Term 61
Compliance state
Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.
Acronym study
Terms 61–90 of 324 MS-102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 61
Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.
Term 62
Conditional access is a security framework that evaluates signals like user location, device health, and risk level to grant or block access to resources in real time.
Term 63
Conditional Access integration is a security framework that evaluates signals such as user identity, location, device state, and application sensitivity to grant or block access to resources before a session is established.
Term 64
A Conditional Access policy is a set of rules in Microsoft Entra ID that automatically grants or blocks access to cloud apps based on signals like user identity, location, device health, and risk level.
Term 65
Configuration Manager is a systems management tool by Microsoft that helps IT administrators deploy software, enforce security policies, and manage devices across an organization.
Term 66
A configuration profile is a set of settings and policies that can be applied remotely to devices to enforce security, compliance, and customization rules.
Term 67
A Connector is a service or tool that bridges two applications or systems to allow them to exchange data and perform automated tasks without manual intervention.
Term 68
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 69
Copilot for Microsoft 365 is an AI assistant integrated into Microsoft 365 apps that helps users create documents, analyze data, summarize communications, and automate tasks using natural language prompts.
Term 70
A custom domain is a personalized internet address (like contoso.com) that you can use with cloud services instead of the default domain provided by the service provider.
Term 71
Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.
Term 72
A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.
Term 73
Microsoft Defender for Office 365 is a cloud-based email security service that protects organizations against advanced threats like phishing, malware, and business email compromise by scanning emails, attachments, and links in real time.
Term 74
A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.
Term 75
A deployment profile is a set of configuration settings and policies that IT administrators apply to enroll and configure devices in an organization, automating the setup process.
Term 76
A classification that groups devices in Microsoft Intune by their platform and management method, such as Windows, iOS, or Android, to apply targeted policies and configurations.
Term 77
Device compliance is the process of ensuring that a device meets an organization's security and configuration policies before it can access network resources.
Term 78
Device configuration is the process of setting up and customizing the operating system, security policies, applications, and network settings on a device so it can securely connect to and function within an organization's IT environment.
Term 79
Device enrollment is the process of registering a device with a management system so that it can receive policies, apps, and security settings under organizational control.
Term 80
A device group is a logical collection of devices managed together for applying policies, configurations, and updates in an enterprise IT environment.
Term 81
Device registration is the process of linking a device to a management system, such as Microsoft Entra ID, to enable controlled access to organizational resources.
Term 82
Device risk is the chance that a computer, phone, or other endpoint could cause a security problem or data leak because it is not properly managed or protected.
Term 83
A digital certificate is an electronic document that verifies the identity of a person, device, or website and enables secure encrypted communication over the internet.
Term 84
Disk encryption is the process of converting data on a storage device into a coded form that can only be read with the correct decryption key, protecting it from unauthorized access.
Term 85
A mail-enabled Active Directory security group used to send email notifications to multiple recipients simultaneously without granting access to resources.
Term 86
A DLP policy is a set of rules that an organization uses to prevent sensitive data from being lost, stolen, or accidentally exposed, whether it is in use, in motion, or at rest.
Term 87
A DNS record is a set of instructions stored on a DNS server that tells clients how to interact with a domain, most commonly by mapping a human-readable domain name to an IP address.
Term 88
Domain verification is the process of proving that you own or control a specific domain name so that you can use it with a service like Microsoft 365.
Term 89
A Dynamic device group is an Azure AD / Microsoft Entra ID feature that automatically adds or removes devices based on membership rules you define.
Term 90
A dynamic group is a group in Microsoft Entra ID (Azure AD) whose membership is automatically updated based on user or device attributes, rather than being manually assigned.