Exam MS-101 Microsoft 365 Mobility and Security (beta)

Languages: English
Audiences: IT Professionals
Technology: Microsoft 365

Skills measured
This exam measures your ability to accomplish the technical tasks listed below. The percentages indicate the relative weight of each major topic area on the exam. The higher the percentage, the more questions you are likely to see on that content area on the exam. View video tutorials about the variety of question types on Microsoft exams.

Do you have feedback about the relevance of the skills measured on this exam? Please send Microsoft your comments. All feedback will be reviewed and incorporated as appropriate while still maintaining the validity and reliability of the certification process. Note that Microsoft will not respond directly to your feedback. We appreciate your input in ensuring the quality of the Microsoft Certification program.

If you have concerns about specific questions on this exam, please submit an exam challenge.

If you have other questions or feedback about Microsoft Certification exams or about the certification program, registration, or promotions, please contact your Regional Service Center.

Implement Modern Device Services (30-35%)
Implement Mobile Device Management (MDM)
Plan for MDM
Configure MDM integration with Azure AD
Set an MDM authority
Set device enrollment limit for users
Manage device compliance
Plan for device Compliance
Design Conditional Access Policies
Create Conditional Access Policies
Configure device compliance policy
Manage Conditional Access Policies
Plan for devices and apps
Create and configure Microsoft Store for Business
Plan app deployment
Plan device co-management
Plan device monitoring
Plan for device profiles
Plan for Mobile Application Management
Plan mobile device security
Plan Windows 10 deployment
Plan for Windows as a Service (WaaS)
Plan the appropriate Windows 10 Enterprise deployment method
Analyze upgrade readiness for Windows 10
Evaluate and deploy additional Windows 10 Enterprise security features

Implement Microsoft 365 Security and Threat Management (30-35%)
Implement Cloud App Security (CAS)
Configure Cloud App Security (CAS)
Configure Cloud App Security (CAS) policies
Configure Connected apps
Design cloud app security (CAS) Solution
Manage Cloud App Security (CAS) alerts
Upload cloud app security (CAS) traffic logs
Implement threat management
Plan a threat management solution
Design Azure Advanced Threat Protection (ATP) Policies
Design Microsoft 365 ATP Policies
Configure Azure ATP Policies
Configure Microsoft 365 ATP Policies
Monitor Advanced Threat Analytics (ATA) incidents
Implement Windows Defender Advanced Threat Protection (ATP)
Plan Windows Defender ATP Solution
Configure preferences
Implement Windows Defender ATP Policies
Enable and configure security features of Windows 10 Enterprise
Manage security reports and alerts
Manage service assurance dashboard
Manage tracing and reporting on Azure AD Identity Protection
Configure and manage Microsoft 365 security alerts
Configure and manage Azure Identity Protection dashboard and alerts

Manage Microsoft 365 Governance and Compliance (35-40%)
Configure Data Loss Prevention (DLP)
Configure DLP Policies
Design data retention policies in Microsoft 365
Manage DLP exceptions
Monitor DLP policy matches
Manage DLP policy matches
Implement Azure Information Protection (AIP)
Plan AIP solution
Plan for deployment On-Prem rights management Connector
Plan for Windows information Protection (WIP) implementation
Plan for classification labeling
Configure Information Rights Management (IRM) for Workloads
Configure Super User
Deploy AIP Clients
Implement Azure Information Protection policies
Implement AIP tenant key
Manage data governance
Configure information retention
Plan for Microsoft 365 backup
Plan for restoring deleted content
Plan information Retention Policies
Manage auditing
Configure audit log retention
Configure audit policy
Monitor Unified Audit Logs
Manage eDiscovery
Search content by using Security and Compliance Center
Plan for in-place and legal hold
Configure eDiscovery

Preparation options

Instructor-led training

Who should take this exam?
Candidates for this exam are Microsoft 365 Enterprise Administrators who take part in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. They perform Microsoft 365 tenant management tasks for an enterprise, including its identities, security, compliance, and supporting technologies.

Candidates have a working knowledge of Microsoft 365 workloads and should have been an administrator for at least one Microsoft 365 workload (Exchange, SharePoint, Skype for Business, Windows as a Service). Candidates also have a working knowledge of networking, server administration, and IT fundamentals such as DNS, Active Directory, and PowerShell.
More information about exams

Preparing for an exam
We recommend that you review this exam preparation guide in its entirety and familiarize yourself with the resources on this website before you schedule your exam. See the Microsoft Certification exam overview for information about registration, videos of typical exam question formats, and other preparation resources. For information on exam policies and scoring, see the Microsoft Certification exam policies and FAQs.

Note
This preparation guide is subject to change at any time without prior notice and at the sole discretion of Microsoft. Microsoft exams might include adaptive testing technology and simulation items. Microsoft does not identify the format in which exams are presented. Please use this preparation guide to prepare for the exam, regardless of its format. To help you prepare for this exam, Microsoft recommends that you have hands-on experience with the product and that you use the specified training resources. These training resources do not necessarily cover all topics listed in the “Skills measured” section.