Microsoft 365 Certified: Copilot and Agent Administration Fundamentals (AB-900) Practice Test

This certification is designed for IT administrators, support engineers, and helpdesk professionals who work in or are entering Microsoft 365 environments where Copilot and AI agents are being deployed. It is appropriate for those in roles such as Microsoft 365 administrator, junior cloud administrator, IT generalist, or modern workplace engineer who need to demonstrate foundational competence in managing and securing AI-driven productivity tools.

The certification is also well-suited for business technology professionals, compliance officers, or governance specialists who interact with Microsoft Purview, Microsoft Entra, and Copilot administration. Candidates should have experience with AI-driven productivity tools and modern IT management practices, and a working familiarity with Microsoft 365 admin centers.

There are no formal prerequisites required to sit for the AB-900 exam. However, Microsoft recommends candidates have hands-on familiarity with Microsoft 365 core services and admin centers, including Exchange Online, SharePoint in Microsoft 365, Microsoft Teams, Microsoft Entra, and Microsoft Purview. Candidates should understand core security concepts such as authentication methods, conditional access policies, Zero Trust principles, and single sign-on (SSO).

Practical experience with AI-driven productivity tools and a basic understanding of how Microsoft 365 Copilot accesses organizational data via Microsoft Graph is strongly recommended. Familiarity with licensing models, user and group management, and compliance tooling in Microsoft Purview will also help candidates succeed on the exam.

The AB-900 exam is a proctored assessment with a 45-minute time limit. It may include interactive components in addition to traditional question formats. The exam is delivered in English through Pearson VUE, and students and educators may also schedule through Certiport. A score of 700 out of 1000 is required to pass.

Most questions cover features that are Generally Available (GA), though questions on Preview features may appear if those features are commonly used. Candidates who need the exam in a non-English language may request an additional 30 minutes. If a candidate fails, they may retake the exam after 24 hours; subsequent retake wait times vary per Microsoft's retake policy.

• 1.Identify the core features and objects of Microsoft 365 services (30–35%): Covers core Microsoft 365 objects such as users, groups, mailboxes, distribution lists, SharePoint sites and libraries, Teams and channels, and license assignments. Also includes Microsoft 365 security principles such as Zero Trust, authentication methods, conditional access, Microsoft Entra features, SSO, Privileged Identity Management (PIM), Identity Secure Score, App registrations, Enterprise apps, audit logs, and Microsoft Defender XDR capabilities.
• 2.Understand data protection and governance tasks for Microsoft 365 and Copilot (35–40%): Covers Microsoft Purview capabilities including Information Protection, Data Loss Prevention (DLP), Insider Risk Management, Communication Compliance, Data Security Posture Management (DSPM) for AI, Data Lifecycle Management, sensitivity labels, data classification, and retention. Also covers how Copilot accesses data via Microsoft Graph, responsible AI principles, and identifying and monitoring oversharing in SharePoint using data access governance reports and SharePoint Advanced Management.
• 3.Perform basic administrative tasks for Copilot and agents (25–30%): Covers Copilot licensing (monthly subscription vs. pay-as-you-go including SharePoint), assigning licenses, monitoring usage and adoption via Copilot Analytics and the Microsoft 365 admin center, managing prompts, and understanding built-in Copilot capabilities such as Researcher and Analyst. Also includes agent creation, configuring user access to agents, understanding the agent approval process, and monitoring agent usage and lifecycle via the Microsoft 365 admin center and Microsoft Power Platform admin center.

• Use the official AB-900 Study Guide on Microsoft Learn (aka.ms/ab900-StudyGuide) as your primary study outline — it lists every testable sub-skill with exact percentage weights per domain.
• Complete the free self-paced learning path for course AB-900T00-A: 'Introduction to Microsoft 365 and AI Administration' on Microsoft Learn, which is the official instructor-led and self-paced preparation course aligned to this exam.
• Explore the exam sandbox at go.microsoft.com/fwlink/?linkid=2226877 before test day to familiarize yourself with the interface, including any interactive question types that may appear.
• Focus significant study time on the Microsoft Purview suite (DLP, Insider Risk Management, DSPM for AI, sensitivity labels, compliance manager) since the data protection and governance domain carries the highest weight at 35–40%.
• Practice hands-on in the Microsoft 365 admin center, Microsoft Entra admin center, SharePoint admin center, and Microsoft Purview compliance portal — the exam tests practical recognition of admin center objects, reports, and configurations rather than abstract theory.
• Review how Microsoft 365 Copilot uses Microsoft Graph to retrieve data, how permissions and sensitivity labels affect Copilot responses, and how DSPM for AI surfaces AI-related data risks — these are high-signal topics specific to this exam.
• Use Microsoft Q&A (learn.microsoft.com/answers) and the Microsoft 365 Copilot Community Hub on Tech Community to clarify edge-case concepts around Copilot licensing models (monthly vs. pay-as-you-go) and agent lifecycle management.

Earning the AB-900 certification positions professionals as credible administrators in organizations adopting Microsoft 365 Copilot and AI agents, a rapidly expanding segment of enterprise IT. It serves as a foundation for more advanced Microsoft 365 certifications, such as the Microsoft 365 Certified: Administrator Expert or role-based associate certifications covering security, compliance, and identity. As organizations accelerate AI tool deployment, the ability to govern, secure, and administer Copilot environments is increasingly listed as a required or preferred qualification in Microsoft 365 administrator job postings.

Because AB-900 is a foundational-level certification, it is particularly valuable for professionals transitioning into cloud administration or seeking to formalize existing knowledge. It complements other Microsoft fundamentals certifications and is recognized in procurement, compliance, and IT operations roles where demonstrable knowledge of AI governance in Microsoft 365 is required. Salary impact varies by region and role, but Microsoft 365 administrators with AI governance skills are increasingly in demand as enterprises scale Copilot deployments.