Microsoft Certifications by Role — Free Mind Map

Visual roadmap of Microsoft certification paths grouped by role — Cloud Admin, Cloud Architect, Security Analyst, Identity Admin. Free mind map.

Microsoft has 50+ certs. Most people only need 3-4 — the ones that match their role. Here's the by-role progression for the six biggest tracks.

Last reviewed

Microsoft Certifications by Role — Free Mind Map
Click the map to expand · Download to share

Frequently Asked Questions

Do I need to take Fundamentals certs first?

Not formally — none of the role-based or specialty certs require Fundamentals. But Fundamentals (AZ-900, SC-900, AI-900, DP-900, PL-900) are unique among Microsoft certs because they DON'T expire. They cost the same as a paid renewal of any role-based cert ($99 USD). Plus they build vocabulary for the harder certs that follow. For most people new to a track, take the Fundamentals first; experienced engineers can skip straight to the role-based exam. Note: MS-900 was retired on March 31, 2026 — Microsoft is consolidating M365 fundamentals coverage into AZ-900 / SC-900 going forward.

What's the difference between MS-102 and SC-300?

Big overlap on Entra ID identity topics, but different focus. MS-102 (M365 Administrator Expert) covers the WHOLE M365 admin job — identity + Exchange + SharePoint + Teams + endpoint + security. Broad and shallow. SC-300 (Identity & Access Administrator) is narrow and deep — identity-only: Conditional Access design, PIM, hybrid identity, B2B/B2C, identity governance. If your job is 'M365 admin', take MS-102. If your job is 'Identity Admin' specifically, take SC-300. Some people take both.

Which cert pays the most?

Expert-level certs typically pay 20-40% more than Associate. Top earners by survey data: AZ-305 (Solutions Architect Expert), SC-100 (Cybersecurity Architect Expert), MS-102 (M365 Admin Expert), AZ-400 (DevOps Engineer Expert). The 'Expert' tier requires you to already hold a prerequisite Associate cert (e.g., AZ-104 before AZ-305). Salary impact also depends heavily on years of hands-on experience — a cert without experience is worth less than experience without a cert.

Should I aim for one path or get certs from multiple tracks?

Depends on career stage. Early career (1-3 years): focus on ONE path, get to Associate level, build hands-on. Mid career (3-7 years): you'll naturally pick up adjacent certs as your role broadens (e.g., Cloud Admin moves into Architect or SecOps). Senior (7+ years): cross-track expertise becomes valuable — having both Architect (AZ-305) and Security Architect (SC-100) signals leadership credibility. Don't collect certs for vanity; let job needs drive what you take.