Book Image

Microsoft 365 Mobility and Security – Exam Guide MS-101

By : Nate Chamberlain
Book Image

Microsoft 365 Mobility and Security – Exam Guide MS-101

By: Nate Chamberlain

Overview of this book

Exam MS-101: Microsoft 365 Mobility and Security is a part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path designed to help users validate their skills in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. This book will help you implement modern device services, apply Microsoft 365 security and threat management, and manage Microsoft 365 governance and compliance. Written in a succinct way, you’ll explore chapter-wise self-assessment questions, exam tips, and mock exams with answers. You’ll start by implementing mobile device management (MDM) and handling device compliance. You’ll delve into threat detection and management, learning how to manage security reports and configure Microsoft 365 alerts. Later, you’ll discover data loss prevention (DLP) tools to protect data as well as tools for configuring audit logs and policies. The book will also guide you through using Azure Information Protection (AIP) for deploying clients, applying policies, and configuring services and users to enhance data security. Finally, you’ll cover best practices for configuring settings across your tenant to ensure compliance and security. By the end of this book, you’ll have learned to work with Microsoft 365 services and covered the concepts and techniques you need to know to pass the MS-101 exam.

Related Content you might be interested in

Current Title:

Small book image
Microsoft 365 Mobility and Security – Exam Guide MS-101
Nate Chamberlain
Nov, 2019 | 312 pages
Small book image
Microsoft 365 Security Administration: MS-500 Exam Guide
Peter Rising
Jun, 2020 | 672 pages
Small book image
Microsoft 365 Security, Compliance, and Identity Administration
Peter Rising
Aug, 2023 | 630 pages
Small book image
Microsoft Information Protection Administrator SC-400 Certification Guide
Shabaz Darr | Viktor Hedberg
Feb, 2022 | 326 pages
Table of Contents (22 chapters)
Preface
Preface
Who this book is for
What this book covers
Book structure
The exam
Certification
How to get the most out of this book
Get in touch
Free Chapter
1
Section 1: Modern Device Services
Section 1: Modern Device Services
2
Implementing Mobile Device Management (MDM)
Implementing Mobile Device Management (MDM)
Planning for MDM
Configuring MDM integration with Azure AD
Setting an MDM authority
Setting device enrollment limits for users
Summary
Questions
Further reading
3
Managing Device Compliance
Managing Device Compliance
Planning for device compliance
Configuring device compliance policies
Designing, creating, and managing conditional access policies
Summary
Questions
Further reading
4
Planning for Devices and Apps
Planning for Devices and Apps
Creating and configuring Microsoft Store for Business
Planning app deployment
Planning device co-management
Planning device monitoring
Planning for device profiles
Planning for MAM
Planning mobile device security
Summary
Questions
Further reading
5
Planning Windows 10 Deployment
Planning Windows 10 Deployment
Planning for WaaS
Planning for Windows 10 Enterprise deployment
Analyzing Upgrade Readiness for Windows 10
Additional Windows 10 Enterprise security features
Summary
Questions
Further reading
6
Section 2: Microsoft 365 Security Threat Management
Section 2: Microsoft 365 Security Threat Management
7
Implementing Cloud App Security (CAS)
Implementing Cloud App Security (CAS)
Setting up CAS
Configuring CAS policies
Configuring connected apps
Designing a CAS solution
Managing CAS alerts
Uploading CAS traffic logs
Summary
Questions
Further reading
8
Implementing Threat Management
Implementing Threat Management
Planning a threat management solution
Designing and configuring Azure ATP
Designing and configuring Microsoft 365 ATP policies
Monitoring ATA incidents
Summary
Questions
Further reading
9
Implementing Windows Defender ATP
Implementing Windows Defender ATP
Planning our Windows Defender ATP solution
Configuring our preferences
Implementing Windows Defender ATP policies
Enabling and configuring the security features of Windows 10 Enterprise
Summary
Questions
Further reading
10
Managing Security Reports and Alerts
Managing Security Reports and Alerts
Managing the Service Assurance Dashboard
Microsoft Secure Score and Azure AD Identity Secure Score
Tracing and reporting on Azure AD Identity Protection
Microsoft 365 security alerts
Azure AD Identity Protection dashboard and alerts
Summary
Questions
Further reading
11
Section 3: Microsoft 365 Governance Compliance
Section 3: Microsoft 365 Governance Compliance
12
Configuring Data Loss Prevention (DLP)
Configuring Data Loss Prevention (DLP)
Configuring DLP policies
Designing data retention policies in Microsoft 365
Monitoring and managing DLP policy matches
Managing DLP exceptions
Summary
Questions
Further reading
13
Implementing Azure Information Protection (AIP)
Implementing Azure Information Protection (AIP)
Planning an AIP solution
Planning for classification labeling
Deploying AIP clients
Implementing an AIP tenant key
Planning for WIP implementation
Configuring IRM for workloads
Planning for the deployment of an on-premises Rights Management connector
Implementing AIP policies
Configuring a super user
Summary
Questions
Further reading
14
Managing Data Governance
Managing Data Governance
Planning and configuring information retention
Planning for a Microsoft 365 backup
Planning for restoring deleted content
Summary
Questions
Further reading
15
Managing Auditing
Managing Auditing
Configuring audit log retention
Configuring the audit policy
Monitoring unified audit logs
Azure AD audit and sign-in logs
Summary
Questions
Further reading
16
Managing eDiscovery
Managing eDiscovery
Searching content using the Security & Compliance Center
Planning for in-place and legal holds
Configuring eDiscovery
Summary
Questions
Further reading
17
Section 4: Mock Exams
Section 4: Mock Exams
18
Mock Exam 1
Mock Exam 1
19
Mock Exam 2
Mock Exam 2
20
Assessments
Assessments
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Chapter 6
Chapter 7
Chapter 8
Chapter 9
Chapter 10
Chapter 11
Chapter 12
Chapter 13
Mock Exam 1
Mock Exam 2
21
Another Book You May Enjoy
Another Book You May Enjoy
Leave a review - let other readers know what you think

Designing and configuring Azure ATP

Azure ATP is cloud-based but involves installing sensors on-prem to help manage risks in both locations and more comprehensively protect users. It involves the following:

  • Learning-based analytics and suspicious behavior identification
  • Protecting AD credentials
  • Reducing attack surfaces
  • Fast and clear incident reporting

Before you can use Azure ATP, you'll need to create and configure your Azure ATP instance. These are the basic steps. You would repeat these steps for each unique AD forest:

  1. Create an instance in the Azure ATP portal.
  2. Provide local Active Directory forest credentials.
  3. Download a sensor setup.
  4. Install a sensor on a dedicated server or a domain controller.
  5. Configure the sensor.

It's recommended to install one sensor per Active Directory forest. The following screenshot shows how you're able to provide multiple...

Previous Section
End of Section 3
Next Section