Planning for Device and Application Protection

13m 59s

Microsoft 365 provides multiple features and services for connecting, managing, and protecting corporate data within devices. It is critical for you as an IT administrator to understand the features available to protect any device connecting to Microsoft 365 services. This lesson will focus on what you need to know and do to successfully manage different types of devices. At the end of this lesson, you will know the various options and when to use which component, service, or tool. We will also discuss some important things to note when working with devices.

Learning Objectives

  • Plan for device and application protection
  • Configure and manage exploit protection
  • Configure and manage Windows device encryption
  • Configure and manage non-Windows device encryption
  • Implement application protection policies
  • Configure and manage device compliance for endpoint security

Intended Audience

This lesson is for people who want to become a Microsoft 365 Certified: Security Administrator Associate or are preparing to take the MS-500 exam.


To get the most from this lesson, you should have a Microsoft 365 tenant and an account with Global Administrator access. You will also need a Microsoft Intune license and devices to test within the tenant, such as a phone, tablet, or Windows workstation.

About the Author
Liam Cleary, opens in a new tab
Microsoft Certified Trainer & Microsoft MVP

Liam Cleary is a Microsoft MVP and Microsoft Certified Trainer focused on Microsoft 365 and Azure. He's been working with Microsoft Cloud and Azure technologies since their creation and focuses heavily on deployments, management, and the security of Microsoft 365 and Azure. He also holds multiple certifications for both Microsoft 365 and Azure.

Covered Topics