Topics Covered in MS-101:

Implementing Modern Device Services:

Microsoft Endpoint Manager (MEM):

• Understanding and configuring Microsoft Endpoint Manager, which includes both Intune and Configuration Manager.
• Implementing device compliance policies, conditional access, and app protection policies.
• Managing mobile devices and apps through Intune, including iOS, Android, Windows 10, and macOS devices.

Windows Autopilot:

• Configuring and deploying Windows Autopilot for device provisioning.
• Managing and maintaining device configurations and ensuring security compliance.

Mobile Device Management (MDM):

• Implementing and managing MDM solutions for securing and managing mobile devices.
• Integrating MDM with Azure Active Directory (AAD) and other Microsoft 365 services.

Implementing Microsoft 365 Security and Threat Management:

Threat Protection:

• Configuring and managing Microsoft Defender for Endpoint to detect, investigate, and respond to threats.
• Implementing threat protection across email, data, and devices using Microsoft 365 Defender.
• Managing security reports and dashboards to monitor and mitigate threats.

Identity Protection:

• Implementing and managing Azure AD Identity Protection to protect user identities.
• Configuring conditional access policies based on user and device risk.
• Implementing multi-factor authentication (MFA) and secure authentication methods.

Data Loss Prevention (DLP):

• Configuring and managing DLP policies to prevent sensitive information from being shared outside the organization.
• Implementing DLP in Microsoft 365 apps like Exchange Online, SharePoint Online, and OneDrive for Business.

Security and Compliance Center:

• Navigating and configuring settings in the Microsoft 365 Security & Compliance Center.
• Implementing retention policies, sensitivity labels, and other compliance features to protect data.

Managing Microsoft 365 Governance and Compliance:

Information Protection:

• Implementing and managing information protection solutions, including Microsoft Information Protection (MIP).
• Configuring sensitivity labels and classification to protect sensitive data.
• Managing data governance features like retention labels and policies.

Compliance Solutions:

• Implementing and managing compliance solutions like eDiscovery, legal hold, and data subject requests.
• Configuring and managing insider risk management and communication compliance.

Audit and Reporting:

• Configuring audit logs and activity reports to monitor user and admin activities.
• Managing compliance reports and using tools like Compliance Manager to assess compliance posture.

Microsoft 365 Services:

Service Health and Monitoring:

• Monitoring Microsoft 365 service health and understanding service incident management.
• Configuring alerts and notifications for service health and outages.

Service Management:

• Managing Microsoft 365 subscriptions, service-level agreements (SLAs), and support tickets.
• Understanding the lifecycle of Microsoft 365 services and planning for updates and changes.