Coursera Plus Annual is 40% Off — Ends June 29.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

CourseHorse

Microsoft 365 Endpoint Administrator (Live Online)

via CourseHorse

Go to class Write review

Overview

In this course, you will learn to plan and execute endpoint deployment strategies using current deployment techniques and implementing effective update strategies. The program introduces essential concepts of contemporary management approaches, co-management models, and Microsoft Intune integration. You will explore application deployment methods, management of browser-based applications, and critical security topics, including authentication, identity management, device access controls, and compliance policies. Throughout the course, you will study key technologies such as Microsoft Entra ID, Azure Information Protection, and Microsoft Defender for Endpoint that protect both devices and organizational data.

Course Audience

The Microsoft 365 Endpoint Administrator manages the deployment, configuration, security, administration, and oversight of devices and client applications in enterprise environments. Key responsibilities include managing user identities, access permissions, organizational policies, system updates, and application distribution. These professionals collaborate with M365 Enterprise Administrators to develop and execute device strategies aligned with modern organizational requirements. Successful Endpoint Administrators possess comprehensive knowledge of M365 workloads and demonstrate strong expertise in deploying, configuring, and maintaining Windows 11 and newer operating systems as well as non-Windows devices. The role emphasizes cloud-based management tools and services over on-premises infrastructure solutions.

Prerequisites

Participants should be familiar with M365 workloads and possess extensive hands-on experience deploying, configuring, and maintaining Windows 11 and subsequent versions, along with non-Windows devices.

Course Content

1: Explore the Enterprise Desktop

  • Understanding the advantages of contemporary management approaches
  • Examining the enterprise desktop lifecycle and planning phases
  • Planning and budgeting for device acquisition
  • Designing and implementing desktop deployment strategies
  • Creating application deployment plans aligned with business needs
  • Planning for device upgrades and end-of-life retirement

2: Explore Windows Editions

  • Comparing Windows client editions and their capabilities
  • Selecting appropriate client editions for different user roles
  • Understanding hardware requirements for different editions

3: Understand Microsoft Entra ID

  • Examining Microsoft Entra ID services and features
  • Comparing cloud-based Entra ID with on-premises Active Directory Domain Services
  • Using Entra ID as the directory service for cloud applications
  • Understanding feature differences between Entra ID P1 and P2 plans
  • Exploring Microsoft Entra Domain Services for hybrid scenarios

4: Manage Microsoft Entra Identities

  • Understanding role-based access control and administrative roles in Entra ID
  • Creating and managing user accounts in Entra ID
  • Creating and managing security and distribution groups
  • Using PowerShell for managing Entra ID objects at scale
  • Synchronizing on-premises Active Directory objects to Entra ID

5: Manage Device Authentication

  • Understanding Microsoft Entra join and its benefits
  • Evaluating prerequisites and limitations of Entra join
  • Joining devices to cloud-based Entra ID
  • Managing cloud-joined devices in the Entra ecosystem

6: Enroll Devices Using Microsoft Configuration Manager

  • Deploying the Configuration Manager client to managed devices
  • Monitoring client health and activity
  • Managing client behavior and policies

7: Enroll Devices Using Microsoft Intune

  • Implementing mobile device management with Intune
  • Enabling device enrollment capabilities
  • Evaluating device enrollment considerations and constraints
  • Creating and managing corporate enrollment policies
  • Enrolling Windows client devices in Intune
  • Enrolling Android devices in Intune
  • Enrolling iOS devices in Intune
  • Using device enrollment managers for large-scale enrollment
  • Monitoring enrollment activities and success rates
  • Performing remote management and remediation of enrolled devices

8: Execute Device Profiles

  • Understanding Intune device profiles and their capabilities
  • Creating device profiles for security and configuration
  • Building custom profiles for specialized requirements

9: Oversee Device Profiles

  • Monitoring device profile deployment and compliance
  • Managing device synchronization with Intune
  • Using scripts for device management and configuration

10: Maintain User Profiles

  • Understanding user profile types and management
  • Exploring profile types, including local, roaming, and mandatory
  • Implementing strategies to reduce user profile size and improve performance
  • Deploying and configuring folder redirection for data management
  • Using Enterprise State Roaming for user state synchronization
  • Configuring Enterprise State Roaming in Azure

11: Execute Mobile Application Management

  • Understanding mobile application management strategies
  • Evaluating considerations for mobile application management deployment
  • Preparing business applications for protection policies
  • Implementing mobile application management policies in Intune
  • Managing and adjusting policies in production

12: Deploy and Update Applications

  • Using Intune for application deployment and updates
  • Adding business applications to Intune
  • Managing Win32 applications through Intune
  • Using Configuration Manager for enterprise application deployment
  • Distributing applications through Group Policy
  • Assigning and publishing software to users and devices
  • Leveraging the Microsoft Store for Business application distribution
  • Deploying Microsoft Store applications to endpoints
  • Updating Microsoft Store applications through Intune
  • Publishing company applications to employees

13: Administer Endpoint Applications

  • Managing applications with Intune for enrolled devices
  • Managing applications on non-enrolled devices
  • Deploying Microsoft 365 Apps through Intune
  • Exploring additional deployment tools for Microsoft 365 Apps
  • Configuring Microsoft Edge to provide Internet Explorer compatibility
  • Conducting application inventory reviews and assessments

14: Protect Identities in Microsoft Entra ID

  • Exploring Windows Hello for Business biometric authentication
  • Deploying Windows Hello to devices
  • Managing Windows Hello for Business policies
  • Using Entra ID Protection to identify and remediate identity risks
  • Managing self-service password reset capabilities
  • Implementing multi-factor authentication requirements

15: Enable Organizational Access

  • Providing secure access to organizational resources
  • Comparing VPN types and deployment options
  • Understanding Always On VPN architecture
  • Deploying Always On VPN solutions

16: Implement Device Compliance

  • Using Intune to protect access to organization resources
  • Understanding device compliance policies
  • Creating and deploying compliance policies
  • Exploring conditional access capabilities
  • Creating conditional access policies based on risk assessment

17: Generate Inventory and Compliance Reports

  • Reporting on enrolled device inventory in Intune
  • Monitoring and reporting on device compliance status
  • Creating customized Intune inventory reports
  • Using Microsoft Graph API for programmatic access

18: Deploy Device Data Protection

  • Understanding Windows Information Protection capabilities
  • Planning Windows Information Protection deployment
  • Implementing and managing Windows Information Protection
  • Using Encrypting File System for folder-level encryption
  • Understanding BitLocker drive encryption technology

19: Manage Microsoft Defender for Endpoint

  • Understanding Microsoft Defender for Endpoint platform
  • Examining key capabilities and detection features
  • Using Windows Defender Application Control to restrict executable code
  • Using Microsoft Defender Application Guard for browser isolation
  • Understanding Windows Defender Exploit Guard protections
  • Using Windows Defender System Guard to protect core system processes

20: Manage Microsoft Defender in Windows Client

  • Understanding Windows Security Center features and configuration
  • Using Windows Defender Credential Guard to protect authentication data
  • Configuring and managing Microsoft Defender Antivirus
  • Managing Windows Defender Firewall policies
  • Configuring Windows Defender Firewall with Advanced Security

21: Manage Microsoft Defender for Cloud Apps

  • Understanding Microsoft Defender for Cloud Apps capabilities
  • Planning Defender for Cloud Apps deployment
  • Implementing Defender for Cloud Apps in production

22: Assess Deployment Readiness

  • Understanding deployment guidelines and best practices
  • Exploring tools and assessments for readiness evaluation
  • Assessing application compatibility with target operating systems
  • Using compatibility remediation tools
  • Preparing network infrastructure and directory services
  • Planning and executing pilot deployments

23: Deploy Using the Microsoft Deployment Toolkit

  • Evaluating traditional deployment methods and approaches
  • Setting up the Microsoft Deployment Toolkit for client deployment
  • Managing and deploying system images

24: Deploy Using Microsoft Configuration Manager

  • Exploring Configuration Manager for client deployment
  • Understanding deployment components and architecture
  • Managing large-scale client deployment
  • Planning in-place operating system upgrades

25: Deploy Devices Using Windows Autopilot

  • Using Autopilot for modern device deployment
  • Understanding Autopilot requirements and prerequisites
  • Preparing device identifiers for Autopilot registration
  • Implementing device registration and out-of-the-box customization
  • Exploring various Autopilot deployment scenarios
  • Troubleshooting Autopilot deployment issues

26: Implement Dynamic Deployment Methods

  • Understanding subscription-based activation models
  • Deploying devices using provisioning packages
  • Using Windows Configuration Designer for device provisioning
  • Using Entra join with automatic mobile device management enrollment

27: Plan a Transition to Modern Endpoint Management

  • Using co-management to transition from traditional to contemporary management
  • Understanding co-management prerequisites and planning
  • Evaluating implications of contemporary management adoption
  • Assessing upgrade and migration paths
  • Planning data migration during transitions
  • Planning workload migration to cloud management

28: Manage Windows 365

  • Understanding Windows 365 capabilities and benefits
  • Configuring Windows 365 environments
  • Administering Windows 365 in production

29: Manage Azure Virtual Desktop

  • Understanding Azure Virtual Desktop services and capabilities
  • Setting up and configuring Azure Virtual Desktop
  • Configuring Azure Virtual Desktop for user groups
  • Administering Azure Virtual Desktop deployments

Taught by

ONLC Training Centers

Reviews

4.3 rating at CourseHorse based on 8 ratings

Start your review of Microsoft 365 Endpoint Administrator (Live Online)

Go to class

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.