discovery in Microsoft Defender for Cloud Apps
• Troubleshoot Cloud Discovery in Microsoft Defender for Cloud Apps

Implement endpoint protection by using Microsoft Defender for Endpoint

• Explore Microsoft Defender for Endpoint
• Configure Microsoft Defender for Endpoint in Microsoft Intune
• Onboard devices in Microsoft Defender for Endpoint
• Manage endpoint vulnerabilities with Microsoft Defender Vulnerability Management
• Manage device discovery and vulnerability assessment
• Reduce your threat and vulnerability exposure

Implement threat protection by using Microsoft Defender for Office 365

• Explore the Microsoft Defender for Office 365 protection stack
• Investigate security attacks by using Threat Explorer
• Identify cybersecurity issues by using Threat Trackers
• Prepare for attacks with Attack simulation training

Examine data governance solutions in Microsoft Purview

• Explore data governance and compliance in Microsoft Purview
• Protect sensitive data with Microsoft Purview Information Protection
• Govern organizational data using Microsoft Purview Data Lifecycle Management
• Minimize internal risks with Microsoft Purview Insider Risk Management
• Explore Microsoft Purview eDiscovery solutions

Explore archiving and records management in Microsoft 365

• Explore archive mailboxes in Microsoft 365
• Enable archive mailboxes in Microsoft 365
• Explore Microsoft Purview Records Management
• Implement Microsoft Purview Records Management
• Restore deleted data in Exchange Online
• Restore deleted data in SharePoint Online

Explore retention in Microsoft 365

• Explore retention by using retention policies and retention labels
• Compare capabilities in retention policies and retention labels
• Define the scope of a retention policy
• Examine the principles of retention
• Implement retention using retention policies, retention labels, and eDiscovery holds
• Restrict retention changes by using Preservation Lock

Explore Microsoft Purview Message Encryption

• Examine Microsoft Purview Message Encryption
• Configure Microsoft Purview Message Encryption
• Define mail flow rules to encrypt email messages
• Add organizational branding to encrypted email messages
• Explore Microsoft Purview Advanced Message Encryption

Explore compliance in Microsoft 365

• Plan for security and compliance in Microsoft 365
• Plan your beginning compliance tasks in Microsoft Purview
• Manage your compliance requirements with Compliance Manager
• Examine the Compliance Manager dashboard
• Analyze the Microsoft Compliance score

Implement Microsoft Purview Insider Risk Management

• Explore insider risk management
• Plan for insider risk management
• Explore insider risk management policies
• Create insider risk management policies
• Investigate insider risk management activities and alerts
• Explore insider risk management cases

Implement Microsoft Purview Information Barriers

• Explore Microsoft Purview Information Barriers
• Configure information barriers in Microsoft Purview
• Examine information barriers in Microsoft Teams
• Examine information barriers in OneDrive
• Examine information barriers in SharePoint

Explore Microsoft Purview Data Loss Prevention

• Examine Data Loss Prevention
• Explore Endpoint data loss prevention
• Examine DLP policies
• View DLP policy results
• Explore DLP reports

Implement Microsoft Purview Data Loss Prevention

• Plan to implement Microsoft Purview Data Loss Protection
• Implement Microsoft Purview’s default DLP policies
• Design a custom DLP policy
• Create a custom DLP policy from a template
• Configure email notifications for DLP policies
• Configure policy tips for DLP policies

Implement data classification of sensitive information

• Explore data classification
• Implement data classification in Microsoft 365
• Explore trainable classifiers
• Create and retrain a trainable classifier
• View sensitive data using Content explorer and Activity explorer
• Detect sensitive information documents using Document Fingerprinting

Explore sensitivity labels

• Manage data protection using sensitivity labels
• Explore what sensitivity labels can do
• Determine a sensitivity label’s scope
• Apply sensitivity labels automatically
• Explore sensitivity label policies

Implement sensitivity labels

• Plan your deployment strategy for sensitivity labels
• Examine the requirements to create a sensitivity label
• Create sensitivity labels
• Publish sensitivity labels
• Remove and delete sensitivity labels

Related Links:

MS-102 Certification Exam

MS-100: Office 365 Authentication and Identity Management

MS-101: Mobility and Security Certified Enterprise Administrator

Microsoft 365 Certified: Enterprise Administrator Expert