MS-201: Implementing a Hybrid and Secure Messaging Platform

MS-201: Implementing a Hybrid and Secure Messaging Platform are part of the requirements for the Microsoft 365 Messaging Administrator Associate

Exam requirements

The official exam document are published here:

Exam preparation

This exam preparation is the for the old 70-345: Designing and Deploying Microsoft Exchange Server 2016 and not the updated MS-201 exam.

Books covering the exam

No Books covering the exam added yet.

Video training for the exam


This course on Pluralsight is for the old 70-345: Designing and Deploying Microsoft Exchange Server 2016, but covers a lot of the exam objectives in the MS-201 exam:

Microsoft Ignite 2018 on Tech Community

Online training

OpenEdx (free)

Instructor-led training

Microsoft Learning Partner

Exam Objectives

Plan and Implement a Hybrid Configuration and Migration (35-40%)

  • Plan a hybrid environment
    • Evaluate federation in hybrid coexistence
    • Evaluate hybrid free/busy access
    • Decide between Exchange Classic Hybrid and Exchange Modern Hybrid
  • Deploy a hybrid environment
    • Deploy and verify OAuth for a hybrid deployment
    • Install and configure Edge server role
    • Configure hybrid mail flow
    • Configure federation in hybrid coexistence
    • Configure Organization
    • Configuration Transfer (OCT)
    • Deploy the Exchange Hybrid Agent to one or more Exchange servers
    • Implement advanced hybrid functionality, including On-premises, OneDrive access, and Outlook for iOS
  • Plan and implement migration
    • Manage mailbox migration request batches
    • Troubleshoot mailbox migration
    • Evaluate migration types
    • Configure migration endpoints in Microsoft 365
  • Manage public folders
    • Troubleshoot public folder coexistence
    • Move content between public folder mailboxes
    • Create additional public folder mailboxes
    • Implement public folder Top Level Hierarchy (TLH)
    • Implement mail-enabled public folders
    • Plan and configure public folders
    • Plan a public folder migration to Microsoft 365

Secure the Messaging Environment (40-45%)

  • Manage role-based permissions
    • Manage role groups
    • Assign user accounts to admin roles
    • Manage user roles
    • Manage a delegated Role-based Access Control (RBAC) setup
    • Plan RBAC roles for eDiscovery
  • Manage message hygiene
    • Plan for message hygiene
    • Manage connection filters
    • Configure malware filters
    • Configure spam filters
    • Monitor action center
    • Monitor quarantined items
    • Manage protection for phishing
    • Plan and configure Spam Confidence Levels (SCL)
  • Manage Advanced Threat Protection (ATP) for messaging
    • Configure and manage ATP safe attachments
    • Configure and manage ATP safe links
    • Configure and manage ATP anti-phishing
    • Manage ATP anti-spam
    • Monitor Threat Protection Status
  • Manage compliance
    • Configure retention policies
    • Configure data loss prevention policies
    • Review and analyze audit logs
    • Manage journal rules
    • Manage content search
    • Manage litigation hold

Manage Organizational Settings (15-20%)

  • Configure organizational settings
    • Configure sharing
    • Configure workload management
    • Manage email address policies
  • Plan address lists
    • Manage Global Address List (GAL)
    • Manage Offline Address Book (OAB)
    • Manage address book policies