MS-102 Exam Topics: Complete Study Guide [2026 Updated]

Master every MS-102 exam objective with our comprehensive breakdown of topics, study strategies, and resource recommendations.

16 min read
Updated February 2026
Complete Syllabus

Understanding the MS-102 exam topics is your first step toward certification success. The Microsoft 365 Administrator exam covers a broad range of skills, from tenant deployment to security management. This comprehensive MS-102 study guide breaks down every exam objective so you know exactly what to study.

We've analyzed the official exam objectives and organized them into a logical study sequence. For each topic, you'll find key concepts, study tips, and common pitfalls to avoid. Use this guide alongside your MS-102 exam topics checklist to track your progress through each domain.

What This Guide Includes:

  • Complete topic breakdown with weightings for each domain
  • Study tips for each exam objective area
  • 8-week study timeline with weekly goals
  • Recommended resources for each topic

MS-102 Exam Overview

The MS-102: Microsoft 365 Administrator exam validates your ability to evaluate, plan, migrate, deploy, and manage Microsoft 365 services. It's designed for IT professionals who perform Microsoft 365 administration tasks in enterprise environments.

Exam Details

  • Exam Code: MS-102
  • Name: Microsoft 365 Administrator
  • Duration: 100 minutes
  • Questions: 40-60
  • Passing Score: 700/1000

Target Audience

  • Microsoft 365 Administrators
  • IT Professionals managing M365
  • Cloud Administrators
  • Systems Administrators
  • Identity Administrators

Prerequisites: While there are no formal prerequisites, Microsoft recommends experience with Windows Server, Active Directory, PowerShell, and networking concepts. Familiarity with Azure AD/Entra ID is essential.

Why Understanding Exam Topics Matters

Many candidates make the mistake of studying broadly without focusing on the specific MS-102 exam topics that Microsoft tests. The exam objectives aren't just a list—they're a roadmap to exactly what you need to know. Each sub-topic can generate multiple exam questions, so understanding the scope and depth expected is crucial.

Microsoft updates exam content periodically to reflect changes in the Microsoft 365 platform. Features get renamed (like Azure AD becoming Microsoft Entra ID), new capabilities are added, and older technologies are deprecated. Always verify you're studying the most current exam objectives by checking the official Microsoft Learn page before your exam date.

The weighting percentages tell you where to focus your study time. If Security and Threats covers 30-35% of the exam, you should spend proportionally more time mastering those concepts compared to Compliance at 10-15%. However, don't neglect any section—even a 10% topic area can be the difference between passing and failing.

Complete MS-102 Exam Topics Breakdown

The MS-102 exam covers four main domains. The percentages indicate how much of the exam focuses on each area. Pay special attention to Security and Threats (30-35%) as it carries the most weight.

25-30%

Topic 1: Deploy and Manage a Microsoft 365 Tenant

Configure Organizational Settings

  • • Manage tenant subscriptions and licenses
  • • Configure organizational profile and settings
  • • Manage user accounts and license assignments
  • • Plan and implement organizational policies
  • • Configure domains and DNS records

Manage Microsoft 365 Subscription and Tenant Health

  • • Monitor service health dashboard
  • • Plan and implement service requests
  • • Monitor adoption and usage reports
  • • Interpret Microsoft 365 reports
  • • Configure notifications and alerts

Plan and Manage Migration to Microsoft 365

  • • Plan migration strategy for email and files
  • • Migrate content using appropriate tools
  • • Manage post-migration tasks and validation

Study Tips for Topic 1:

  • Hands-on: Create a Microsoft 365 trial tenant and explore all admin centers
  • Focus on: License management, service health dashboard, usage reports
  • Common pitfall: Understanding license assignment vs. available licenses

Real-World Scenarios You Should Practice:

  • Scenario 1: A new employee joins the company. Walk through the complete process of creating their account, assigning licenses, and ensuring they have access to the right Microsoft 365 services.
  • Scenario 2: Users report that Outlook is slow. Use the Service Health dashboard to check for incidents, review message center announcements, and understand how to open a support request.
  • Scenario 3: Your organization is migrating from Google Workspace to Microsoft 365. Understand migration tools, data mapping, and post-migration validation steps.
25-30%

Topic 2: Implement and Manage Identity and Access

Implement and Manage Identity Synchronization

  • • Implement Azure AD Connect and Cloud Sync
  • • Manage directory synchronization
  • • Configure password hash synchronization (PHS)
  • • Implement pass-through authentication (PTA)
  • • Configure federation with AD FS
  • • Troubleshoot synchronization issues

Manage Identity and Authentication

  • • Manage authentication methods
  • • Implement and manage multi-factor authentication (MFA)
  • • Configure self-service password reset (SSPR)
  • • Implement password protection policies
  • • Manage Azure AD Identity Protection

Manage Access and Permissions

  • • Configure conditional access policies
  • • Manage access reviews
  • • Implement administrative units
  • • Configure role-based access control (RBAC)
  • • Manage privileged identity management (PIM)

Study Tips for Topic 2:

  • Hands-on: Set up Azure AD Connect in a lab environment
  • Focus on: Conditional access policy creation and troubleshooting
  • Common pitfall: Understanding the differences between sync methods (PHS vs. PTA vs. Federation)

Key Concepts to Master:

Password Hash Sync vs Pass-Through Authentication: Understand when to use each method. PHS stores a hash of the password hash in Azure AD, allowing authentication even if on-premises AD is unavailable. PTA validates passwords against on-premises AD in real-time, requiring connectivity but providing immediate password policy enforcement.

Conditional Access Deep Dive: Know how to create policies that require MFA for specific conditions like risky sign-ins, access from untrusted locations, or when accessing sensitive applications. Understand the difference between blocking access and requiring additional verification.

Hybrid Identity Architecture: Be able to explain how Azure AD Connect synchronizes users, groups, and devices. Understand filtering options, attribute mapping, and how to troubleshoot sync errors using the Synchronization Service Manager.

30-35%

Topic 3: Manage Security and Threats

Manage Microsoft 365 Defender

  • • Configure Microsoft Defender for Office 365
  • • Manage Safe Links and Safe Attachments policies
  • • Configure anti-phishing policies
  • • Review and analyze threat data
  • • Investigate and respond to threats
  • • Use Attack Simulator for security testing

Implement and Manage Data Governance

  • • Configure retention policies and labels
  • • Implement Data Loss Prevention (DLP) policies
  • • Manage information barriers
  • • Configure sensitivity labels
  • • Manage data classification

Manage Security Posture

  • • Monitor and improve Microsoft Secure Score
  • • Implement security recommendations
  • • Configure Azure AD Identity Protection
  • • Implement Azure Information Protection
  • • Monitor security alerts and incidents

Study Tips for Topic 3:

  • Hands-on: Create DLP policies and test with sample data
  • Focus on: Threat investigation workflows, Secure Score improvements
  • Common pitfall: Confusing retention policies with deletion policies

Critical Security Concepts:

Safe Links vs Safe Attachments: Safe Links rewrites URLs to route through Microsoft's scanning service, protecting users at time-of-click. Safe Attachments detonates attachments in a sandbox to detect malware before delivery. Know when each protection kicks in and how to configure policies for different user groups.

DLP Policy Components: Understand sensitive information types (built-in and custom), policy conditions, and actions. Know the difference between blocking content, notifying users, and generating incident reports. Practice creating policies that protect credit card numbers, social security numbers, and custom data patterns.

Microsoft Secure Score: This is your organization's security posture measurement. Understand how to read the score, prioritize improvement actions, and implement recommendations. The exam often tests your ability to identify which actions will improve specific security metrics.

10-15%

Topic 4: Manage Compliance

Implement Compliance Solutions

  • • Configure eDiscovery and Content Search
  • • Implement insider risk management
  • • Manage audit logs and audit log search
  • • Implement communication compliance
  • • Configure compliance manager

Manage Information Protection

  • • Create and manage sensitivity labels
  • • Configure label policies
  • • Monitor label usage and reports
  • • Implement encryption settings

Study Tips for Topic 4:

  • Hands-on: Run eDiscovery searches and export results
  • Focus on: Compliance center navigation, audit log queries
  • Common pitfall: Understanding label scope and priority settings

Compliance Essentials:

eDiscovery Workflow: Know the complete process from creating a case to exporting results. Understand the difference between Content Search (finding content), eDiscovery Standard (legal holds and basic exports), and eDiscovery Premium (advanced analytics and review sets).

Audit Log Retention: Understand default retention periods and how to search for specific activities. Know which activities are logged (file access, admin actions, mailbox access) and how to create custom alert policies for suspicious activities.

Sensitivity Labels vs Retention Labels: These are often confused. Sensitivity labels classify and protect content (encryption, watermarks, access restrictions). Retention labels control how long content is kept and what happens when the retention period expires. Both can be applied to the same content.

Test Your Knowledge on Each Topic

Our practice questions are organized by exam domain so you can focus on specific areas.

Start Topic-Based Practice

8-Week MS-102 Study Plan

This comprehensive study timeline assumes 10-15 hours per week. Adjust based on your experience level and available study time. Each week builds on the previous one.

1-2

Weeks 1-2: Deploy and Manage Tenant

  • • Complete Microsoft Learn modules on tenant management
  • • Set up trial tenant and explore admin centers
  • • Practice license management and service health monitoring
  • • Take practice questions on tenant topics
3-4

Weeks 3-4: Identity and Access Management

  • • Set up Azure AD Connect lab environment
  • • Practice conditional access policy creation
  • • Study authentication methods (PHS, PTA, Federation)
  • • Configure MFA and SSPR in lab
5-6

Weeks 5-6: Security and Threats

  • • Learn Defender for Office 365 features
  • • Practice DLP policy creation and testing
  • • Study threat investigation workflows
  • • Review and improve Secure Score
7

Week 7: Compliance

  • • Learn eDiscovery and Content Search
  • • Practice sensitivity label configuration
  • • Study audit logs and compliance reporting
  • • Complete compliance-focused practice questions
8

Week 8: Review and Practice Tests

  • • Take full-length practice exams
  • • Review weak areas identified in practice tests
  • • Final review of all topics
  • • Schedule exam when consistently scoring 85%+

Best Resources for MS-102 Preparation

Free Resources

Paid Resources

  • Practice Tests - Essential for exam readiness
  • Video courses (Pluralsight, Udemy, LinkedIn Learning)
  • Study guides and books
  • Lab environments (if not using free options)

Hands-On Practice Options

  • Microsoft 365 Developer Program: Free E5 tenant for 90 days (renewable)
  • Azure Free Tier: For Azure AD and related services
  • Microsoft Learn Sandboxes: Browser-based labs included in learning paths

MS-102 Exam Day Tips

What to Bring

  • • Two forms of valid ID
  • • Confirmation email (if testing at center)
  • • Nothing else—no notes, phones, or watches

Time Management

  • • ~2 minutes per question average
  • • Read case studies carefully (3-5 min each)
  • • Flag difficult questions and return later
  • • Save 15 minutes for review

Question Approach

  • • Read the entire question first
  • • Eliminate obviously wrong answers
  • • Look for keywords that indicate the answer
  • • Don't change answers unless certain

Case Study Strategy

  • • Read the scenario completely first
  • • Note key requirements and constraints
  • • Refer back to scenario for each question
  • • Case study answers can't be changed after moving on

Start Your MS-102 Preparation Today

You now have a complete breakdown of MS-102 exam topics and a structured study plan. The key to success is combining theoretical knowledge with hands-on practice. Use Microsoft Learn for concepts, build a lab environment for practice, and test your knowledge with realistic practice questions.

Remember that Security and Threats (30-35%) carries the most weight, so allocate your study time accordingly. Don't neglect the smaller Compliance section (10-15%) though—those questions can make the difference between passing and failing.

Test Your Knowledge of MS-102 Topics

Our practice questions cover all exam domains with detailed explanations to reinforce your learning.

Start MS-102 Practice Quiz

Related MS-102 Resources

MS-102 Practice Exam Questions

100+ questions with detailed explanations.

MS-102 Certification Path

Prerequisites, costs, and career benefits.

How to Pass MS-102 Exam

Proven study strategies and tips.

Best MS-102 Training Resources

Compare courses, tests, and materials.

Disclaimer: This content is not affiliated with, endorsed by, or sponsored by Microsoft. MS-102 and Microsoft 365 are trademarks of Microsoft Corporation.

Exam objectives may change. Always verify current exam topics on the official Microsoft certification page before your exam date.