Microsoft 365 Mobility and Security ‚Äö√Ñ√¨ Exam Guide MS-101

By : Nate Chamberlain

4 (3)

Buy this Book

Microsoft 365 Mobility and Security ‚Äö√Ñ√¨ Exam Guide MS-101

4 (3)

By: Nate Chamberlain

Buy this Book

Overview of this book

Exam MS-101: Microsoft 365 Mobility and Security is a part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path designed to help users validate their skills in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. This book will help you implement modern device services, apply Microsoft 365 security and threat management, and manage Microsoft 365 governance and compliance. Written in a succinct way, you’ll explore chapter-wise self-assessment questions, exam tips, and mock exams with answers. You’ll start by implementing mobile device management (MDM) and handling device compliance. You’ll delve into threat detection and management, learning how to manage security reports and configure Microsoft 365 alerts. Later, you’ll discover data loss prevention (DLP) tools to protect data as well as tools for configuring audit logs and policies. The book will also guide you through using Azure Information Protection (AIP) for deploying clients, applying policies, and configuring services and users to enhance data security. Finally, you’ll cover best practices for configuring settings across your tenant to ensure compliance and security. By the end of this book, you’ll have learned to work with Microsoft 365 services and covered the concepts and techniques you need to know to pass the MS-101 exam.

Preface

Who this book is for

What this book covers

Book structure

The exam

Certification

How to get the most out of this book

Get in touch

Free Chapter

Section 1: Modern Device Services

Implementing Mobile Device Management (MDM)

Planning for MDM

Configuring MDM integration with Azure AD

Setting an MDM authority

Setting device enrollment limits for users

Summary

Questions

Further reading

Managing Device Compliance

Planning for device compliance

Configuring device compliance policies

Designing, creating, and managing conditional access policies

Summary

Questions

Further reading

Planning for Devices and Apps

Creating and configuring Microsoft Store for Business

Planning app deployment

Planning device co-management

Planning device monitoring

Planning for device profiles

Planning for MAM

Planning mobile device security

Summary

Questions

Further reading

Planning Windows 10 Deployment

Planning for WaaS

Planning for Windows 10 Enterprise deployment

Analyzing Upgrade Readiness for Windows 10

Additional Windows 10 Enterprise security features

Summary

Questions

Further reading

Section 2: Microsoft 365 Security Threat Management

Implementing Cloud App Security (CAS)

Setting up CAS

Configuring CAS policies

Configuring connected apps

Designing a CAS solution

Managing CAS alerts

Uploading CAS traffic logs

Summary

Questions

Further reading

Implementing Threat Management

Planning a threat management solution

Designing and configuring Azure ATP

Designing and configuring Microsoft 365 ATP policies

Monitoring ATA incidents

Summary

Questions

Further reading

Implementing Windows Defender ATP

Planning our Windows Defender ATP solution

Configuring our preferences

Implementing Windows Defender ATP policies

Enabling and configuring the security features of Windows 10 Enterprise

Summary

Questions

Further reading

Managing Security Reports and Alerts

Managing the Service Assurance Dashboard

Microsoft Secure Score and Azure AD Identity Secure Score

Tracing and reporting on Azure AD Identity Protection

Microsoft 365 security alerts

Azure AD Identity Protection dashboard and alerts

Summary

Questions

Further reading

Section 3: Microsoft 365 Governance Compliance

Configuring Data Loss Prevention (DLP)

Configuring DLP policies

Designing data retention policies in Microsoft 365

Monitoring and managing DLP policy matches

Managing DLP exceptions

Summary

Questions

Further reading

Implementing Azure Information Protection (AIP)

Planning an AIP solution

Planning for classification labeling

Deploying AIP clients

Implementing an AIP tenant key

Planning for WIP implementation

Configuring IRM for workloads

Planning for the deployment of an on-premises Rights Management connector

Implementing AIP policies

Configuring a super user

Summary

Questions

Further reading

Managing Data Governance

Planning and configuring information retention

Planning for a Microsoft 365 backup

Planning for restoring deleted content

Summary

Questions

Further reading

Managing Auditing

Configuring audit log retention

Configuring the audit policy

Monitoring unified audit logs

Azure AD audit and sign-in logs

Summary

Questions

Further reading

Managing eDiscovery

Searching content using the Security & Compliance Center

Planning for in-place and legal holds

Configuring eDiscovery

Summary

Questions

Further reading

Section 4: Mock Exams

Mock Exam 1

Mock Exam 2

Assessments

Chapter 1

Chapter 2

Chapter 3

Chapter 4

Chapter 5

Chapter 6

Chapter 7

Chapter 8

Chapter 9

Chapter 10

Chapter 11

Chapter 12

Chapter 13

Mock Exam 1

Mock Exam 2

Another Book You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

4 (3)

5 star

66.7%

4 star

3 star

2 star

33.3%

1 star

Designing and configuring Azure ATP

Azure ATP is cloud-based but involves installing sensors on-prem to help manage risks in both locations and more comprehensively protect users. It involves the following:

Learning-based analytics and suspicious behavior identification
Protecting AD credentials
Reducing attack surfaces
Fast and clear incident reporting

Before you can use Azure ATP, you'll need to create and configure your Azure ATP instance. These are the basic steps. You would repeat these steps for each unique AD forest: