課程名稱:Microsoft 365 Certified Administrator Expert (1科商務雲端專家) 國際認可證書課程
- 簡稱:Administrator Expert Training Course |
MS-102 Microsoft 365 Administrator (36 hrs)
1. Configure Microsoft 365 Experience
1.1 Explore your Microsoft 365 cloud environment
1.1.1 Microsoft 365 subscriptions and plans
1.1.2 Build your cloud-computing foundation on a Microsoft 365 subscription and a Microsoft Entra tenant
1.1.3 Microsoft 365 plans that don't create a Microsoft Entra tenant
1.1.4 Licenses
1.1.5 Organizations with multiple Microsoft Entra tenants
1.1.6 Tenant information
1.1.7 Attributes of a well-designed Microsoft Entra tenant
1.2 Configure your Microsoft 365 organizational profile
1.2.1 Update your organization's theme
1.3 Manage your tenant subscriptions in Microsoft 365
1.4 Integrate Microsoft 365 with customer engagement apps
1.4.1 Purchase services page in the Microsoft 365 admin center
1.4.2 Assign services
1.4.3 Marketplace in the Microsoft Azure portal
1.5 Configure tenant-level sharing settings for SharePoint and OneDrive
1.6 Configure tenant-level settings for Microsoft Teams
1.6.1 Teams meeting settings
1.7 Enable Unified Audit Logging in Microsoft 365
1.8 Complete your tenant configuration in Microsoft 365
2. Manage users, licenses, guests, and contacts
2.1 Determine the user identity model for your organization
2.1.1 Cloud identities
2.1.2 Synchronized identities
2.1.3 Federated identities
2.1.4 Determining the best model for your organization
2.2 Create user accounts in Microsoft 365
2.2.1 Creating users with the Microsoft 365 admin center
2.2.2 Creating users with the “Add multiple users” option
2.2.3 Creating users with Windows PowerShell
2.3 Manage user account settings in Microsoft 365
2.3.1 Manage user accounts in the Microsoft 365 admin center
2.4 Manage user licenses in Microsoft 365
2.4.1 Assigning a license
2.4.2 Using Microsoft Graph PowerShell to manage user licenses
2.5 Recover deleted user accounts in Microsoft 365
2.5.1 Deleting a user account
2.5.2 Restoring a deleted user account
2.6 Create and manage guest users
2.6.1 Understanding guest accounts in Microsoft 365
2.6.2 External collaboration settings
2.6.3 Restrict guest access permissions in Microsoft Entra ID
2.6.4 Invitation redemption
2.6.5 Add guests in Microsoft Entra ID
2.6.6 Invitation redemption flow
2.6.7 Redemption process and sign-in through a common endpoint
2.6.8 Redemption process through a direct link
2.7 Collaborate with guests in a SharePoint site
2.7.1 Configure the Microsoft Entra ID external collaboration settings
2.7.2 Configure the SharePoint organization-level sharing settings
2.7.3 Create a site
2.7.4 Configure the SharePoint site-level sharing settings
2.7.5 Invite users
2.8 Create and manage contacts
2.8.1 Permissions needed to create mail contacts
2.8.2 Create a contact using the Microsoft 365 admin center
2.8.3 Use Exchange Online PowerShell to modify mail contacts
2.8.4 Use Exchange Online PowerShell to remove mail contacts
3. Manage groups in Microsoft 365
3.1 Group Types in Microsoft 365
3.1.1 Collaboration spaces for Microsoft 365 groups
3.1.2 How Microsoft 365 Groups work with Teams
3.1.3 Group membership
3.1.4 Deleting groups and teams
3.2 Create and manage groups in Microsoft 365
3.2.1 Nesting groups
3.2.2 Deleting and restoring groups
3.2.3 Manage group-based licensing in Microsoft Entra ID
3.3 Create dynamic groups using Microsoft Entra rule builder
3.3.1 Rule syntax for a single expression
3.3.2 Supported expression operators
3.3.3 Rules with complex expressions
3.3.4 A Rule to include all users
3.3.5 A Rule to include all devices
3.3.6 Custom Extension Properties
3.4 Microsoft 365 group naming policy
3.4.1 Prefix-suffix naming policy
3.4.2 Custom blocked words
3.4.3 Configure Microsoft 365 groups naming policy using Microsoft Entra admin center
3.4.4 User experiences with naming policy
3.4.5 Outlook web client experience
3.4.6 Outlook Desktop experience
3.4.7 License requirements
3.4.8 Microsoft 365 group naming policy considerations
3.5 Create groups in Exchange Online and SharePoint Online
3.5.1 Creating groups in Exchange Online
3.5.2 Creating Security Groups in SharePoint Online
3.5.3 FAQ About SharePoint Security Group
4. Custom Domain
4.1 Plan a custom domain for your Microsoft 365 deployment
4.1.1 Multiple domains
4.1.2 Subdomains
4.1.3 Domain numbers
4.1.4 Domain adding order
4.1.5 DNS record hosting
4.1.6 Access to the DNS console
4.1.7 Not registering DNS
4.1.8 Not changing all records
4.2 DNS zones for a custom domain
4.3 Configuring Custom Domain Name for Microsoft 365
4.3.1 DNS Zone planning in a hybrid deployment
4.3.2 DNS zone planning for a custom domain
4.3.3 Internal DNS zones and external DNS zones have different names
4.3.4 Split DNS
4.3.5 DNS zone planning when moving an entire tenant to the cloud
4.4 DNS record requirements for a Custom Domain
4.4.1 External DNS records required for Microsoft 365 (core services)
4.4.2 External DNS records required for email in Microsoft 365 (Exchange Online)
4.4.3 External DNS records required for Microsoft Teams
4.4.4 External DNS records required for Microsoft 365 Single Sign-on
4.4.5 External DNS records required for Sender policy framework (SPF)
5. Configure Client Connectivity to Microsoft 365
5.1 how automatic client configuration works
5.2 DNS records required for client configuration
5.3 Configure Outlook clients
5.3.1 Connectivity protocols
5.3.2 Outlook connectivity for cloud-only and hybrid deployments
5.3.3 Network configuration
5.4 Troubleshooting client connectivity
5.4.1 Microsoft Remote Connectivity Analyzer
5.4.2 Microsoft 365 Support and Recovery Assistant
6. Administrative Roles in Microsoft 365
6.1 Microsoft 365 permission model
6.1.1 Microsoft 365 admin center
6.1.2 Microsoft Defender portal
6.1.3 Microsoft Purview compliance portal
6.1.4 Administrator roles
6.1.5 Relationship of members, roles, and role groups
6.1.6 Types of roles and role groups in Microsoft 365
6.2 Microsoft 365 admin roles
6.2.1 Security guidelines for assigning roles
6.2.2 Commonly used Microsoft 365 admin center roles
6.3 Assign admin roles to users in Microsoft 365
6.4 Manage permissions using administrative units in Microsoft Entra ID
6.4.1 Deployment scenario
6.4.2 License requirements
6.4.3 Manage administrative units
6.4.4 Currently supported scenarios
6.4.5 Managing permissions in administrative units
6.5 Azure AD (or Entra ID) Priviliged Identiy Management
6.5.1 Enabling Azure AD (or Entra ID) Privileged Identity Management
6.5.2 Assigning Azure Resource Roles in PIM
6.5.3 Activating an Eligible resource role in Azure AD (or Entra ID) PIM
6.6 Best practices when configuring administrative roles
6.6.1 Manage to least privilege
6.6.2 Use Privileged Identity Management to grant just-in-time access
6.6.3 Turn on multifactor authentication for all your administrator accounts
6.6.4 Configure recurring access reviews to revoke unneeded permissions over time
6.6.5 Limit the number of Global Administrators to less than five
6.6.6 Use groups for Microsoft Entra role assignments and delegate the role assignment
6.6.7 Use cloud native accounts for Microsoft Entra roles
7. Tenant health and services in Microsoft 365
7.1 Monitor the health of your Microsoft 365 services
7.1.1 Microsoft 365 Health dashboard
7.1.2 Critical alerts
7.2 Monitor tenant health using Microsoft 365 Adoption Score
7.2.1 Adoption Score prerequisites
7.2.2 How the Adoption Score is calculated
7.2.3 Category details pages
7.2.4 Group level aggregates
7.2.5 Organizational messages
7.3 Implement Microsoft 365 Network Connectivity Assessments and Insights
7.3.1 Prerequisites for network connectivity assessments to appear
7.3.2 Option 1 - Turn on your location opt-in setting to automatically collect data from devices using Windows Location Services
7.3.3 Enable Windows Location Services
7.3.4 Add locations and provide LAN subnet information
7.3.5 Option 2 - Go to your Locations list to manually add or upload location data
7.3.6 Option 3 - Run the Microsoft 365 network connectivity test from your office locations
7.3.7 Interpret network assessments
7.3.8 How do I use this information?
7.3.9 Enterprise network connectivity challenges
7.3.10 Microsoft 365 Network Insights
7.4 More about Microsoft 365 Backup (Preview)
7.4.1 Microsoft and partner offerings
7.4.2 Microsoft 365 Backup pricing model
7.4.3 Pricing calculator
7.4.4 Microsoft 365 Backup architecture
7.4.5 Backup policy performance
7.4.6 Restoration performance
7.5 Develop an incident response plan
7.6 Requesting assistance from Microsoft
7.6.1 Administrator role and responsibilities
8. Microsoft 365 Apps for Enterprise
8.1 Self-service installation of Microsoft 365 Apps for enterprise
8.1.1 Obstacles to a successful self-service installation of Microsoft 365 Apps for enterprise
8.1.2 Prohibit all users from installing Microsoft 365 Apps for enterprise
8.2 Deploy Microsoft 365 Apps for enterprise from the cloud
8.2.1 The Office Content Delivery Network
8.2.2 The Office Deployment Tool
8.3 Deploy Microsoft 365 Apps for enterprise from a local source
8.4 Manage updates to Microsoft 365 Apps for enterprise
8.4.1 Update options
8.4.2 Using the Office Deployment Tool's configuration.xml file to manage updates
8.5 Update channels for Microsoft 365 Apps for enterprise
8.5.1 Current Channel
8.5.2 Current Channel (Preview)
8.5.3 Monthly Enterprise Channel
8.5.4 Semi-Annual Enterprise Channel
8.5.5 Channel recommendations
8.5.6 Configuring users for update channels
8.6 Manage your cloud apps using the Microsoft 365 Apps admin center
8.6.1 Office cloud policy service
8.6.2 Office Inventory
8.6.3 Service update status
9. Analyze your Microsoft 365 workplace data using Microsoft Viva Insights
9.1 Analytical features of Microsoft Viva Insights
9.1.1 Privacy and data protection
9.1.2 Role descriptions and access levels
9.2 Explore Personal insights
9.2.1 Personal insights data
9.2.2 Data privacy concerning Personal insights data
9.3 Team insights
9.3.1 About team data and data privacy
9.3.2 Permissions and app setup
9.4 Organization insights
9.4.1 Insights by role
9.4.2 Using Organization insights
9.4.3 Organization insights per tab
10. Identity Synchronization
10.1 Authentication options for the hybrid identity model
10.1.1 Password hash synchronization (PHS)
10.1.2 Pass-through authentication (PTA)
10.1.3 Federated authentication
10.2 Explore directory synchronization
10.3 Prepare for directory synchronization
10.3.1 Source of authority
10.3.2 Active Directory cleanup
10.3.3 UPN suffixes
10.3.4 Microsoft 365 IdFix tool
10.4 Comparing Directory Synchronization tools
10.4.1 Microsoft Entra Connect Sync
10.4.2 Microsoft Entra Cloud Sync
10.4.3 Comparison between Microsoft Entra Connect Sync and Microsoft Entra Cloud Sync
10.4.4 Microsoft Entra Connect Sync server
10.4.5 SQL Server used by Microsoft Entra Connect Sync
10.4.6 Accounts
10.4.7 Connectivity
10.4.8 Outbound proxy server requirements
10.4.9 Hardware requirements for Microsoft Entra Connect Sync
10.5 Configuring Microsoft Entra Connect Sync with Express Setup
10.6 Microsoft Entra Connect Sync Custom setup
10.7 Monitoring AD Connect Synchronization Health
10.7.1 Microsoft Entra Connect Sync Insight
10.7.2 Sync Latency
10.7.3 Sync Object Changes
11. Managing Syncrhonized Identities
11.1 Manage users with directory synchronization
11.1.1 Managing user accounts
11.1.2 Recovering an accidentally deleted user account
11.1.3 Recovering from unsynchronized deletes
11.1.4 Moving an out-of-sync user
11.1.5 Enhanced user management
11.1.6 Enable password writeback for SSPR
11.1.7 Device writeback
11.2 Manage groups with directory synchronization
11.2.1 Group writeback in Microsoft Entra Connect Sync
11.3 Maintain directory synchronization using Microsoft Entra Connect Sync security groups
11.4 Configure object filters for directory synchronization
11.4.1 Disable the scheduled task
11.4.2 Configuring OU-based filtering
11.4.3 Apply and verify changes
11.5 About Microsoft Identity Manager
11.5.1 Key features of Microsoft Identity Manager
11.5.2 How is MIM commonly used?
11.6 Troubleshoot directory synchronization
11.6.1 Deactivate and reactivate directory synchronization
11.6.2 Identity synchronization and duplicate attribute resiliency
11.6.3 View directory synchronization errors in the Microsoft 365 admin center
11.6.4 Unhealthy identity synchronization notification
11.6.5 Directory synchronization troubleshooter
11.6.6 Synchronization Service Manager
11.6.7 Troubleshoot password hash synchronization with Microsoft Entra Connect Sync
12. Email Protection with Defender XDR
12.1 Anti-malware policies
12.1.1 Anti-malware policies in EOP
12.1.2 The anti-malware pipeline
12.1.3 Create anti-malware policies in the Microsoft Defender portal
12.1.4 Zero-hour auto purge (ZAP)
12.2 Anti-spam policies
12.2.1 Allowlists and blocklists in anti-spam policies
12.3 EOP Anti-Spoofing Protection
12.3.1 How spoofing works in phishing attacks
12.3.2 Different types of spoofing
12.3.3 Problems with anti-spoofing protection
12.4 Protect users from malicious attachments by using Safe Attachments
12.5 Safe Links
12.6 URL detonation
12.6.1 Suspicious message warning
13. Purview Data Loss Prevention
14. Purview Insider Risk Management
14.1 Introduction to Insider Risk Management
14.2 Risk Pain Points in the Modern Workplace
14.3 Common insider risk scenarios
14.4 Insider risk management workflow
14.5 Concepts of Insider Risk Policies
14.5.1 Components of a policy
14.5.2 Policy dashboard
14.5.3 Policy templates
14.5.4 Insider Risk Management General settings
14.5.5 Policy Indicators
14.5.6 Policy timeframes
14.5.7 Intelligent detections
14.6 Create and manage insider risk policies
14.6.1 Required roles or permissions to manage Insider Risk Policies
14.6.2 Potential dependencies
15. Purview Retention Labels and Policies
15.1 An Introduction to Data Lifecycle Management
15.2 Retention policy precedence
15.3 Configure retention labels
15.4 Configure manual retention label policies
|
繳付學費,過程簡便!
