Bash, the Crucial Exams Chat Bot
AI Bot
Microsoft 365 Architecture & Components (AB-900) Flashcards
Microsoft 365 Certified: Copilot and Agent Administration Fundamentals AB-900 Flashcards
Study our Microsoft 365 Architecture & Components (AB-900) flashcards for the Microsoft 365 Certified: Copilot and Agent Administration Fundamentals AB-900 exam with 35+ flashcards. View as flashcards, a searchable table, or as a fun matching game.
| Front | Back |
| Agent orchestration concept | Agent coordinates data retrieval prompts tool calls and multi step plan execution |
| API throttling and best practices | Respect rate limits use batching backoff exponential retry and efficient queries |
| Application permissions vs delegated | App permissions allow app only access Delegated permissions require signed in user context |
| Azure AD primary responsibilities | Identity management authentication authorization device management and conditional access |
| Backup and recovery options in M365 | Point in time restore retention policies Recycle Bin and SharePoint version history |
| Conditional Access basics | Policies that enforce requirements like MFA device compliance location and risk signals |
| Connectors and webhooks in Teams | Incoming webhooks post messages outgoing webhooks call services for bot interactions |
| Connectors for third party data | Graph connectors allow ingestion of CRM file systems and custom sources into M365 index |
| Copilot data flow overview | User prompt to Copilot service fetch data via Graph apply model generate response and store telemetry |
| Copilot integration points | Graph API connectors SharePoint Outlook Teams and secure store for knowledge retrieval |
| Data residency and compliance considerations | Data location retention labels eDiscovery and audit logging controls |
| Differences between OAuth2 and OpenID Connect | OAuth2 is authorization framework OpenID Connect adds authentication and ID tokens |
| Endpoint management for agents | Agents run on endpoints use connectors to send telemetry and enforce policies via Intune |
| Exchange connectors types | SMTP relay connectors inbound connectors for hybrid and outbound connectors for external routing |
| Exchange Online architecture basics | Mailbox store transport server services and mail flow via front end and backend roles |
| Exchange transport flow overview | Client SMTP submission to front end connector hub delivery to mailbox database or external relay |
| How Copilot accesses tenant data | Copilot queries Microsoft Graph and secured connectors with tenant consent and role based access |
| Hybrid identity patterns | Password hash sync pass through auth and federation with AD FS |
| Identity protection and risk events | Risk detections trigger remediation like password reset MFA or conditional access block |
| Licensing impact on architecture | Feature availability and service limits depend on subscription SKU and licenses assigned |
| M365 connectors classification | Inbound connectors bring external data Outbound connectors send M365 events to external systems |
| Mail flow anti spam and security | Exchange Online Protection ATP Safe Links and Safe Attachments for email protection |
| Microsoft Graph connectors purpose | Index external content into Microsoft Search and enrich Graph content for Copilot |
| Microsoft Search indexing workflow | Crawl content map metadata index and surface results via search API and Graph |
| Monitoring and telemetry tools | Microsoft 365 admin center Graph Reports Azure Monitor and Defender logs for observability |
| OneDrive for Business vs SharePoint | OneDrive is personal file storage SharePoint is shared team and enterprise content management |
| Role of Azure AD Conditional Access Signals | Signals supply user device location app and risk for access decisions |
| Role of Microsoft Graph | Unified API for accessing M365 data users mail files groups devices insights and directory |
| Secure endpoint management role | Intune governs device compliance configuration profiles and app protection policies |
| Service endpoints to know | Microsoft Graph REST endpoints Exchange Web Services and SharePoint REST APIs |
| SharePoint content storage model | Sites lists libraries files stored in content databases with metadata and versioning |
| SharePoint Online purpose | Content and document management intranet sites pages lists libraries and metadata driven storage |
| Teams app model and bots | Teams apps include bots tabs connectors messaging extensions and webhooks |
| Teams core components | Clients Teams service chat and channel storage conversation recording and media relay |
| Teams media path and relay | Peer to peer when possible TURN and Media Relay for NAT and firewall traversal |
About the Flashcards
Flashcards for the Microsoft 365 Certified: Copilot and Agent Administration Fundamentals exam guide you through core Microsoft 365 architecture, from Azure AD identity services to application permissions, OAuth 2.0, and OpenID Connect flows. Each card reinforces how authentication, authorization, conditional access, and endpoint management combine to secure users, devices, and cloud resources across the suite.
The deck also covers Exchange Online mail flow, SharePoint and OneDrive storage models, Teams media routing, Microsoft Graph APIs, Graph connectors, and the emerging role of Copilot and agent orchestration. Key reminders on licensing, data residency, compliance, monitoring, and API throttling ensure you recall design and governance points likely to appear on test day.
Topics covered in this flashcard deck:
- Azure AD identity
- OAuth2 vs OIDC
- Microsoft Graph APIs
- Exchange Online mail flow
- SharePoint & Teams architecture
- Copilot and connectors