Microsoft · MS-102
Validates ability to deploy and manage Microsoft 365 tenants, implement identity and access with Microsoft Entra ID, manage security and threats using Microsoft 365 Defender, and manage compliance using Microsoft Purview.
Questions
965
Duration
120 minutes
Passing Score
700/1000
Difficulty
ExpertLast Updated
Jan 2025
Use this MS-102 practice exam to prepare for Microsoft 365 Certified: Administrator Expert (MS-102) with realistic questions, detailed explanations, and focused study modes. The practice bank includes 965 questions for Microsoft MS-102, so you can review the exam steadily instead of relying on one long cram session.
As you practice, pay extra attention to recurring topics such as Deploy and manage a Microsoft 365 tenant, Implement and manage Microsoft Entra identity and access, Manage security and threats by using Microsoft 365 Defender, and Manage compliance by using Microsoft Purview. Start with short sessions to identify weak areas, then move into timed quizzes once your accuracy is consistent.
The explanations are especially useful when you want to connect exam wording to the responsibilities and scenarios described in the official certification guidance. Use the free preview first, then unlock the full question bank when you are ready to build a complete study routine.
The MS-102 exam certifies Microsoft 365 Administrators who deploy and manage Microsoft 365 tenants across cloud and hybrid environments. It validates mastery across four critical pillars: tenant configuration and management, identity and access management via Microsoft Entra ID, threat protection through Microsoft Defender XDR, and compliance governance through Microsoft Purview. Passing this exam earns the Microsoft 365 Certified: Administrator Expert credential — the highest-level Microsoft 365 administration certification available.
The exam was last updated on November 10, 2025, and reflects current platform capabilities including Microsoft Entra Cloud Sync, Microsoft Defender Vulnerability Management, Defender for Cloud Apps, and Purview data lifecycle management. Candidates are assessed on practical, scenario-based tasks such as configuring Conditional Access policies, implementing directory synchronization using Microsoft Entra Connect Sync, managing attack simulation training, configuring DLP policies across Exchange, SharePoint, OneDrive, and Teams, and monitoring tenant health and adoption metrics through the Microsoft 365 admin center.
This certification targets experienced IT professionals already working as Microsoft 365 administrators who serve as the integrating hub across all Microsoft 365 workloads. Ideal candidates coordinate with architects and workload-specific administrators responsible for infrastructure, identity, security, compliance, endpoints, and applications in enterprise environments.
Typical job titles pursuing this certification include Microsoft 365 Administrator, Cloud Administrator, Identity and Access Administrator, and IT Manager overseeing Microsoft cloud services. Candidates are expected to have hands-on administration experience with at least one Microsoft 365 workload — such as Exchange Online, Teams, SharePoint, or Endpoint Management — and functional familiarity with all workloads. Working knowledge of networking fundamentals, Active Directory Domain Services, DNS, and PowerShell scripting is also expected.
To earn the Microsoft 365 Certified: Administrator Expert credential, candidates must first hold at least one qualifying Microsoft associate-level certification. Accepted prerequisites include: Microsoft 365 Certified: Endpoint Administrator Associate, Microsoft 365 Certified: Messaging Administrator Associate, Microsoft 365 Certified: Teams Administrator Associate, Microsoft Certified: Identity and Access Administrator Associate, or Microsoft Certified: Information Protection and Compliance Administrator Associate. At least one of these must be obtained before the expert certification can be awarded upon passing MS-102.
Beyond formal certification prerequisites, candidates should have practical experience administering Microsoft 365 and Microsoft Entra ID in production or lab environments. Recommended technical knowledge includes hybrid identity synchronization (Microsoft Entra Connect Sync or Cloud Sync), PowerShell-based administration, Microsoft Defender security tools, and Microsoft Purview compliance solutions. Familiarity with DNS configuration, Active Directory, and enterprise networking concepts is strongly advised.
MS-102 is a proctored exam delivered through Pearson VUE, available both online and at authorized testing centers. The exam has a time limit of 120 minutes and requires a passing score of 700 on a scale of 100–1000. Question count typically ranges from 40–60 items, though the exact number varies per exam form. Question types include scenario-based multiple-choice (single and multiple answer), drag-and-drop, build-list/reorder, and active screen (lab simulations may appear).
The exam is available in English, Chinese (Simplified), German, Spanish, French, Japanese, and Portuguese (Brazil). Candidates taking a non-English version may receive 30 additional minutes. The certification is valid for one year and can be renewed annually at no cost by passing a free, unproctored online renewal assessment on Microsoft Learn. Microsoft's standard retake policy applies: 24-hour wait after the first failed attempt, 14-day wait for subsequent attempts, with a maximum of five attempts per exam in any 12-month period.
The Microsoft 365 Certified: Administrator Expert credential directly validates enterprise-level cloud administration skills sought by organizations deeply invested in the Microsoft 365 ecosystem. Common roles held by certified professionals include Microsoft 365 Administrator, Cloud Infrastructure Administrator, Identity and Access Administrator, Security & Compliance Administrator, and IT Manager overseeing Microsoft cloud environments. The certification is also a recognized prerequisite stepping stone toward advanced Microsoft security certifications such as SC-100 (Cybersecurity Architect Expert) and SC-200 (Security Operations Analyst Associate).
According to ZipRecruiter data, Microsoft 365 Certified Enterprise Administrator Experts in the United States earn an average of approximately $100,000 annually, with top earners exceeding $130,000 and contractors billing $50–$120 per hour depending on scope and region. The certification is particularly valued at Microsoft Partner organizations, consulting firms, and large enterprises running hybrid Microsoft 365 and on-premises Active Directory environments. With Microsoft 365 remaining the dominant cloud productivity platform globally, demand for credentialed administrators remains consistently high across North America, Europe, and Asia-Pacific markets.
5 sample questions with answers and explanations. Start a practice session to test yourself across all 965 questions.
Preview — answers shown1. You are configuring Information Barriers for Northwind Traders. You need to ensure that when a new team is created in Microsoft Teams, Information Barrier policies are evaluated. Which service performs these checks?
Explanation
The Information Barrier Policy Evaluation Service checks policies during Teams events like adding users. Microsoft Defender for Cloud focuses on security threats, Azure Information Protection is for labeling, and Dynamics 365 Compliance Checker isn't relevant.
2. You are managing security for Fourth Coffee, a coffee chain with Microsoft 365 E5. Employees need to access email on company devices without entering passwords each time. Which passwordless option uses biometrics and integrates with Windows 10?
Explanation
Windows Hello for Business allows sign-in with biometrics or PIN on Windows devices, providing passwordless access. FIDO2 security keys are external hardware, certificate-based authentication uses certificates, and Platform single sign-on is for macOS.
3. You work as a Systems Administrator for Alpine Ski House. The company uses on-premises Exchange and plans to migrate to Exchange Online in Microsoft 365. Alpine Ski House needs a service that handles email as Software as a Service (SaaS). Which Microsoft 365 component should you configure?
Explanation
Exchange Online provides cloud-based email as SaaS. Azure AD Connect synchronizes identities, Hyper-V enables virtualization, and DISM captures images.
4. At Tailspin Toys, a toy manufacturer, the security team requires enforcing policies like disabling wallpapers and enabling firewalls across all Windows devices. With an on-premises domain, which tool allows you to configure these settings centrally without touching each machine?
Explanation
Group Policy Objects allow centralized configuration of device settings like firewalls and wallpapers across domain-joined machines. User State Migration Tool migrates user data but doesn't enforce policies. Application Compatibility Toolkit checks software compatibility, not policy enforcement. Provisioning packages configure new devices but aren't for ongoing policy management.
5. You work as a Compliance Officer for Contoso. Contoso is configuring Insider Risk Management policies and needs to enable analytics for evaluating potential insider risks without policies. Which role group must you be a member of to enable insider risk analytics?
Explanation
Members of the Insider Risk Management or Insider Risk Management Admin role groups can enable insider risk analytics. Global Reader, User Administrator, Exchange Administrator, SharePoint Administrator, Teams Administrator, and Skype for Business Administrator do not have this permission.
Microsoft Dynamics 365 Supply Chain Management Functional Consultant Expert (MB-335)
MB-335 · 2039 questions
Microsoft Dynamics 365 Business Central Functional Consultant (MB-800)
MB-800 · 1899 questions
Microsoft Certified: Azure AI Engineer Associate (AI-102)
AI-102 · 1392 questions
Microsoft Certified: Windows Server Hybrid Administrator Associate (AZ-801)
AZ-801 · 1376 questions
Microsoft Dynamics 365 Finance Functional Consultant (MB-310)
MB-310 · 1299 questions
Microsoft 365 Certified: Fundamentals (MS-900)
MS-900 · 1201 questions
$17.99
One-time access to this exam