Term 61
Cloud-only identity
A cloud-only identity is a user account that exists solely in a cloud-based identity provider and has no counterpart in any on-premises directory service.
Acronym study
Terms 61–90 of 352 MD-102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 61
A cloud-only identity is a user account that exists solely in a cloud-based identity provider and has no counterpart in any on-premises directory service.
Term 62
CMG (Cloud Management Gateway) is a Microsoft Intune component that lets you manage internet-based devices without a direct connection to your on-premises infrastructure.
Term 63
Co-management is a device management strategy that lets organizations simultaneously manage Windows 10 and later devices using both Configuration Manager (on-premises) and Microsoft Intune (cloud), enabling a gradual transition to modern management.
Term 64
Communication Compliance is the set of policies, tools, and practices used by organizations to monitor, capture, and review electronic communications in order to meet regulatory, legal, and internal governance requirements.
Term 65
Company Portal is a Microsoft app that gives employees a secure, self-service way to enroll devices, access company apps, and manage work resources from any device.
Term 66
Compartmented security mode is a multilevel security (MLS) system where subjects are cleared for all sensitivity levels but only have access to specific compartments of information based on their need-to-know.
Term 67
Compliance is the process of ensuring that an organization follows laws, regulations, standards, and internal policies that apply to its operations and data handling.
Term 68
A Compliance Manager is a tool or service that helps organizations assess, monitor, and improve their adherence to regulatory standards, industry frameworks, and internal policies.
Term 69
A compliance policy is a set of rules that ensures devices, users, and applications meet an organization's security and regulatory requirements before they can access corporate resources.
Term 70
A compliance scan is an automated security assessment that checks systems, networks, and applications against a defined set of regulatory or organizational standards to verify adherence to required policies.
Term 71
Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.
Term 72
Conditional access is a security framework that evaluates signals like user location, device health, and risk level to grant or block access to resources in real time.
Term 73
Conditional Access integration is a security framework that evaluates signals such as user identity, location, device state, and application sensitivity to grant or block access to resources before a session is established.
Term 74
A Conditional Access policy is a set of rules in Microsoft Entra ID that automatically grants or blocks access to cloud apps based on signals like user identity, location, device health, and risk level.
Term 75
Configuration Manager is a systems management tool by Microsoft that helps IT administrators deploy software, enforce security policies, and manage devices across an organization.
Term 76
A configuration profile is a set of settings and policies that can be applied remotely to devices to enforce security, compliance, and customization rules.
Term 77
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 78
A convertible laptop is a mobile device that can switch between a traditional laptop form and a tablet form, typically by rotating or detaching its keyboard.
Term 79
Credential Guard is a security feature in Windows that uses virtualization to protect sensitive credentials like passwords and hashes from being stolen by malware.
Term 80
Customer Lockbox is a Microsoft 365 service that gives customers explicit control over granting Microsoft support engineers temporary access to their tenant data for troubleshooting and issue resolution.
Term 81
Data lifecycle management is the process of managing data from its creation to its deletion, ensuring it is stored, used, and disposed of in a way that meets security, compliance, and business needs.
Term 82
Data Loss Prevention (DLP) is a set of tools and processes that help organizations stop sensitive information from being shared, leaked, or stolen, whether accidentally or on purpose.
Term 83
Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.
Term 84
A DC jack is the small, round power port on a laptop or other mobile device where you plug in the power adapter to charge the battery or run the device.
Term 85
A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.
Term 86
Microsoft Defender for Office 365 is a cloud-based email security service that protects organizations against advanced threats like phishing, malware, and business email compromise by scanning emails, attachments, and links in real time.
Term 87
A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.
Term 88
Delete device is the process of removing a device from an organization's management system, typically in Microsoft Intune or Azure AD, which revokes its access to corporate resources and management policies.
Term 89
Delivery Optimization is a Windows feature that uses peer-to-peer sharing and other sources to download updates and apps more efficiently, reducing network strain.
Term 90
A deployment profile is a set of configuration settings and policies that IT administrators apply to enroll and configure devices in an organization, automating the setup process.