Microsoft 365 Security Administration
- Codice corso: MS-500T00
- Durata corso: 4gg
OBIETTIVI DEL CORSO
After completing this course, students should be able to:
- Administer user and group access in Microsoft 365.
- Explain and manage Azure Identity Protection.
- Plan and implement Azure AD Connect.
- Manage synchronized user identities.
- Describe cyber-attack threat vectors.
- Explain security solutions for Microsoft 365.
- Use Microsoft Secure Score to evaluate and improve your security posture.
- Plan for and deploy secure mobile devices.
- Implement information rights management.
- Secure messages in Office 365.
- Configure Data Loss Prevention policies.
- Deploy and manage Cloud App Security.
- Create and manage an eDiscovery investigation.
- Manage GDPR data subject requests.
- Explain and use sensitivity labels.
PREREQUISITI
Learners should start this course already having the following skills:
Basic conceptual understanding of Microsoft Azure.
Experience with Windows 10 devices.
Experience with Office 365.
Basic understanding of authorization and authentication.
Basic understanding of computer networks.
Working knowledge of managing mobile devices.
STRUTTURA DEL CORSO
Module 1: User and Group Management
Identity and Access Management Concepts
The Zero Trust model
Plan your identity and authentication solution
User accounts and roles
Identity Management
Create and manage user accounts.
Describe and use Microsoft 365 admin roles.
Plan for password policies and authentication.
Describe the concepts of Zero Trust security
Implement multi-factor authentication in Office 365.
Module 2: Identity Synchronization and Protection
Configure and manage synchronized identities
Password management
Azure AD Identity Protection
Describe authentication options for Microsoft 365.
Explain directory synchronization.
Plan directory synchronization.
Describe and use Azure AD Connect.
Configure Azure AD Connect Prerequisites.
Manage users and groups with directory synchronization.
Describe Active Directory federation.
Enable Azure Identity Protection
Module 3: Access Management
Use Conditional Access to enable MFA
MFA Authentication Pilot (require MFA for specific apps)
MFA Conditional Access (complete an MFA roll out)
Describe the concept of conditional access.
Describe and use conditional access policies.
Plan for device compliance.
Configure conditional users and groups.
Configure role based access control
Module 4: Security in Microsoft 365
Threat vectors and data breaches
Security strategy and principles
Security solutions for Microsoft 365
Secure Score
Module 5: Threat Protection
Exchange Online Protection (EOP)
Office 365 Advanced Threat Protection
Manage Safe Attachments
Manage Safe Links
Azure Advanced Threat Protection
Microsoft Defender Advanced Threat Protection
Module 6: Threat Management
Security dashboard
Threat investigation and response
Azure Sentinel
Advanced Threat Analytics
Module 7: Cloud Application Security
Deploy Cloud Application Security
Use cloud application security information
Explain how to deploy Cloud App Security.
Control your Cloud Apps with Policies.
Use the Cloud App Catalog.
Use the Cloud Discovery dashboard.
Manage cloud app permissions.
Module 8: Mobility
Mobile Application Management (MAM)
Mobile Device Management (MDM)
Deploy mobile device services
Enroll devices to Mobile Device Management
Describe mobile application considerations.
Use Intune to manage mobile applications.
Manage devices with MDM.
Configure Domains for MDM.
Manage Device Security Policies.
Enroll devices to MDM.
Configure a Device Enrollment Manager Role.
Module 9: Information Protection
Information protection concepts
Sensitivity labels
Azure Information Protection (AIP)
Windows Information Protection (WIP)
Module 10: Rights Management and Encryption
Information Rights Management (IRM)
Secure Multipurpose Internet Mail Extension (S-MIME)
Office 365 Message Encryption
Module 11: Data Loss Prevention
Data loss prevention fundamentals
Create a DLP policy
Customize a DLP policy
Create a DLP policy to protect documents
Policy tips
Module 12: Archiving and Retention
Archiving in Microsoft 365
Retention in Microsoft 365
Retention policies in the Microsoft 365 Compliance Center
Archiving and Retention in Exchange
In-place Records Management in SharePoint
Explain how a retention policy functions.
Create a retention policy.
Enable and disable in-place archiving.
Create useful retention tags.
Module 13: Content Search and Investigation
Content Search
Audit Log Investigations
Advanced eDiscovery
Module 14: Compliance in Microsoft 365
Compliance center
Compliance center solutions
Building ethical walls in Exchange Online
Describe what you need to consider for GDPR.
Describe what an ethical wall in Exchange is and how it works.
Explain compliance score.
Explain and use insider risk management