Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 14

Acronym study

SC-900 Acronyms — Part 14 of 29

Terms 391–420 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 13Part 14 of 29Part 15 →

Term 391

Intune

Microsoft Intune is a cloud-based service that helps organizations manage their users' devices and applications, ensuring security and compliance without needing to own or control the physical hardware.

Full entry →
Full Intune glossary entry →

Term 392

IOA

IOA (Indicator of Attack) is a security concept that focuses on detecting the intent and sequence of actions leading up to a cyber attack, rather than just the artifacts left behind after a breach.

Full entry →
Full IOA glossary entry →

Term 393

IOC

IOC stands for Indicator of Compromise, which is forensic evidence that a system has been breached or infected by malware.

Full entry →
Full IOC glossary entry →

Term 394

IoT

IoT (Internet of Things) is a network of physical devices embedded with sensors and software to connect and exchange data over the internet.

Full entry →
Full IoT glossary entry →

Term 395

IP helper address

A Cisco IOS command that forwards broadcast traffic from one subnet to a specific server on another subnet, allowing devices to obtain IP configuration or other services without needing a router or server on their local network.

Full entry →
Full IP helper address glossary entry →

Term 396

IP Source Guard

IP Source Guard is a network security feature that blocks IP address spoofing by verifying that each packet's source IP address matches an authorized binding assigned to that switch port.

Full entry →
Full IP Source Guard glossary entry →

Term 397

IPS

An Intrusion Prevention System (IPS) is a network security device that monitors traffic in real time and automatically blocks threats before they reach your systems.

Full entry →
Full IPS glossary entry →

Term 398

IPsec

IPsec is a suite of protocols used to secure Internet Protocol (IP) communications by encrypting and authenticating each IP packet in a data stream.

Full entry →
Full IPsec glossary entry →

Term 399

iptables

iptables is a command-line firewall utility in Linux that uses rules to allow or block network traffic based on packet attributes like source IP, destination port, or protocol.

Full entry →
Full iptables glossary entry →

Term 400

ISO 27001

ISO 27001 is an international standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).

Full entry →
Full ISO 27001 glossary entry →

Term 401

Job rotation

Job rotation is a security governance practice where employees periodically switch roles or responsibilities to reduce risk, prevent fraud, and ensure organizational resilience.

Full entry →
Full Job rotation glossary entry →

Term 402

Just-enough access

Just-enough access is an identity and access management principle that grants users only the minimum permissions required to perform their specific job tasks, reducing security risks.

Full entry →
Full Just-enough access glossary entry →

Term 403

Just-in-time access

Just-in-time access is a security method that grants users elevated permissions only for a limited time exactly when they need them, then automatically removes those permissions.

Full entry →
Full Just-in-time access glossary entry →

Term 404

JWT

A JSON Web Token (JWT) is a compact, self-contained token used to securely transmit information between parties as a JSON object.

Full entry →
Full JWT glossary entry →

Term 405

Kerberoasting

Kerberoasting is an attack where a hacker steals service account password hashes from Active Directory to crack them offline and gain unauthorized access.

Full entry →
Full Kerberoasting glossary entry →

Term 406

Kerberos

Kerberos is a network authentication protocol that uses tickets and symmetric-key cryptography to verify the identity of users and services in a secure, non-repudiable way.

Full entry →
Full Kerberos glossary entry →

Term 407

Key pair

A key pair is a set of two cryptographic keys—a public key and a private key—used together to encrypt and decrypt data or to create and verify digital signatures.

Full entry →
Full Key pair glossary entry →

Term 408

Keylogger

A keylogger is a type of surveillance software or hardware that records every keystroke you type on your keyboard, often used without your knowledge to steal passwords and other sensitive information.

Full entry →
Full Keylogger glossary entry →

Term 409

Kill chain

A kill chain is a step-by-step model that describes the stages of a cyberattack, from initial reconnaissance to the final objective, helping defenders understand and disrupt each phase.

Full entry →
Full Kill chain glossary entry →

Term 410

KMS

KMS (Key Management Service) is a Microsoft technology that automates volume licensing activation for Windows and Office products within an organization's network.

Full entry →
Full KMS glossary entry →

Term 411

KMS encryption

KMS encryption is a managed service that creates, stores, and controls cryptographic keys used to encrypt data in the cloud.

Full entry →
Full KMS encryption glossary entry →

Term 412

known_hosts

A file used by SSH to store the public keys of remote servers, allowing the client to verify the server's identity and prevent man-in-the-middle attacks.

Full entry →
Full known_hosts glossary entry →

Term 413

Kubernetes RBAC

Kubernetes RBAC is a security mechanism that controls who can access and perform actions on resources in a Kubernetes cluster based on their role.

Full entry →
Full Kubernetes RBAC glossary entry →

Term 414

Kubernetes security

Kubernetes security is the practice of protecting containerized applications, the Kubernetes cluster itself, and the underlying infrastructure from unauthorized access, data breaches, and system vulnerabilities.

Full entry →
Full Kubernetes security glossary entry →

Term 415

Labels

Labels are descriptive text or tags attached to IT resources to organize, identify, and manage them based on attributes like purpose, environment, or owner.

Full entry →
Full Labels glossary entry →

Term 416

Latency routing

Latency routing is a DNS-based traffic management method that directs user requests to the server location which can provide the lowest network latency for that specific user.

Full entry →
Full Latency routing glossary entry →

Term 417

Lateral movement

Lateral movement is the technique attackers use to move through a network from one compromised system to another, seeking sensitive data or higher privileges.

Full entry →
Full Lateral movement glossary entry →

Term 418

LDAP

LDAP is a protocol used to access and manage directory information over a network, such as user accounts and permissions.

Full entry →
Full LDAP glossary entry →

Term 419

LDAPS

LDAPS is a secure version of LDAP that encrypts all directory service communications using SSL or TLS.

Full entry →
Full LDAPS glossary entry →

Term 420

LDAPS

LDAPS encrypts LDAP traffic using SSL/TLS to secure directory queries and authentication over a network.

Full entry →
Full LDAPS glossary entry →
← Part 13Part 15 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14currentPart 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→