Free course
https://www.fastlane.live/us_en/e-learning/microsoft-365-security-administrator-track.html
-
-
- Sign up and purchase the course (free)
-
Free Practice Test
https://www.examtopics.com/exams/microsoft/ms-500/
https://www.itexams.com/info/MS-500
Free Test Dumps:
https://master-exam.com/Microsoft/MS-500/
MS Office Pratice Test
https://www.measureup.com/ms-500-microsoft-365-security-administration.html
Skills measured
-
-
- Implement and manage identity and access (30-35%)
- Implement and manage threat protection (20-25%)
- Implement and manage information protection (15-20%)
- Manage governance and compliance features in Microsoft 365 (20-25%)
-
Registration
For non-students interested in technology
Implement and manage identity and access (30-35%)
Secure Microsoft 365 hybrid environments
-
-
- Plan Azure AD authentication options
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-hybrid-identity-design-considerations-business-needs
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/choose-ad-authn
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-hybrid-identity
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sso
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods
- https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-deployment-plans
- Plan Azure AD synchronization options
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-whatis
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-express
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-install-custom
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-hybrid-identity-design-considerations-overview
- Monitor and troubleshoot Azure AD Connect events
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-azure-ad-connect
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-feature-scheduler
- https://docs.microsoft.com/en-us/office365/enterprise/fix-problems-with-directory-synchronization
- https://evertoncollins.com/azure-fix-unhealthy-identity-synchronization/
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-health-operations
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-azure-ad-connect#what-is-azure-ad-connect-health
-
Secure Identities
-
-
- Implement Azure AD group membership
- https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-groups-create-azure-portal
- https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/groups-create-rule
- Implement password management
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-sspr-deployment
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr
- Configure and manage identity governance
-
Implement authentication methods
-
-
- Plan sign-on security
- https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-hybrid-identity-design-considerations-multifactor-auth-requirements
- https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-security-defaults
- Implement multi-factor authentication (MFA)
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-mfa-howitworks
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-azure-mfa
- Manage and monitor MFA
- Plan and implement device authentication methods like Windows Hello
- https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-planning-guide
- https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-manage-in-organization
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-deployment
- Configure and manage Azure AD user authentication options
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods
- https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-passwordless-phone
- https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/overview-reports
- https://docs.microsoft.com/en-us/azure/azure-sql/database/authentication-aad-configure
-
Implement conditional access
Implement role-based access control (RBAC)
Implement Azure AD Privileged Identity Management (PIM)
-
-
- Manage Azure PIM role assignments
-
Implement Azure AD Identity Protection
Implement and manage threat protection (20-25%)
Implement an enterprise hybrid threat protection solution
Implement device threat protection
-
-
- manage and monitor Microsoft Defender ATP
-
Implement and manage device and application protection
-
-
- plan for device and application protection
- configure and manage Windows Defender Application Guard
- configure and manage Windows Defender Application Control
- configure and manage Windows Defender Exploit Guard
- configure Secure Boot
- configure and manage Windows device encryption
- configure and manage non-Windows device encryption
- plan for securing applications data on devices
- implement application protection policies
-
Implement and manage Office 365 ATP
Implement Azure Sentinel for Microsoft 365
Implement and manage information protection (15-20%)
Secure data access within Office 365
-
-
- Configure data access in Office 365 collaboration workloads
- https://docs.microsoft.com/en-us/office365/enterprise/office-365-inter-tenant-collaboration
- https://docs.microsoft.com/en-us/office365/securitycompliance/protect-access-to-data-and-services
- https://docs.microsoft.com/en-us/office365/securitycompliance/secure-sharepoint-online-sites-and-files
- https://docs.microsoft.com/en-us/microsoftteams/security-compliance-overview
- https://docs.microsoft.com/en-us/Yammer/manage-security-and-compliance/security-and-compliance
- Configure B2B sharing for external users
- https://docs.microsoft.com/en-us/azure/active-directory/b2b/what-is-b2b
- https://docs.microsoft.com/en-us/azure/active-directory/b2b/o365-external-user
- https://docs.microsoft.com/en-us/azure/active-directory/b2b/add-users-administrator
- https://docs.microsoft.com/en-us/azure/active-directory/b2b/add-users-information-worker
-
Manage Azure information Protection (AIP)
Manage Data Loss Prevention (DLP)
Implement and manage Microsoft Cloud App Security
-
-
- plan Cloud App Security implementation
- configure Microsoft Cloud App Security
- manage cloud app discovery
- manage entries in the Cloud app catalog
- manage apps in Cloud App Security
- manage Microsoft Cloud App Security
- configure Cloud App Security connectors and Oauth apps
- https://docs.microsoft.com/en-us/cloud-app-security/azip-integration
- https://docs.microsoft.com/en-us/cloud-app-security/siem
- https://docs.microsoft.com/en-us/cloud-app-security/icap-stunnel
- https://docs.microsoft.com/en-us/cloud-app-security/flow-integration
- https://docs.microsoft.com/en-us/cloud-app-security/api-tokens
- configure Cloud App Security policies and templates
- review, interpret and respond to Cloud App Security alerts, reports, dashboards and logs
-
Manage governance and compliance features in Microsoft 365 (25-30%)
Configure and analyze security reporting
Manage and analyze audit logs and reports
Manage data governance and retention
-
-
- plan for data governance and retention
- review and interpret data governance reports and dashboards
- configure retention policies
- define data governance event types
- define data governance supervision policies
- configure Information holds
- find and recover deleted Office 365 data
- https://docs.microsoft.com/en-us/exchange/recipients-in-exchange-online/delete-or-restore-mailboxes
- https://docs.microsoft.com/en-us/office365/admin/create-groups/restore-deleted-group
- https://docs.microsoft.com/en-us/onedrive/restore-deleted-onedrive
- configure data archiving
-
Manage search and investigation
Manage data privacy regulation compliance
-
- plan for regulatory compliance in Microsoft 365
- https://docs.microsoft.com/en-us/microsoft-365/compliance/gdpr-action-plan
- https://docs.microsoft.com/en-us/office365/servicedescriptions/office-365-platform-service-description/compliance-servicedesc
- review and interpret GDPR dashboards and reports
- manage Data Subject Requests (DSRs)
- administer Compliance Manager
- review Compliance Manager reports
- create and perform Compliance Manager assessments and action items
testest test