Course data sheet
Microsoft 365 Endpoint Administrator (MD-102T00)
H37ZJS
Table of Contents
Overview
In this course, you learn how to plan and execute an endpoint deployment strategy using contemporary deployment techniques and implementing update strategies. The course introduces essential elements of modern management and Microsoft Intune integration. It covers app deployment, management of browser-based applications, and key security concepts such as authentication, identities, access, and compliance policies. Technologies like Microsoft Entra, Windows Autopilot, Microsoft Intune Suite and Microsoft Defender for Endpoint are explored to protect devices and data.
Audience
This course is ideal for endpoint administrators, Microsoft 365 administrators, desktop support engineers, systems administrators, IT support specialists, and workplace technology professionals responsible for deploying, securing, managing, and monitoring devices and client applications in modern enterprise environments.
Prerequisites
Before attending this course, you should have:
- Experience with Microsoft 365 workloads and services
- Experience deploying, configuring, and maintaining Windows client devices
- Basic understanding of Microsoft Entra ID and cloud identity concepts
- Familiarity with endpoint management, device security, and compliance concepts
- Basic knowledge of networking, authentication, and authorization technologies
Objectives
After completing this course, you should be able to:
- Plan and implement modern endpoint deployment and management strategies using Microsoft 365 technologies.
- Configure and manage Windows 11 and cross-platform devices through Microsoft Intune.
- Enroll, provision, and deploy devices using Microsoft Intune, Windows Autopilot, and Microsoft Configuration Manager.
- Manage identities, authentication, and access using Microsoft Entra ID.
- Create and administer device configuration profiles, compliance policies, and security baselines.
- Deploy, configure, and manage applications across enterprise devices.
- Implement mobile application management (MAM) and mobile device management (MDM) solutions.
- Protect organizational data through device security, compliance, and conditional access policies.
- Configure and manage Microsoft Defender solutions to secure endpoints against threats.
- Monitor device health, compliance, and inventory using reporting and analytics tools.
- Plan and execute migration strategies from traditional on-premises management to modern cloud-based endpoint management.
- Manage virtual desktop environments including Windows 365 and Azure Virtual Desktop.
Certifications and related exams
This course prepares you for the Microsoft 365 Certified: Endpoint Administrator Associate (MD102) certificate
Course outline
| Module 1: Explore the Enterprise Desktop | Learn about modern endpoint management and enterprise desktop lifecycle concepts. You also examine the stages of the enterprise desktop lifecycle, including planning, deployment, maintenance, upgrades, and retirement.
|
| Module 2: Explore Windows Editions | Learn about Windows operating system editions, capabilities, and installation methods. You also gain an understanding of edition selection and hardware requirements for Windows deployments.
|
| Module 3: Understand Microsoft Entra ID | Learn about Microsoft Entra ID and its role in identity and access management. You also compare Microsoft Entra ID with Active Directory Domain Services and explore Microsoft Entra Domain Services for cloud-based device and application management.
|
| Module 4: Manage Microsoft Entra Identities | How to manage identities in Microsoft Entra ID. You also explore role-based access control (RBAC), user and group management, Microsoft Graph PowerShell, and directory synchronization.
|
| Module 5: Manage Device Authentication | Learn about device authentication and device management in Microsoft Entra ID. You also explore Microsoft Entra join and the requirements, benefits, and limitations associated with device enrollment and management.
|
| Module 6: Enroll Devices Using Microsoft Configuration Manager | Learn about client deployment options and the management and monitoring capabilities available through Microsoft Configuration Manager.
|
| Module 7: Enroll Devices Using Microsoft Intune | How to configure and use Microsoft Intune to manage Windows, Android, and iOS devices. You also explore device enrollment methods, enrollment policies, and remote device management capabilities.
|
| Module 8: Execute Device Profiles | Learn about the different types of device profiles available in Microsoft Intune and how to create, customize, and manage them.
|
| Module 9: Oversee Device Profiles | How to monitor device profiles to ensure correct assignments and resolve conflicts when multiple profiles are applied to managed devices.
|
| Module 10: Maintain User Profiles | Learn about the benefits of different Windows user profiles, how to manage them, and how to synchronize profile data across multiple devices.
|
| Module 11: Execute Mobile Application Management | Learn about Mobile Application Management (MAM), including implementation considerations and the management of mobile applications by using Microsoft Intune and Microsoft Configuration Manager.
|
| Module 12: Deploy and Update Applications | How to deploy and manage applications by using Microsoft Intune, Microsoft Configuration Manager, Group Policy, and Microsoft Store applications. You also explore methods for updating and assigning applications across the organization.
|
| Module 13: Administer Endpoint Applications | How to manage applications on Microsoft Intune-managed devices and explore application deployment options for Microsoft 365 applications. You also learn how to use Internet Explorer mode with Microsoft Edge.
|
| Module 14: Protect Identities in Microsoft Entra ID | Learn about the authentication methods and identity protection capabilities available in Microsoft Entra ID. You also explore Windows Hello for Business, Microsoft Entra ID Protection, self-service password reset, and multifactor authentication.
|
| Module 15: Enable Organizational Access | How to configure client devices to access organizational resources securely by using virtual private network (VPN) technologies.
|
| Module 16: Implement Device Compliance | How to use compliance policies and Conditional Access to help protect access to organizational resources and enforce security requirements on managed devices.
|
| Module 17: Generate Inventory and Compliance Reports | How to use Microsoft Intune, Microsoft Endpoint Manager, Microsoft Graph API, and reporting tools to generate inventory, compliance, and custom reports.
|
5 reasons to choose HPE as your training partner
- Learn HPE and in-demand IT industry technologies from expert instructors.
- Build career-advancing power skills.
- Enjoy personalized learning journeys aligned to your company’s needs.
- Sharpen your skills with access to real environments in virtual labs.
Explore our simplified purchase options, including HPE Education Services – Learning Credits.
Learn more
© Copyright 2026 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein.
All third-party marks are property of their respective owners.
a50015710enw, H37ZJS B.00, June 2026