🔒 Guided

Pre-launch preview. Authorised access only.

Incorrect code

Guided by A Guide to Cloud
Explore AB-900 AI-901
Guided AB-900 Domain 2
Domain 2 — Module 1 of 10 10%
11 of 28 overall

AB-900 Study Guide

Domain 1: M365 Core Features & Objects

  • Welcome to Microsoft 365
  • Exchange Online: Mailboxes & Distribution
  • SharePoint: Sites, Libraries & Permissions
  • Microsoft Teams: Teams, Channels & Policies
  • Users, Groups & Licensing
  • Zero Trust: Never Trust, Always Verify
  • Authentication: Passwords, MFA & Beyond
  • Microsoft Defender XDR
  • Microsoft Entra: Your Identity Hub
  • PIM, Audit Logs & Identity Governance

Domain 2: Data Protection & Governance

  • Microsoft Purview: The Big Picture
  • Sensitivity Labels & Data Classification
  • Data Loss Prevention (DLP)
  • Insider Risk & Communication Compliance
  • DSPM for AI & Data Lifecycle
  • How Copilot Accesses Your Data
  • Responsible AI Principles
  • Compliance Manager & eDiscovery
  • Activity Explorer & Data Monitoring
  • Oversharing in SharePoint

Domain 3: Copilot & Agent Admin

  • What is Microsoft 365 Copilot? Free
  • What Are Agents? Free
  • Copilot vs Agents: When to Use Which Free
  • Copilot Licensing: Monthly vs Pay-as-You-Go Free
  • Researcher, Analyst & Real-World Use Cases Free
  • Managing Copilot: Billing, Monitoring & Prompts Free
  • Building Agents: Create, Test & Publish Free
  • Agent Lifecycle: Access, Approval & Monitoring Free

AB-900 Study Guide

Domain 1: M365 Core Features & Objects

  • Welcome to Microsoft 365
  • Exchange Online: Mailboxes & Distribution
  • SharePoint: Sites, Libraries & Permissions
  • Microsoft Teams: Teams, Channels & Policies
  • Users, Groups & Licensing
  • Zero Trust: Never Trust, Always Verify
  • Authentication: Passwords, MFA & Beyond
  • Microsoft Defender XDR
  • Microsoft Entra: Your Identity Hub
  • PIM, Audit Logs & Identity Governance

Domain 2: Data Protection & Governance

  • Microsoft Purview: The Big Picture
  • Sensitivity Labels & Data Classification
  • Data Loss Prevention (DLP)
  • Insider Risk & Communication Compliance
  • DSPM for AI & Data Lifecycle
  • How Copilot Accesses Your Data
  • Responsible AI Principles
  • Compliance Manager & eDiscovery
  • Activity Explorer & Data Monitoring
  • Oversharing in SharePoint

Domain 3: Copilot & Agent Admin

  • What is Microsoft 365 Copilot? Free
  • What Are Agents? Free
  • Copilot vs Agents: When to Use Which Free
  • Copilot Licensing: Monthly vs Pay-as-You-Go Free
  • Researcher, Analyst & Real-World Use Cases Free
  • Managing Copilot: Billing, Monitoring & Prompts Free
  • Building Agents: Create, Test & Publish Free
  • Agent Lifecycle: Access, Approval & Monitoring Free
Domain 2: Data Protection & Governance Premium ⏱ ~12 min read

Microsoft Purview: The Big Picture

Microsoft Purview is your data guardian — information protection, DLP, insider risk, communication compliance, and more. Before diving into each tool, let's see how they all fit together.

What is Microsoft Purview?

☕ Simple explanation

Think of Purview as a team of specialists protecting your organisation’s data.

One specialist labels everything — “this is confidential, this is public” (Information Protection). Another watches the exits — “you can’t email that spreadsheet to a personal account” (DLP). A third watches the people — “this employee just downloaded 500 files, that’s unusual” (Insider Risk). A fourth reads the room — “that Teams message violates our conduct policy” (Communication Compliance).

They all work together because data threats come from many directions. Purview covers them all.

Microsoft Purview is a family of data governance, compliance, and security solutions integrated into Microsoft 365. It provides capabilities across the data protection lifecycle: discovering data, classifying it, protecting it, preventing leakage, managing retention, and responding to compliance requirements.

For the AB-900 exam, you need to understand six key Purview capabilities: Information Protection, DLP, Insider Risk Management, Communication Compliance, DSPM for AI, and Data Lifecycle Management.

The Purview family at a glance

The six Purview capabilities tested on AB-900
FeatureWhat It DoesKey Question It Answers
Information ProtectionClassifies and labels data based on sensitivityWhat kind of data do we have?
Data Loss Prevention (DLP)Prevents sensitive data from leaving the organisationIs someone trying to share something they shouldn't?
Insider Risk ManagementDetects risky user behaviour patternsIs an employee acting suspiciously?
Communication ComplianceMonitors messages for policy violationsIs anyone saying something that violates our policies?
DSPM for AIDiscovers and governs AI-related data activityHow is data being used with AI tools?
Data Lifecycle ManagementManages retention and deletion of dataHow long do we keep things, and when do we delete them?

Key exam concept: Each Purview tool solves a DIFFERENT problem. The exam tests whether you can pick the right tool for a given scenario. If data needs labelling → Information Protection. If data is being shared inappropriately → DLP. If a user is acting suspiciously → Insider Risk. If a message violates policy → Communication Compliance.

How the Purview tools connect

These tools work as a pipeline — each step feeds the next:

  1. Information Protection → labels data as “Confidential”, “Internal”, “Public”
  2. DLP → uses those labels to enforce rules (“don’t email Confidential files externally”)
  3. Insider Risk → detects when someone tries to bypass those rules repeatedly
  4. Communication Compliance → catches policy violations in Teams/Outlook messages
  5. DSPM for AI → monitors how labelled data is used with Copilot and other AI tools
  6. Data Lifecycle → retains data for compliance periods, then auto-deletes
💡 Scenario: Clearfield Council's data governance journey

Officer Patel implements Purview across Clearfield Council:

Month 1: Know your data

  • Enable Information Protection → auto-classify documents containing personal data
  • Apply sensitivity labels: “Public”, “Official”, “Sensitive”, “Highly Sensitive”

Month 2: Protect your data

  • Set up DLP policies → block external sharing of anything labelled “Sensitive” or above
  • Alert Officer Patel when DLP triggers

Month 3: Detect risks

  • Enable Insider Risk Management → flag unusual download patterns (e.g., 500 files in one hour)
  • Enable Communication Compliance → monitor for discriminatory language in official channels

Month 4: Govern AI

  • Deploy Copilot → enable DSPM for AI → monitor which labelled data Copilot accesses
  • Set up alerts for Copilot accessing “Highly Sensitive” content

Ongoing: Manage lifecycle

  • Retention policies → keep council records for 7 years, then auto-delete
  • Retention labels → legal hold on anything related to active investigations

Each layer adds protection. Together, they create a comprehensive data governance framework.

Where to find Purview

Purview tools are accessed through the Microsoft Purview portal (purview.microsoft.com):

SectionWhat You’ll Find
Information protectionSensitivity labels, label policies, auto-labelling
Data loss preventionDLP policies, alerts, activity explorer
Insider risk managementPolicies, alerts, cases, analytics
Communication compliancePolicies, alerts, investigations
Data security posture managementAI activity, data security insights
Data lifecycle managementRetention policies, labels, disposition
eDiscoveryContent search, cases, legal holds
Compliance ManagerCompliance score, assessments, improvement actions

🎬 Video walkthrough

🎬 Video coming soon

Microsoft Purview Overview — AB-900 Module 11

Microsoft Purview Overview — AB-900 Module 11

~10 min

Flashcards

Question

What is Microsoft Purview?

Click or press Enter to reveal answer

Answer

A family of data governance, compliance, and security solutions in Microsoft 365. It covers six key areas: Information Protection, DLP, Insider Risk, Communication Compliance, DSPM for AI, and Data Lifecycle Management.

Click to flip back
Question

What's the difference between Information Protection and DLP?

Click or press Enter to reveal answer

Answer

Information Protection CLASSIFIES and LABELS data (identifies what's sensitive). DLP PREVENTS sensitive data from leaving the organisation (blocks inappropriate sharing). Labels are the foundation — DLP uses them to enforce rules.

Click to flip back
Question

What's the difference between Insider Risk and Communication Compliance?

Click or press Enter to reveal answer

Answer

Insider Risk detects suspicious USER BEHAVIOUR patterns (unusual file downloads, data exfiltration attempts). Communication Compliance monitors MESSAGE CONTENT for policy violations (discriminatory language, regulatory breaches). One watches actions, the other watches words.

Click to flip back

Knowledge Check

Knowledge Check

Northwave discovers that an employee has been downloading hundreds of customer files to a USB drive every night for the past week. Which Purview tool would detect this behaviour?
Knowledge Check

Clearfield Council wants to ensure that documents labelled 'Highly Sensitive' cannot be emailed to external recipients. Which Purview tool should they configure?

Next up: Sensitivity Labels & Data Classification — how to identify and label your data so the rest of Purview can protect it.

← Previous

PIM, Audit Logs & Identity Governance

Next →

Sensitivity Labels & Data Classification

Guided

I learn, I simplify, I share.

A Guide to Cloud YouTube Feedback

© 2026 Sutheesh. All rights reserved.

Guided is an independent study resource and is not affiliated with, endorsed by, or officially connected to Microsoft. Microsoft, Azure, and related trademarks are property of Microsoft Corporation. Always verify information against Microsoft Learn.