Exam: Microsoft 365 Mobility and Security (MS-101)

Candidates for this exam are Microsoft 365 Enterprise Administrators who take part in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. They perform Microsoft 365 tenant management tasks for an enterprise, including its identities, security, compliance, and supporting technologies.

Implement Modern Device Services (30-35%)

• Implement Mobile Device Management (MDM)
  • Plan for MDM
  • Configure MDM integration with Azure AD
  • Set an MDM authority
  • Set device enrollment limit for users
• Manage device compliance
  • Plan for device Compliance
  • Design Conditional Access Policies
  • Create Conditional Access Policies
  • Configure device compliance policy
  • Manage Conditional Access Policies
• Plan for devices and apps
  • Create and configure Microsoft Store for Business
  • Plan app deployment
  • Plan device co-management
  • Plan device monitoring
  • Plan for device profiles
  • Plan for Mobile Application Management
  • Plan mobile device security
• Plan Windows 10 deployment
  • Plan for Windows as a Service (WaaS)
  • Plan the appropriate Windows 10 Enterprise deployment method
  • Analyze upgrade readiness for Windows 10
  • Evaluate and deploy additional Windows 10 Enterprise security features

Implement Microsoft 365 Security and Threat Management (30-35%)

• Implement Cloud App Security (CAS)
  • Configure Cloud App Security (CAS)
  • Configure Cloud App Security (CAS) policies
  • Configure Connected apps
  • Design cloud app security (CAS) Solution
  • Manage Cloud App Security (CAS) alerts
  • Upload cloud app security (CAS) traffic logs
• Implement threat management
  • Plan a threat management solution
  • Design Azure Advanced Threat Protection (ATP) Policies
  • Design Microsoft 365 ATP Policies
  • Configure Azure ATP Policies
  • Configure Microsoft 365 ATP Policies
  • Monitor Advanced Threat Analytics (ATA) incidents
• Implement Windows Defender Advanced Threat Protection (ATP)
  • Plan Windows Defender ATP Solution
  • Configure preferences
  • Implement Windows Defender ATP Policies
  • Enable and configure security features of Windows 10 Enterprise
• Manage security reports and alerts
  • Manage service assurance dashboard
  • Manage tracing and reporting on Azure AD Identity Protection
  • Configure and manage Microsoft 365 security alerts
  • Configure and manage Azure Identity Protection dashboard and alerts

Manage Microsoft 365 Governance and Compliance (35-40%)

• Configure Data Loss Prevention (DLP)
  • Configure DLP Policies
  • Design data retention policies in Microsoft 365
  • Manage DLP exceptions
  • Monitor DLP policy matches
  • Manage DLP policy matches
• Implement Azure Information Protection (AIP)
  • Plan AIP solution
  • Plan for deployment On-Prem rights management Connector
  • Plan for Windows information Protection (WIP) implementation
  • Plan for classification labeling
  • Configure Information Rights Management (IRM) for Workloads
  • Configure Super User
  • Deploy AIP Clients
  • Implement Azure Information Protection policies
  • Implement AIP tenant key
• Manage data governance
  • Configure information retention
  • Plan for Microsoft 365 backup
  • Plan for restoring deleted content
  • Plan information Retention Policies
• Manage auditing
  • Configure audit log retention
  • Configure audit policy
  • Monitor Unified Audit Logs
• Manage eDiscovery
  • Search content by using Security and Compliance Center
  • Plan for in-place and legal hold
  • Configure eDiscovery

Candidates have a working knowledge of Microsoft 365 workloads and should have been an administrator for at least one Microsoft 365 workload (Exchange, SharePoint, Skype for Business, Windows as a Service). Candidates also have a working knowledge of networking, server administration, and IT fundamentals such as DNS, Active Directory, and PowerShell.