Get our Bestselling Ethical Hacker Course V13 for Only $12.99

Get Offer

For a limited time, check out some of our most popular courses for free on Udemy.  View Free Courses.

Microsoft MD-102: Microsoft 365 Endpoint Administrator Associate

Course Level: Beginner
Duration: 13 Hrs 7 Min
Total Videos: 94 On-demand Videos

Learn to manage and secure Microsoft 365 endpoint devices, preparing IT professionals for real-world device deployment, security, and compliance tasks.

Purchase Options

You can purchase this course individually on Udemy, or unlock every course we offer with the exclusive 365 Training Pass—one low price, unlimited access for a full year.

Buy This Single Course On Udemy
Buy An all access pass to over 3,000 hours of training

Learning Objectives

01

Prepare and configure Microsoft Entra ID (formerly Azure AD) for device registration, hybrid joins, and seamless integration with Microsoft 365 environments.

02

Set up and manage automatic enrollment for Windows, iOS, Android, and macOS devices using Intune for centralized endpoint management.

03

Deploy and configure Windows Autopilot to streamline device provisioning, enrollment, and lifecycle management across enterprise environments.

04

Create and apply device configuration profiles to enforce policies and settings for Windows, iOS, Android, macOS, and multi-session devices.

05

Implement compliance policies and conditional access to enforce security standards and ensure only trusted, compliant devices gain access to corporate resources

06

Manage Microsoft 365 Apps and third-party applications through Intune, including deployment, updates, application protection, and app configuration policies.

07

Strengthen endpoint security by configuring antivirus, disk encryption, firewalls, attack surface reduction rules, and Microsoft-recommended security baselines.

08

Plan and manage OS and application updates using Windows Update for Business, Intune update rings, and delivery optimization strategies.

Course Description

Managing and securing endpoint devices is a critical part of maintaining a safe, efficient, and compliant Microsoft 365 environment. Whether you’re responsible for deploying new devices, enforcing security policies, or ensuring seamless application delivery, having the right skills makes all the difference. After completing this course, you’ll be equipped to handle these tasks confidently and effectively, positioning yourself as a key player in your organization’s IT team.

This training covers the core competencies needed to become a certified Microsoft 365 Endpoint Administrator Associate. You will learn to deploy, configure, and manage devices using Microsoft technologies like Entra ID, Windows Autopilot, and Intune. The course prepares you for the MD-102 exam, focusing on practical, real-world skills that you can apply immediately. What sets this course apart is its emphasis on hands-on exercises and scenarios that mirror workplace challenges, giving you the experience to hit the ground running.

What You Will Learn

This course provides the skills to efficiently manage and secure enterprise endpoint devices within a Microsoft 365 environment. You will gain the ability to perform tasks such as device enrollment, configuration, and security management. Here are specific outcomes you can expect:

  • Enroll and manage devices using Microsoft Entra ID and Windows Autopilot, ensuring a streamlined onboarding process.
  • Configure enrollment and automatic enrollment settings for Windows devices to simplify device provisioning at scale.
  • Deploy, manage, and secure applications across diverse endpoint devices with Microsoft Intune.
  • Create and maintain device configuration profiles tailored to different operating systems to enforce policies consistently.
  • Establish security baselines and manage antivirus, firewall, and encryption policies to protect organizational assets.
  • Integrate Microsoft Defender for Endpoint with Intune to enhance threat detection and response capabilities.
  • Plan and implement updates, compliance, and device management policies that keep devices secure and compliant with organizational standards.
  • Troubleshoot common endpoint management issues, ensuring minimal downtime and maximum productivity.
  • Develop strategies for ongoing device security, including patch management and policy enforcement.

Who This Course Is For

This program is ideal for IT professionals seeking to deepen their expertise in endpoint management within Microsoft 365. If you are a system administrator, IT support technician, security specialist, or enterprise device manager, this course will elevate your skills. It is designed for those with a basic understanding of Microsoft 365 services and device management concepts, but no prior certification is required.

Why These Skills Matter

Mastering the skills covered in this course positions you as a vital asset in any organization’s IT infrastructure. As a Microsoft 365 Endpoint Administrator, you will be able to implement advanced device management and security policies that reduce vulnerabilities and enhance user productivity. These capabilities are increasingly in demand as organizations adopt more mobile, cloud-based, and security-focused work environments. While this course prepares you for the MD-102 certification, its true value lies in your ability to deliver real-world results—deploying secure devices, managing complex configurations, and responding swiftly to security threats. This expertise opens doors to higher-level roles, greater responsibility, and improved career stability in a competitive job market.

Who Benefits From This Course

  • IT Professionals seeking to enhance their skills in device management and security within Microsoft 365 environments.
  • System Administrators responsible for managing and maintaining organizational devices and applications.
  • Network Administrators aiming to gain expertise in deploying and configuring Microsoft Endpoint solutions.
  • Security Analysts interested in implementing compliance and security policies across endpoints.
  • Technical Support Specialists looking to improve their ability to assist users with device-related issues.
  • Project Managers overseeing IT projects that involve Microsoft 365 deployment and management.
  • Consultants providing advisory services on Microsoft 365 infrastructure and endpoint management.
  • Developers focused on integrating applications with Microsoft Intune for enhanced deployment strategies.

Frequently Asked Questions

What topics are covered in the Microsoft MD-102: Microsoft 365 Endpoint Administrator Associate course?

The MD-102 course covers a comprehensive range of topics essential for managing and securing endpoint devices in a Microsoft 365 environment. Key areas include deploying and configuring devices using tools like Windows Autopilot and Microsoft Entra ID, managing device enrollment, and automating onboarding processes for Windows, iOS, Android, and macOS devices.

Participants learn to deploy and manage applications through Microsoft Intune, create device configuration profiles, and establish security baselines. The course also emphasizes integrating Microsoft Defender for Endpoint, implementing security policies such as antivirus, firewall, and disk encryption, and managing updates and compliance policies. Practical skills like troubleshooting device management issues and planning security strategies are also thoroughly covered to prepare students for real-world scenarios and the MD-102 exam.

How does this course prepare me for the MD-102 certification exam?

This course offers in-depth training aligned with the objectives of the MD-102: Microsoft 365 Endpoint Administrator exam. You will gain practical skills in deploying, managing, and securing endpoint devices using Microsoft 365 technologies such as Intune, Entra ID, and Windows Autopilot. The curriculum emphasizes hands-on labs and real-world scenarios, ensuring you're comfortable handling typical organizational challenges.

Additionally, the course covers key exam domains, including device provisioning, application management, security policies, and troubleshooting. By completing this training, you'll develop both the theoretical knowledge and practical experience necessary to confidently pass the exam and earn your certification, positioning yourself as a proficient endpoint management professional.

What are the career benefits of becoming a Microsoft 365 Endpoint Administrator after this course?

Earning the Microsoft 365 Endpoint Administrator Associate certification significantly enhances your career prospects in IT. It validates your expertise in managing and securing endpoint devices within a Microsoft 365 environment, making you a valuable asset to organizations that rely on mobile, cloud-based, and hybrid infrastructures.

Certified professionals can pursue roles such as Endpoint Administrator, Device Management Specialist, or Security Operations Technician. The skills gained also open opportunities for higher responsibility positions, increased salary potential, and career advancement in enterprise IT environments. As organizations prioritize security and efficient device management, your expertise will be in high demand, giving you a competitive edge in the job market.

What strategies should I use to prepare effectively for the MD-102 exam?

Effective preparation for the MD-102 exam involves a mix of theoretical study and practical application. Start with this course to build foundational knowledge of device deployment, configuration, and security management within Microsoft 365. Hands-on labs are critical; replicate real-world scenarios to develop confidence in using tools like Intune, Entra ID, and Windows Autopilot.

Supplement your learning with official Microsoft exam guides, practice tests, and review sessions covering exam topics such as device compliance, application deployment, and security policies. Participating in study groups or online forums can also reinforce your understanding. Regular review and practical experience ensure you're well-prepared to handle exam questions and real-world challenges effectively.

Can I manage devices across multiple operating systems with this course?

Yes, this course equips you to manage a diverse range of devices across multiple operating systems, including Windows, iOS, Android, and macOS. You will learn to create and deploy device configuration profiles tailored to each platform, ensuring consistent policy enforcement and security across your organization's endpoints.

The training emphasizes the use of Microsoft Intune and other Microsoft 365 tools to streamline device management regardless of the operating system. This multi-platform management capability is essential for organizations with heterogeneous device environments, enabling you to maintain security, compliance, and productivity across all device types effectively.

Included In This Course

Module 1 : Preparing Infrastructure for Devices

  •    0.0 Course Introduction
  •    1.0 Module Overview
  •    1.1 Choosing a Device Join Type
  •    1.2 Joining Devices to Microsoft Entra ID
  •    1.3 Registering Devices to Microsoft Entra ID
  •    1.4 Groups for Devices in Microsoft Entra ID
  •    1.5 Configuring Enrollment Settings
  •    1.6 Configuring Automatic Enrollment for Windows
  •    1.7 Configuring Bulk Enrollment for iOS and Android
  •    1.8 Configuring Enrollment Profiles for Android Devices
  •    1.9 Managing Roles in Intune
  •    1.10 Implementing Compliance Policies using Intune
  •    1.11 Implementing Conditional Access Policies
  •    1.12 Configuring Windows Hello for Business
  •    1.13 Implementing and Managing LAPS for Microsoft Entra ID
  •    1.14 Managing Windows Local Groups using Intune

Module 2 : Managing and Maintaining Devices

  •    2.0 Module Overview
  •    2.1 Choosing Between Windows Autopilot and Provisioning Packages
  •    2.2 Choosing a Windows Autopilot Deployment Mode
  •    2.3 Applying a Device Name Templates
  •    2.3.1 Demo - Device Name Templates
  •    2.4 Implementing Deployments by using Windows Autopilot
  •    2.5 Creating an Enrollment Status Page (ESP)
  •    2.5.1 Demo - Enrollment Status Page
  •    2.6 Planning and Implementing Provisioning Packages
  •    2.7 Planning and Implementing Device Upgrades for Windows 11
  •    2.8 Implementing a Windows 365 Cloud PC Deployment
  •    2.9 Creating Device Configuration Profiles for Windows Devices
  •    2.9.1 Demo - Device Configuration Profile for Windows
  •    2.10 Creating Device Configuration Profiles for Android Devices
  •    2.10.1 Demo - Device Configuration Profile for Android
  •    2.11 Creating Device Configuration Profiles for iOS devices
  •    2.11.1 Demo - Device Configuration Profile for iOS and iPadOS
  •    2.12 Creating Device Configuration Profiles for Mac OS devices
  •    2.12.1 Demo - Device Configuration Profiles for macOS
  •    2.13 Creating Device Configuration Profiles for Enterprise Multi-session Devices
  •    2.13.1 Demo - Device Configuration for Multisesson Devices
  •    2.14 Targeting a Profile using Filters
  •    2.14.1 Demo - Targeting Profiles using Filters
  •    2.15 Configuring Endpoint Privilege Management
  •    2.15.1 Demo - Endpoint Privilege Management
  •    2.16 Managing Applications by using the Enterprise App Catalog
  •    2.16.1 Demo - Enterprise App Catalog
  •    2.17 Implementing Microsoft Intune Advanced Analytics
  •    2.18 Configuring Microsoft Intune Remote Help
  •    2.19 Identifying Use Cases for Cloud PKI
  •    2.20 Examining Microsoft Tunnel for MAM
  •    2.21 Performing Remote Actions in Microsoft Intune
  •    2.22 Updating Windows Defender Security Intelligence
  •    2.23 Rotating BitLocker Recovery Keys
  •    2.24 Running a Device Query by Using KQL

Module 3 : Managing applications

  •    3.0 Module Overview
  •    3.1 Preparing Applications for Deployment by using Intune
  •    3.2 Deploying Apps by using Intune
  •    3.2.1 Demo - Deploying Apps in Intune
  •    3.3 Deploying Microsoft 365 Apps by using Intune
  •    3.3.1 Demo - Deploying Microsoft 365 Apps with Intune
  •    3.4 Configuring Policies for Office Apps
  •    3.4.1 Demo - Configuring Policies for Microsoft 365 Apps
  •    3.5 Deploying MS365 Apps using ODT and OCT
  •    3.5.1 - Demo - Using the ODT and OCT
  •    3.6 Managing MS365 Apps using the Microsoft 365 Apps Admin Center
  •    3.6.1 Demo - Examining the Microsoft 365 Apps Admin Center
  •    3.7 Deploying Apps from Platform-specific App Stores using Intune
  •    3.7.1 Demo - Deploying to Platform-specific App Stores
  •    3.8 Planning and Implementing App Protection Policies
  •    3.8.1 Demo - Implementing App Protection Policies
  •    3.9 Implementing Conditional Access Policies for App Protection Policies
  •    3.9.1 Demo - Conditional Access Policies for App Protection Policies
  •    3.10 Planning and Implementing App Configuration Policies
  •    3.10.1 Demo - Deploying App Configuration Policies

Module 4 : Protecting devices

  •    4.0 Module Overview
  •    4.1 Creating Antivirus Policies
  •    4.1.1 Demo – Creating Endpoint AV Policies
  •    4.2 Creating Disk Encryption Policies
  •    4.2.1 Demo – Creating Disk Encryption Policies
  •    4.3 Creating Firewall Policies
  •    4.3.1 Demo – Creating Endpoint Firewall Policies
  •    4.4 Configuring Attack Surface Reduction Policies
  •    4.4.1 Demo – Creating Attack Surface Reduction Policies
  •    4.5 Planning and Implementing Security Baselines
  •    4.5.1 Demo – Creating Security Baselines
  •    4.6 Integrating Intune with Microsoft Defender for Endpoint
  •    4.6.1 Demo - Integrating Intune with MDE
  •    4.7 Onboarding Devices into Microsoft Defender for Endpoint
  •    4.7.1 Demo - Onboarding Devices into MDE
  •    4.8 Planning for Device Updates
  •    4.9 Creating and Manage Update Rings Using Intune
  •    4.9.1 Demo - Creating Update Ring Policies
  •    4.10 Creating and Manage Update Policies by using Intune
  •    4.10.1 Demo - Creating Update Policies in Intune
  •    4.11 Managing Android Updates using Configuration Profiles
  •    4.12 Configuring Windows Client Delivery Optimization using Intune
  •    4.13 Course Outro