dc dotCreds
Reference guide

AB-900 Course Notes

Study AB-900 section notes, then jump straight into the guided course or related practice questions without losing your place.

Continue Course Start Practice
Checking access

Checking Pro access...

Looking for your active Pro access before showing Course Notes. This usually takes just a moment.

Course Notes preview

Unlock Pro for the full per-exam reference guide.

Preview one piece from each section. Pro includes every Course Notes section, summary, key point, common mistake, exam tip, related-question review, and PDF export.

Includes full Course Mode and Course Notes.

Section 1 Microsoft 365 core services, tenant objects, and identity Preview
More in this section
  • Full summary in Pro version
  • 11 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 34 more related questions in Pro version

Summary

Core Microsoft 365 administration starts with knowing which tenant object solves the request. A distribution group gives users one email address for sending messages to multiple recipients, while a user mailbox belongs to one licensed user and a shared mailbox lets multiple people work from a common address such as support or billing. The Exchange admin center is the correct place for many mailbox and recipient tasks, so exam items often separate mail administration from SharePoint, Teams, or license management.

Key Points

  • Distribution Group: A distribution group is an Exchange recipient object used to send email to multiple recipients through one address. It matters on the exam because it solves email distribution, not shared file collaboration or Teams membership by itself.

Common Mistakes

  • Choosing a Microsoft 365 group when the task only needs an email distribution list.

Exam Tips

  • Distribution group means email delivery; Microsoft 365 group means broader collaboration resources.
Section 2 Microsoft 365 and AI administration foundations Preview
More in this section
  • Full summary in Pro version
  • 7 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 17 more related questions in Pro version

Summary

Microsoft 365 administration starts in the Microsoft 365 admin center, where admins manage users, domains, subscriptions, billing, licenses, groups, and service health. The exam expects you to know when the admin center is the right portal for tenant-wide account and licensing work, and when a workload-specific admin center is needed instead. Service health belongs in this foundation because admins must distinguish a Microsoft service incident from a local configuration or user problem.

Key Points

  • Microsoft 365 Admin Center: The Microsoft 365 admin center is the main portal for tenant-wide administration such as users, licenses, subscriptions, billing, domains, groups, and service health. It matters on the exam because many admin tasks start there before moving to a workload-specific portal.

Common Mistakes

  • Opening a workload admin center when the task is tenant-wide licensing, billing, service health, or user administration.

Exam Tips

  • Use the Microsoft 365 admin center for users, licenses, billing, domains, service health, and broad tenant settings.
Section 3 Data protection, governance, and monitoring Preview
More in this section
  • Full summary in Pro version
  • 8 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 74 more related questions in Pro version

Summary

Microsoft Purview is the center of gravity for Microsoft 365 compliance, data protection, and governance. Purview solutions help admins classify data, retain or delete content, investigate activity, manage communication risk, detect insider risk, and respond to legal or regulatory obligations. The exam usually asks which Purview capability fits a risk: DLP protects sensitive information in use, retention manages lifecycle, sensitivity labels classify and protect content, and Activity Explorer helps investigate what happened.

Key Points

  • Microsoft Purview: Microsoft Purview is the Microsoft compliance and data governance family used to classify, protect, retain, investigate, and monitor Microsoft 365 data. It matters because AB-900 questions often ask which Purview tool fits a specific data risk.

Common Mistakes

  • Using DLP as the answer for every data protection scenario when retention, sensitivity labels, audit, or eDiscovery may fit better.

Exam Tips

  • DLP is strongest when the task is detecting or blocking sensitive data sharing in supported locations.
Section 4 Applied oversharing and lifecycle scenarios Preview
More in this section
  • Full summary in Pro version
  • 5 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 24 more related questions in Pro version

Summary

SharePoint oversharing questions usually start with Data Access Governance reports. These reports help admins find sites with broad internal access, external sharing, Anyone links, sharing-link activity, and sensitivity-label inconsistencies. The exam distinction is that the report identifies the risk; remediation happens afterward through sharing settings, site access review, restricted access controls, label cleanup, or link removal.

Key Points

  • Data Access Governance Reports: Data Access Governance reports show SharePoint and OneDrive access risks such as overshared sites, sharing links, external sharing, and label issues. They matter because they tell admins where to investigate before changing permissions.

Common Mistakes

  • Treating Data Access Governance reports as the remediation itself instead of evidence that points to a site or link to fix.

Exam Tips

  • Use DAG reports to find overshared sites, sharing links, external access, and broad internal exposure.
Section 5 Supplemental adjacent AI topics Preview
More in this section
  • Full summary in Pro version
  • 5 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 22 more related questions in Pro version

Summary

GitHub Copilot modernization is an adjacent AI topic about assessing and upgrading application code, especially Java, .NET, and supported app modernization scenarios. The value is not simply code completion; the modernization agent analyzes an application, identifies dependencies and framework concerns, and recommends a path for bringing older code closer to a cloud-ready or Azure-ready architecture.

Key Points

  • GitHub Copilot Modernization: GitHub Copilot modernization uses Copilot-assisted analysis and recommendations to help update supported applications such as Java and .NET projects. It matters because the tool guides modernization work, but developers still validate the changes.

Common Mistakes

  • Treating GitHub Copilot modernization as ordinary chat assistance instead of app assessment, transformation, and migration support.

Exam Tips

  • Java, .NET, dependency analysis, Dockerfiles, and Azure Developer CLI assets point to GitHub Copilot modernization.
Section 6 Copilot foundations and administration Preview
More in this section
  • Full summary in Pro version
  • 6 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 20 more related questions in Pro version

Summary

Copilot administration starts with knowing which users have access and which billing model applies. License assignment grants Microsoft 365 Copilot capabilities to eligible users, while license removal affects future access to licensed Copilot features. Pay-as-you-go is a separate billing model for supported Copilot services and scenarios, so admins must connect the right billing policy rather than assuming every Copilot feature is controlled only by user licenses.

Key Points

  • Copilot License Assignment: Copilot license assignment gives eligible users access to licensed Microsoft 365 Copilot capabilities. It matters when the scenario is about who can use Copilot, not how pay-as-you-go usage is billed.

Common Mistakes

  • Assigning a user license when the scenario asks for pay-as-you-go billing configuration.

Exam Tips

  • License assignment controls which users can use licensed Microsoft 365 Copilot capabilities.
Section 7 Agents and AI-powered automation Preview
More in this section
  • Full summary in Pro version
  • 5 more key points in Pro version
  • 3 more common mistakes in Pro version
  • 3 more exam tips in Pro version
  • 22 more related questions in Pro version

Summary

AI-powered automation questions separate simple prompt agents from more structured workflow or hosted agents. A prompt agent is useful for rapid prototyping or straightforward natural-language assistance driven mainly by instructions and knowledge. A workflow agent is better when the scenario needs branching, orchestration, or a defined sequence of actions. A hosted agent fits code-based or more advanced implementations where runtime behavior and tools need stronger engineering control.

Key Points

  • Prompt Agent: A prompt agent is a lightweight agent pattern driven mainly by instructions, prompts, and selected knowledge. It is useful for quick assistance or prototyping when the task does not require complex orchestration.

Common Mistakes

  • Using Microsoft 365 Copilot reports as the answer when the scenario is about Foundry Agent Service runtime or orchestration.

Exam Tips

  • Prompt agents fit lightweight assistance and rapid prototyping.