Term 31
Azure Policy
Azure Policy is a service in Microsoft Azure that lets you create, assign, and manage rules to ensure your resources stay compliant with your company standards and service-level agreements.
Acronym study
Terms 31–60 of 324 MS-102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 31
Azure Policy is a service in Microsoft Azure that lets you create, assign, and manage rules to ensure your resources stay compliant with your company standards and service-level agreements.
Term 32
A cloud-based virtual private network gateway in Microsoft Azure that securely connects on-premises networks to Azure virtual networks over encrypted tunnels.
Term 33
A backup policy is a documented set of rules that defines what data to back up, how often, where to store it, and how long to keep it, ensuring data can be restored after loss.
Term 34
A BitLocker policy is a set of configuration rules that IT administrators use to manage how BitLocker Drive Encryption is enabled, enforced, and recovered on Windows devices within an organization.
Term 35
A branch policy is a set of rules and conditions enforced on a Git branch to control how code changes are proposed, reviewed, and merged, ensuring code quality and protecting critical branches.
Term 36
Broken access control is a security vulnerability that occurs when an application does not properly enforce restrictions on what authenticated users are allowed to do, allowing them to access unauthorized data or perform unauthorized actions.
Term 37
A trusted entity that issues digital certificates to verify the identity of websites, devices, and users in secure online communications.
Term 38
Certificate pinning is a security technique that associates a specific digital certificate or public key with a particular server, so that an app or system will only trust that exact certificate, rejecting any others even if they are issued by a trusted certificate authority.
Term 39
A Certificate Signing Request (CSR) is a specially formatted message sent by an applicant to a Certificate Authority (CA) to request a digital certificate that binds their public key to their identity.
Term 40
A certificate warning is a security alert a web browser or application displays when it cannot fully trust the digital certificate presented by a website or service.
Term 41
Cloud Audit Logs are a record of actions taken by users, services, and resources inside a cloud environment, capturing who did what, when, and from where.
Term 42
Cloud IAM (Identity and Access Management) is a framework of policies and technologies that ensures the right individuals have appropriate access to cloud resources at the right time and for the right reasons.
Term 43
A Cloud management gateway is a network appliance or software service that securely connects devices on a local network to a cloud-based management platform, enabling remote monitoring, configuration, and updates.
Term 44
Cloud productivity refers to the use of internet-based software applications and services that enable individuals and teams to create, collaborate, manage, and share work from anywhere, on any device, without requiring local installation or maintenance of the underlying infrastructure.
Term 45
Cloud security architecture is the design and organization of security controls, policies, and technologies used to protect data, applications, and infrastructure in a cloud computing environment.
Term 46
Cloud security posture management is the continuous process of monitoring cloud environments to detect misconfigurations, compliance violations, and security risks, and automatically remediating them to maintain a strong security posture.
Term 47
Cloud sync is the process of automatically keeping data files or configurations consistent between a local device and a remote cloud storage service by synchronizing changes made on either side.
Term 48
A Cloud VPN is a service that securely connects your private network to a cloud provider's network over the public internet using encryption and authentication.
Term 49
A cloud-only identity is a user account that exists solely in a cloud-based identity provider and has no counterpart in any on-premises directory service.
Term 50
CMG (Cloud Management Gateway) is a Microsoft Intune component that lets you manage internet-based devices without a direct connection to your on-premises infrastructure.
Term 51
Co-management is a device management strategy that lets organizations simultaneously manage Windows 10 and later devices using both Configuration Manager (on-premises) and Microsoft Intune (cloud), enabling a gradual transition to modern management.
Term 52
Collaboration in Microsoft 365 refers to the integrated tools and services that enable people to work together in real time, share information, and coordinate tasks from anywhere.
Term 53
Communication Compliance is the set of policies, tools, and practices used by organizations to monitor, capture, and review electronic communications in order to meet regulatory, legal, and internal governance requirements.
Term 54
A Communication site in Microsoft 365 is a SharePoint-based intranet site designed to broadcast information, news, and updates broadly across an organization.
Term 55
Company Portal is a Microsoft app that gives employees a secure, self-service way to enroll devices, access company apps, and manage work resources from any device.
Term 56
Compartmented security mode is a multilevel security (MLS) system where subjects are cleared for all sensitivity levels but only have access to specific compartments of information based on their need-to-know.
Term 57
Compliance is the process of ensuring that an organization follows laws, regulations, standards, and internal policies that apply to its operations and data handling.
Term 58
A Compliance Manager is a tool or service that helps organizations assess, monitor, and improve their adherence to regulatory standards, industry frameworks, and internal policies.
Term 59
A compliance policy is a set of rules that ensures devices, users, and applications meet an organization's security and regulatory requirements before they can access corporate resources.
Term 60
A compliance scan is an automated security assessment that checks systems, networks, and applications against a defined set of regulatory or organizational standards to verify adherence to required policies.