Microsoft MS-102: Exam Objectives, Format, and Study Plan

  • MS-102 exam
  • Published by: André Hammer on Feb 06, 2024
Group classes

Microsoft 365 administration means managing the connected identity, endpoint management, threat protection, and compliance controls that now shape the platform.

The MS-102 exam assesses whether a candidate can administer a Microsoft 365 tenant across those connected areas, using current products such as Microsoft Entra ID, Microsoft Intune, Microsoft Defender, and Microsoft Purview. It is the exam associated with the Microsoft 365 Administrator role, and it replaced the older MS-100 and MS-101 route; candidates should not treat MS-100 as a prerequisite.

That change matters because older study material can send candidates in the wrong direction. Azure AD is now Microsoft Entra ID, Microsoft 365 compliance work is now centred on Microsoft Purview, and endpoint administration is built around Intune. The exam is less about memorising a single portal path and more about understanding how policies interact across identity, devices, data, and security operations.

What the MS-102 exam expects from candidates

MS-102 is aimed at administrators who manage Microsoft 365 services in a business environment. A successful candidate needs enough breadth to understand tenant configuration, identity and access, endpoint controls, collaboration security, threat protection, information protection, and governance. The role sits between pure helpdesk administration and deep security or endpoint specialisation.

Microsoft publishes the current skills measured, registration information, exam language availability, regional pricing, and policy details on the official Microsoft Learn exam page. Candidates should use that page as the source of truth because Microsoft can update objective wording, weighting, and product names as the platform changes. Pearson VUE handles exam delivery, and Microsoft’s Exam Sandbox is useful for becoming familiar with the interface before exam day.

In practice, candidates should expect a mix of question styles rather than a single multiple-choice format. Microsoft role-based exams commonly include multiple-choice questions, build-list tasks, drag-and-drop items, scenario-based questions, and case studies. Candidates should not expect live production labs in the exam; preparation should still be hands-on because the questions often test whether a candidate understands the outcome of a configuration choice.

The passing score, exam duration, appointment rules, identification requirements, reschedule policy, and price should be checked directly during registration because they may vary by region or change over time. The exam is also covered by Microsoft’s exam security and non-disclosure rules, so legitimate preparation should focus on Microsoft Learn, documentation, labs, practice assessments, and scenario reasoning rather than recalled exam questions.

The main skill areas behind the exam

The identity portion of MS-102 is built around Microsoft Entra ID. Candidates need to understand users, groups, administrative roles, authentication methods, identity synchronisation, Conditional Access, privileged role controls, and secure access patterns. A common weak spot is treating these features as isolated settings. In a real tenant, a Conditional Access policy can block device enrolment, interrupt a break-glass process, or require a sign-in method a user population has not yet registered.

Tenant management and collaboration security are equally important. Administrators need to understand how Microsoft 365 groups, Teams, SharePoint, Exchange Online, external sharing, and administrative roles affect each other. For example, a data loss prevention policy in Microsoft Purview can change what users are able to share from Teams or SharePoint, even when the collaboration settings appear permissive. This is where exam preparation should include impact analysis rather than simple feature recall.

Threat protection questions often involve Microsoft Defender capabilities across endpoints, identity, email, and collaboration. Candidates should be able to reason about anti-phishing controls, safe attachments, endpoint detection, attack surface reduction, alert investigation, and policy precedence. Defender policies may overlap, and an administrator may need to determine which policy applies, where an alert should be investigated, or how a configuration change affects user productivity.

Compliance and information protection require a different mindset. Microsoft Purview topics can include retention, sensitivity labels, audit, eDiscovery concepts, data loss prevention, insider risk concepts, and information governance. Candidates do not need to become legal specialists, but they do need to understand how governance settings protect data, support investigations, and affect day-to-day collaboration.

Why older MS-100 and MS-101 material can mislead candidates

MS-102 consolidated the older administrator path into a current exam aligned with the Microsoft 365 Administrator role. That means a candidate coming from MS-100 or MS-101 study notes should be careful with old prerequisites, retired interface names, and portal screenshots. The safest approach is to map every topic back to the current Microsoft Learn skills outline before investing time in a course, book, or practice test.

One common mistake is over-preparing for exact portal clicks while under-preparing for policy design. Microsoft changes admin centre navigation regularly, but the underlying concepts persist: who is targeted, what condition applies, what control is enforced, what exception exists, and how the change is validated. Candidates who practise with that policy-centred mindset tend to handle scenario questions more effectively than candidates who memorise where a button appeared in an older screenshot.

Another practical shift is the growing value of automation. Microsoft 365 administrator roles increasingly involve PowerShell and Microsoft Graph for bulk changes, reporting, licence management, user lifecycle tasks, and policy review. MS-102 is not a scripting exam, but candidates who understand how administrators automate repetitive work are better prepared for real tenant operations and for scenario questions that involve scale.

MS-102 or a specialist exam first?

MS-102 is the better fit when the goal is broad Microsoft 365 administration across identity, endpoint, security, and compliance. A specialist endpoint path is more appropriate when the role is heavily focused on device deployment, configuration profiles, application management, and endpoint operations. Candidates deciding between breadth and device depth can compare MS-102 with the MD-102 endpoint administrator course path, then choose the route that best matches their current responsibilities.

Team leads may take a slightly different view. If the organisation needs administrators who can troubleshoot across tenant boundaries, MS-102 provides a broad common language. If the organisation already has strong identity and compliance coverage but needs deeper device management capability, endpoint specialisation may come first. The decision should follow the work the administrator is expected to perform, not the assumption that one certification path is always a prerequisite for another.

Building a safe practice environment

MS-102 preparation should include hands-on practice, but candidates should avoid experimenting in a production tenant unless they have approval, change controls, and rollback plans. A safe test tenant allows candidates to explore policies, create test users, configure groups, apply labels, test Conditional Access behaviour, review alerts, and observe how settings affect users without disrupting the business.

A useful practice tenant does not need to be complex. It should include a small set of test users, at least one administrative account, representative groups, sample SharePoint or Teams content, and a few managed devices or virtual test devices where available. The point is to practise cause and effect: create a policy, apply it to a scoped test group, sign in as a user, check the result, and document what changed.

Several practice tasks are especially valuable because they connect multiple exam domains. Candidates can configure a Conditional Access policy and then test whether a user can enrol a device in Intune. They can create a sensitivity label and verify how it affects sharing. They can configure an anti-phishing policy and review how alerts appear in Defender. They can also create a basic retention policy in Purview and consider how it affects Teams or SharePoint content.

One anonymised workplace scenario illustrates the point. An administrator tightened Conditional Access for unmanaged devices and then discovered that new starters could not complete enrolment on corporate-owned devices. The fix required understanding both Entra ID conditions and Intune enrolment flow. That kind of cross-domain reasoning is exactly what candidates should practise before the exam.

A realistic six-week study plan

A six-week plan works well for candidates who already have some Microsoft 365 administration exposure and can study consistently. Career switchers may need more time, especially if identity, endpoint management, or compliance concepts are new. The aim is not to rush through objectives, but to build enough fluency to answer scenario questions under time pressure.

  1. Week one: Read the current Microsoft Learn skills outline, set up a test tenant, and identify weak areas across Entra ID, Intune, Defender, and Purview.
  2. Week two: Focus on users, groups, roles, identity synchronisation concepts, authentication methods, and Conditional Access scenarios.
  3. Week three: Practise tenant configuration, collaboration controls, Teams and SharePoint sharing, administrative roles, and governance basics.
  4. Week four: Work through Defender topics, email and collaboration protection, endpoint security settings, alert investigation, and policy overlap.
  5. Week five: Study Purview topics, including sensitivity labels, retention, data loss prevention, audit concepts, and information governance scenarios.
  6. Week six: Review weak objectives, use the Microsoft Exam Sandbox, complete timed practice, revisit case-study technique, and avoid new material overload.

During this plan, candidates should maintain a short study log. Each entry should record the policy being tested, the user or group targeted, the expected result, the actual result, and the reason for any difference. This habit turns lab work into exam preparation because it forces the candidate to explain outcomes rather than merely follow steps.

Structured training can help when a candidate needs a defined path and instructor-led pacing. Readynez covers Microsoft 365 administration training as part of its Microsoft portfolio, and readers comparing related Microsoft options can browse the broader Microsoft training courses if they are planning more than one certification route.

How to approach case studies and exam timing

Case studies can feel demanding because they combine business requirements, existing configuration, user groups, constraints, and proposed solutions. Candidates should read the requirement first, then identify the affected workload, and only then evaluate the answer choices. Jumping straight into the details can waste time because not every piece of information in a case study is equally important.

Timeboxing is useful. If a question is not clear after a reasonable attempt, candidates should choose the best current answer, flag it if the interface permits, and move on. Later questions may refresh a concept or reveal that the candidate was overthinking a detail. The Microsoft Exam Sandbox is valuable here because it lets candidates rehearse the exam interface without using actual exam content.

Build-list and drag-and-drop questions should be handled by identifying dependencies. For example, an administrator usually needs the right group scope before applying a policy, and a user experience can only be validated after the policy is assigned and processed. Thinking in administrative sequence helps reduce guessing.

Another anonymised scenario shows why this matters. A compliance administrator introduced a Purview DLP policy to protect sensitive content, but Teams users reported blocked sharing in a project channel. The correct analysis required looking beyond Teams settings and understanding how Purview policy evaluation affected collaboration. Exam scenarios often test that same habit of tracing the control that actually caused the result.

Common preparation mistakes

The most damaging preparation mistake is relying on retired exam guidance. Any resource that still presents MS-100 as a prerequisite, uses Azure AD as the primary current product name without context, or focuses on old portal names should be treated with caution. It may still explain useful concepts, but candidates need to translate the material into the current Microsoft 365 administration model.

Another mistake is ignoring the boundaries between workloads. Identity, endpoint, security, and compliance policies frequently interact. Conditional Access can affect enrolment, Defender settings can affect device behaviour, and Purview controls can affect collaboration. Candidates who study each workload in isolation can be surprised by scenario questions that ask for the effect of one policy on another service.

Practice tests can be useful, but they should be used diagnostically rather than as memorisation tools. A low score should lead to a specific study action, such as revisiting authentication strengths, reviewing Intune compliance policy behaviour, or practising Purview DLP scoping. A high score should still be checked against the official skills outline, because familiarity with a practice test is not the same as readiness for the live exam.

Exam-day strategy

Before exam day, candidates should confirm the appointment details, identification requirements, testing environment rules, and reschedule policy through the official registration flow. For online proctored exams, the room, device, internet connection, camera, and identification checks should be prepared early. For test-centre appointments, candidates should allow enough time for travel and check-in.

During the exam, candidates should read each question for the administrative goal. Many wrong answers are plausible Microsoft 365 features that solve a different problem. If the question asks for the least administrative effort, the most secure option, or the control that meets a specific compliance requirement, that phrase should guide the answer.

Flagged questions should be reviewed carefully, but candidates should avoid changing answers without a reason. A good reason is noticing a missed requirement, recognising a policy dependency, or correcting a product boundary. A poor reason is anxiety after seeing several difficult questions in a row.

After the exam, the score report should guide the next step. Candidates who pass can use the report to identify areas that need strengthening for the role. Candidates who do not pass should avoid immediately repeating the same preparation; instead, they should map weak areas back to the official skills outline and rebuild practice around scenarios.

Where MS-102 skills fit after certification

MS-102 preparation is most valuable when it improves day-to-day administration, not when it ends at the score report. The skills behind the exam apply to onboarding users, enforcing access controls, securing endpoints, protecting sensitive content, responding to threats, and supporting governance requirements. These are operational responsibilities, not abstract exam topics.

The next step depends on the candidate’s role. Some administrators will go deeper into endpoint management, security operations, or compliance. Others will broaden into Microsoft 365 architecture, automation, or service ownership. Readers looking across multiple Microsoft paths can use the Unlimited Microsoft Training option to plan study beyond a single exam, or contact Readynez for guidance on choosing a route that matches their responsibilities.

FAQ

What is the Microsoft MS-102 exam?

MS-102 is the Microsoft 365 Administrator exam. It tests a candidate’s ability to administer Microsoft 365 services across identity, access, security, endpoint management, compliance, and tenant configuration using current Microsoft 365 admin tools.

Is MS-100 a prerequisite for MS-102?

No. MS-102 replaced the older MS-100 and MS-101 route for the Microsoft 365 Administrator certification path. Candidates should use the current Microsoft Learn MS-102 page rather than older prerequisite guidance.

What products should candidates know for MS-102?

Candidates should be familiar with Microsoft Entra ID, Microsoft Intune, Microsoft Defender, Microsoft Purview, Exchange Online, SharePoint, Teams, and the Microsoft 365 admin centre. The exam expects candidates to understand how these services interact in tenant administration.

Does the MS-102 exam include live labs?

Candidates should not expect live production labs. The exam can include scenario-based and interactive question formats, so hands-on practice is still important because many questions test the effect of configuration choices.

How should candidates prepare for MS-102?

Candidates should start with the official skills outline, build a safe test tenant, practise policy scenarios across Entra ID, Intune, Defender, and Purview, use Microsoft’s Exam Sandbox to understand the interface, and review weak areas through timed practice before booking the exam.

Where can candidates find more Microsoft 365 learning resources?

Microsoft Learn should be the primary source for the current exam outline and documentation. For broader Microsoft certification planning and related articles, the Readynez blog can help candidates continue researching study approaches and role-specific skills.

A group of people discussing the latest Microsoft Azure news

Unlimited Microsoft Training

Get Unlimited access to ALL the LIVE Instructor-led Microsoft courses you want - all for the price of less than one course. 

  • 60+ LIVE Instructor-led courses
  • Money-back Guarantee
  • Access to 50+ seasoned instructors
  • Trained 50,000+ IT Pro's

Basket

{{item.CourseTitle}}

Price: {{item.ItemPriceExVatFormatted}} {{item.Currency}}