Microsoft 365 Certified: Enterprise Administrator Expert (MS500-100-101)

Microsoft 365 Security Administration (MS-500)

Module 1: User and Group Management

This module explains how to manage user accounts and groups in Microsoft 365. It introduces you to the Zero Trust concept as well as authentication. The module sets the foundation for the remainder of the course.

• Identity and Access Management concepts
• The Zero Trust model
• Plan your identity and authentication solution
• User accounts and roles
• Password Management

Module 2: Identity Synchronization and Protection

This module explains concepts related to synchronizing identities for Microsoft 365. Specifically, it focuses on Azure AD Connect and managing directory synchronization to ensure the right people are connecting to your Microsoft 365 system.

• Plan directory synchronization
• Configure and manage synchronized identities
• Azure AD Identity Protection

Module 3: Identity and Access Management

This module explains conditional access for Microsoft 365 and how it can be used to control access to resources in your organization. The module also explains Role Based Access Control (RBAC) and solutions for external access. We discuss identity governance as a concept and its components.

• Application Management
• Identity Governance
• Manage device access
• Role Based Access Control (RBAC)
• Solutions for external access
• Privileged Identity Management

Module 4: Security in Microsoft 365

This module explains the various cyber-attack threats that exist. It then introduces you to the Microsoft solutions used to mitigate those threats. The module finishes with an explanation of Microsoft Secure Score and how it can be used to evaluate and report your organizations security posture.

• Threat vectors and data breaches
• Security strategy and principles
• Microsoft security solutions
• Secure Score

Module 5: Threat Protection

This module explains the various threat protection technologies and services available for Microsoft 365. The module covers message protection through Exchange Online Protection, Microsoft Defender for Identity and Microsoft Defender for Endpoint.

• Exchange Online Protection (EOP)
• Microsoft Defender for Office 365
• Manage Safe Attachments
• Manage Safe Links
• Microsoft Defender for Identity
• Microsoft Defender for Endpoint

Module 6: Threat Management

This module explains Microsoft Threat Management which provides you with the tools to evaluate and address cyber threats and formulate responses. You will learn how to use the Security dashboard and Azure Sentinel for Microsoft 365.

• Security dashboard
• Threat investigation and response
• Azure Sentinel
• Advanced Threat Analytics

Module 7: Microsoft Cloud Application Security

This module focuses on cloud application security in Microsoft 365. The module will explain cloud discovery, app connectors, policies, and alerts. You will learn how these features work to secure you cloud applications.

• Deploy Cloud Application Security
• Use cloud application security information

Module 8: Mobility

This module focuses on securing mobile devices and applications. You will learn about Mobile Device Management and how it works with Microsoft Intune. You will also learn about how Intune and Azure AD can be used to secure mobile applications.

• Mobile Application Management (MAM)
• Mobile Device Management (MDM)
• Deploy mobile device services
• Enroll devices to Mobile Device Management

Module 9: Information Protection and Governance

This module focuses on data loss prevention in Microsoft 365. You will learn about how to create policies, edit rules, and customize user notifications to protect your data.

• Information protection concepts
• Governance and Records Management
• Sensitivity labels
• Archiving in Microsoft 365
• Retention in Microsoft 365
• Retention policies in the Microsoft 365 Compliance Center
• Archiving and retention in Exchange
• In-place records management in SharePoint

Module 10: Rights Management and Encryption

This module explains information rights management in Exchange and SharePoint. The module also describes encryption technologies used to secure messages.

• Information Rights Management (IRM)
• Secure Multipurpose Internet Mail Extension (S-MIME)
• Office 365 Message Encryption

Module 11: Data Loss Prevention

This module focuses on data loss prevention in Microsoft 365. You will learn about how to create policies, edit rules, and customize user notifications to protect your data.

• Data loss prevention fundamentals
• Create a DLP policy
• Customize a DLP policy
• Create a DLP policy to protect documents
• Policy tips

Module 12: Compliance Management

This module explains the Compliance center in Microsoft 365. It discusses the components of compliance score.

• Compliance center

Module 13: Insider Risk Management

This module focuses on insider risk related functionality within Microsoft 365. It covers not only Insider Risk Management in the compliance center but also information barriers and privileged access management as well.

• Insider Risk
• Privileged Access
• Information barriers
• Building ethical walls in Exchange Online

Module 14: Discover and Respond

This module focuses on content search and investigations. The module covers how to use eDiscovery to conduct advanced investigations of Microsoft 365 data. It also covers audit logs and discusses GDPR data subject requests.

• Content Search
• Audit Log Investigations
• Advanced eDiscovery

Microsoft 365 Identity and Services (MS-100T00)

Module 1: Designing Your Microsoft 365 Tenant

• Planning your Microsoft 365 Experience
• Planning Microsoft 365 in your On-premises Infrastructure
• Planning Your Identity and Authentication Solution
• Planning Your Service Setup
• Planning Your Hybrid Environment
• Planning Your Migration to Office 365

Module 2: Configuring Your Microsoft 365 Tenant

• Configuring Your Microsoft 365 Experience
• Managing User Accounts and Licenses in Microsoft 365
• Managing Security Groups in Microsoft 365
• Implementing Your Domain Services
• Leveraging FastTrack and Partner Services

Module 3: Managing Your Microsoft 365 Tenant

• Configuring Microsoft 365 Admin Roles
• Managing Tenant Health and Services
• Managing User-Driven Client Installations
• Managing Centralized Microsoft 365 Apps for enterprise    Deployments

Module 4: Office 365 Overview

• Exchange Online Overview
• SharePoint Online Overview
• Teams Overview
• Power Platform Overview
• Power Apps Overview
• Power Automate Overview
• Power BI Overview
• Power Virtual Agents Overview
• Additional Resources Overview
• Device Management Overview

Module 5: Configuring Microsoft 365 Clients

• Microsoft 365 Client Overview
• Configuring Office Client Connectivity to Microsoft 365

Module 6: Capturing User-Driven Data 

• Configuring Office Telemetry
• Configuring Microsoft Analytics

Module 7: Planning and Implementing Identity Synchronization

• Introduction to Identity Synchronization
• Planning for Azure AD Connect
• Implementing Azure AD Connect
• Managing Synchronized Identities
• Password Management in Microsoft 365

Module 8: Implementing Application and External Access

• Implementing Applications in Azure AD
• Configuring Azure AD App Proxy
• Solutions for External Access

Microsoft 365 Mobility and Security (MS-101T00)

Module 1: Introduction to Microsoft 365 Security Metrics

• Threat Vectors and Data Breaches
• Security Solutions in Microsoft 365
• Introduction to the Secure Score
• Introduction to Azure Active Directory Identity Protection

Module 2: Managing Your Microsoft 365 Security Services

• Introduction to Exchange Online Protection
• Introduction to Advanced Threat Protection
• Managing Safe Attachments
• Managing Safe Links
• Monitoring and Reports

Module 3: Lab 1 – Manage Microsoft 365 Security Services

Module 4: Microsoft 365 Threat Intelligence

• Overview of Microsoft 365 Threat Intelligence
• Using the Security Dashboard
• Configuring Advanced Threat Analytics
• Implementing Your Cloud Application Security

Module 5: Lab 2 – Implement Alert Notifications Using the Security Dashboard

Module 6: Introduction to Data Governance in Microsoft 365

• Introduction to Archiving in Microsoft 365
• Introduction to Retention in Microsoft 365
• Introduction to Information Rights Management
• Introduction to Secure Multipurpose Internet Mail Extension
• Introduction to Office 365 Message Encryption
• Introduction to Data Loss Prevention

Module 7: Archiving and Retention in Office 365

• In-Place Records Management in SharePoint
• Archiving and Retention in Exchange
• Retention Policies in the SCC

Module 8: Lab 3 – Implement Archiving and Retention

Module 9: Implementing Data Governance in Microsoft 365 Intelligence

• Planning Your Security and Complaince Needs
• Building Ethical Walls in Exchange Online
• Creating a Simple DLP Policy from a Built-in Template
• Creating a Custom DLP Policy
• Creating a DLP Policy to Protect Documents
• Working with Policy Tips

Module 10: Lab 4 – Implement DLP Policies

Module 11: Managing Data Governance in Microsoft 365

• Managing Retention in Email
• Troubleshooting Data Governance
• Implementing Azure Information Protection
• Implementing Advanced Features of AIP
• Implementing Windows Information Protection

Module 12: Lab 5 – Implement AIP and WIP

Module 13: Managing Search and Investigations

• Searching for Content in the Security and Compliance Center
• Auditing Log Investigations
• Managing Advanced eDiscovery

Module 14: Lab 6 – Manage Search and Investigations

Module 15: Planning for Device Management

• Introduction to Co-management
• Preparing Your Windows 10 Devices for Co-management
• Transitioning from Configuration Manager to Intune
• Introduction to Microsoft Store for Business
• Planning for Mobile Application Management

Module 16: Lab 7 – Implement the Microsoft Store for Business

Module 17: Planning Your Windows 10 Deployment Strategy

• Windows 10 Deployment Scenarios
• Implementing Windows Autopilot
• Planning Your Windows 10 Subscription Activation Strategy
• Resolving Windows 10 Upgrade Errors
• Introduction to Windows Analytics

Module 18: Implementing Mobile Device Management

• Planning Mobile Device Management
• Deploying Mobile Device Management
• Enrolling Devices to MDM
• Managing Device Compliance

Module 19: Lab 8 – Manage Devices with Intune