πŸ”’ Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901
Guided AB-900 Domain 2
Domain 2 β€” Module 8 of 10 80%
18 of 28 overall

AB-900 Study Guide

Domain 1: M365 Core Features & Objects

  • Welcome to Microsoft 365
  • Exchange Online: Mailboxes & Distribution
  • SharePoint: Sites, Libraries & Permissions
  • Microsoft Teams: Teams, Channels & Policies
  • Users, Groups & Licensing
  • Zero Trust: Never Trust, Always Verify
  • Authentication: Passwords, MFA & Beyond
  • Microsoft Defender XDR
  • Microsoft Entra: Your Identity Hub
  • PIM, Audit Logs & Identity Governance

Domain 2: Data Protection & Governance

  • Microsoft Purview: The Big Picture
  • Sensitivity Labels & Data Classification
  • Data Loss Prevention (DLP)
  • Insider Risk & Communication Compliance
  • DSPM for AI & Data Lifecycle
  • How Copilot Accesses Your Data
  • Responsible AI Principles
  • Compliance Manager & eDiscovery
  • Activity Explorer & Data Monitoring
  • Oversharing in SharePoint

Domain 3: Copilot & Agent Admin

  • What is Microsoft 365 Copilot? Free
  • What Are Agents? Free
  • Copilot vs Agents: When to Use Which Free
  • Copilot Licensing: Monthly vs Pay-as-You-Go Free
  • Researcher, Analyst & Real-World Use Cases Free
  • Managing Copilot: Billing, Monitoring & Prompts Free
  • Building Agents: Create, Test & Publish Free
  • Agent Lifecycle: Access, Approval & Monitoring Free

AB-900 Study Guide

Domain 1: M365 Core Features & Objects

  • Welcome to Microsoft 365
  • Exchange Online: Mailboxes & Distribution
  • SharePoint: Sites, Libraries & Permissions
  • Microsoft Teams: Teams, Channels & Policies
  • Users, Groups & Licensing
  • Zero Trust: Never Trust, Always Verify
  • Authentication: Passwords, MFA & Beyond
  • Microsoft Defender XDR
  • Microsoft Entra: Your Identity Hub
  • PIM, Audit Logs & Identity Governance

Domain 2: Data Protection & Governance

  • Microsoft Purview: The Big Picture
  • Sensitivity Labels & Data Classification
  • Data Loss Prevention (DLP)
  • Insider Risk & Communication Compliance
  • DSPM for AI & Data Lifecycle
  • How Copilot Accesses Your Data
  • Responsible AI Principles
  • Compliance Manager & eDiscovery
  • Activity Explorer & Data Monitoring
  • Oversharing in SharePoint

Domain 3: Copilot & Agent Admin

  • What is Microsoft 365 Copilot? Free
  • What Are Agents? Free
  • Copilot vs Agents: When to Use Which Free
  • Copilot Licensing: Monthly vs Pay-as-You-Go Free
  • Researcher, Analyst & Real-World Use Cases Free
  • Managing Copilot: Billing, Monitoring & Prompts Free
  • Building Agents: Create, Test & Publish Free
  • Agent Lifecycle: Access, Approval & Monitoring Free
Domain 2: Data Protection & Governance Premium ⏱ ~11 min read

Compliance Manager & eDiscovery

Compliance Manager tells you how well you're meeting regulations. eDiscovery helps you find content during investigations. Together, they answer: 'Are we compliant?' and 'Where's the evidence?'

Two compliance tools, two purposes

β˜• Simple explanation

Compliance Manager is your health checkup. eDiscovery is your search warrant.

Compliance Manager says: β€œHere’s your compliance score. You’re doing well on data protection, but you need to improve your retention policies. Here are the steps to fix it.” It’s a dashboard with a to-do list.

eDiscovery says: β€œWe need to find every email and document related to this legal case.” It searches across Exchange, SharePoint, OneDrive, and Teams to find specific content for investigations or legal holds.

Compliance Manager provides a risk-based compliance score and prioritised improvement actions based on regulatory frameworks (GDPR, ISO 27001, NIST, etc.). It assesses your M365 configuration against these frameworks and recommends specific actions to improve compliance.

eDiscovery (Electronic Discovery) enables searching, collecting, and preserving electronic content for legal or compliance investigations. Content search queries M365 data; cases manage multi-step investigations; legal holds prevent data deletion during active cases.

Compliance Manager

The compliance score

  • Score from 0 to a maximum based on your assessments
  • Higher = more compliant (not perfectly secure β€” it’s about configuration alignment)
  • Based on improvement actions you’ve completed
  • Found in Microsoft Purview β†’ Compliance Manager

How it works

  1. Assessments β€” choose regulatory frameworks (GDPR, ISO 27001, etc.)
  2. Improvement actions β€” Compliance Manager generates a prioritised list of recommendations
  3. Each action shows: what to do, which service to configure, impact on score, current status
  4. Two types of actions:
    • Microsoft-managed β€” actions Microsoft handles for you (infrastructure security)
    • Customer-managed β€” actions YOU need to take (enable MFA, configure DLP, etc.)
πŸ’‘ Scenario: Clearfield Council's compliance assessment

Officer Patel adds a GDPR assessment to Compliance Manager:

Score: 62% (needs improvement)

Top 5 recommended actions:

  1. βœ… Enable MFA for all users (+8 points) β€” already done
  2. ⬜ Configure DLP policies for personal data (+12 points) β€” not started
  3. ⬜ Enable sensitivity labels (+10 points) β€” in progress
  4. ⬜ Set up retention policies for email (+6 points) β€” not started
  5. ⬜ Enable audit logging (+4 points) β€” already enabled but not verified

Officer Patel works through the list over 3 months β†’ score rises to 84%.

Exam tip: Compliance Manager RECOMMENDS and SCORES β€” it doesn’t ENFORCE. You must take the actions yourself. Compare with Identity Secure Score (Module 10) which does the same for security.

eDiscovery

Content search β€” the basic tool

Content search lets you search for specific content across M365:

  • Where it searches: Exchange mailboxes, SharePoint sites, OneDrive accounts, Teams messages
  • What you can search by: Keywords, date ranges, senders/recipients, file types, labels
  • What you can do with results: Preview, export, or add to an eDiscovery case

eDiscovery cases β€” for investigations

When you need more than a one-off search:

FeatureWhat It Does
Case creationOrganise searches and holds around a specific investigation
Legal holdsPrevent data from being deleted or modified during an investigation
SearchRun multiple searches within the case
ExportExport search results for external review (legal team, auditors)
CloseClose the case and release holds when investigation is complete
πŸ’‘ Scenario: Clearfield Council receives a legal request

Clearfield Council receives a freedom-of-information request: β€œProvide all emails and documents related to the North Bridge construction project from 2025-2026.”

Officer Patel’s process:

  1. Create eDiscovery case β€” β€œNorth Bridge FOI Request 2026”
  2. Place legal hold β€” on all relevant users’ mailboxes and the North Bridge SharePoint site (prevents deletion)
  3. Run content search β€” keywords: β€œNorth Bridge”, date range: 2025-01-01 to 2026-12-31, locations: email + SharePoint
  4. Preview results β€” 847 items found, review for relevance and redact sensitive content
  5. Export β€” deliver to legal team for the FOI response
  6. Close case β€” release holds after investigation is complete

🎬 Video walkthrough

🎬 Video coming soon

Compliance Manager & eDiscovery β€” AB-900 Module 18

Compliance Manager & eDiscovery β€” AB-900 Module 18

~10 min

Flashcards

Question

What is Compliance Manager?

Click or press Enter to reveal answer

Answer

A tool in Microsoft Purview that provides a compliance score based on regulatory assessments. It recommends prioritised improvement actions (customer-managed and Microsoft-managed) to improve compliance posture. It recommends β€” it doesn't enforce.

Click to flip back
Question

What is eDiscovery used for?

Click or press Enter to reveal answer

Answer

Searching, collecting, and preserving electronic content (emails, files, Teams messages) for legal or compliance investigations. Includes content search, case management, legal holds, and export.

Click to flip back
Question

What is a legal hold in eDiscovery?

Click or press Enter to reveal answer

Answer

A legal hold prevents data from being deleted or modified during an active investigation. It's placed on mailboxes, SharePoint sites, or OneDrive accounts within an eDiscovery case. Data under hold is retained even if retention policies would normally delete it.

Click to flip back

Knowledge Check

Knowledge Check

Clearfield Council needs to prevent deletion of all emails related to an active investigation while they review the content. Which tool should Officer Patel use?

Next up: Activity Explorer & Data Monitoring β€” the tools that show you what’s happening to your data in real time.

← Previous

Responsible AI Principles

Next β†’

Activity Explorer & Data Monitoring

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.