Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 18

Acronym study

SC-900 Acronyms — Part 18 of 29

Terms 511–540 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 17Part 18 of 29Part 19 →

Term 511

Operational intelligence

Operational intelligence is the real-time analysis of IT system data to detect patterns, anomalies, and threats as they happen, enabling immediate action to protect systems and maintain performance.

Full entry →
Full Operational intelligence glossary entry →

Term 512

Operational Technology

Operational Technology (OT) refers to the hardware and software systems that monitor, control, and manage physical devices, processes, and infrastructure in industries like manufacturing, energy, and utilities.

Full entry →
Full Operational Technology glossary entry →

Term 513

Organization

An Organization is a top-level container in Google Cloud that represents your company or entities and serves as the root node for all your cloud resources, policies, and access control.

Full entry →
Full Organization glossary entry →

Term 514

Origin access control

Origin access control is a security mechanism that restricts access to a network, system, or resource based on the verified identity or attributes of the requesting entity.

Full entry →
Full Origin access control glossary entry →

Term 515

OSI model

The OSI model is a conceptual framework that standardizes the functions of a telecommunication or computing system into seven distinct layers, from physical hardware to application software.

Full entry →
Full OSI model glossary entry →

Term 516

OT

Operational Technology (OT) is hardware and software that monitors and controls physical devices, processes, and infrastructure in industrial environments.

Full entry →
Full OT glossary entry →

Term 517

Outbound ACL

An Outbound ACL is a set of rules applied to traffic leaving a network interface that decides which packets are allowed to exit and which are blocked.

Full entry →
Full Outbound ACL glossary entry →

Term 518

Outlook

Microsoft Outlook is an email, calendar, and contact management application that is part of the Microsoft 365 suite, used by businesses and individuals to organize communications and schedules.

Full entry →
Full Outlook glossary entry →

Term 519

Outside global

An Outside global address is the publicly routable IP address assigned to a device on the external network (usually the internet) as seen from the perspective of a network device performing Network Address Translation (NAT).

Full entry →
Full Outside global glossary entry →

Term 520

Outside local

Outside local is the IP address that a device on the inside of a private network appears to have from the perspective of hosts located outside the network, typically after Network Address Translation (NAT) has been applied.

Full entry →
Full Outside local glossary entry →

Term 521

OWASP Top 10

The OWASP Top 10 is a regularly updated list of the most critical security risks to web applications, published by the Open Web Application Security Project (OWASP) to help developers and security professionals prioritize and mitigate common vulnerabilities.

Full entry →
Full OWASP Top 10 glossary entry →

Term 522

Owner role

The Owner role is an access control entity that holds full administrative rights over a resource, including the ability to grant or revoke permissions for other users.

Full entry →
Full Owner role glossary entry →

Term 523

Packet capture

Packet capture is the process of intercepting and recording data packets traveling over a computer network for analysis.

Full entry →
Full Packet capture glossary entry →

Term 524

PAM

Privileged Access Management (PAM) is a security framework that controls, monitors, and audits access to critical systems and accounts with elevated permissions.

Full entry →
Full PAM glossary entry →

Term 525

Pass-the-hash

Pass-the-hash is a cyberattack where an attacker captures the hash of a user's password and uses it to authenticate to other systems without ever knowing the actual password.

Full entry →
Full Pass-the-hash glossary entry →

Term 526

Pass-through authentication

Pass-through authentication is a Microsoft Azure Active Directory authentication method that validates user passwords directly against on-premises Active Directory without storing password hashes in the cloud.

Full entry →
Full Pass-through authentication glossary entry →

Term 527

Password hash synchronization

Password hash synchronization is a Microsoft Azure AD Connect feature that synchronizes a hash of a user's on-premises Active Directory password to Azure AD, enabling cloud-based authentication without additional infrastructure.

Full entry →
Full Password hash synchronization glossary entry →

Term 528

Password manager

A password manager is a software application that securely stores and manages login credentials, allowing users to generate, retrieve, and autofill complex passwords without needing to remember each one.

Full entry →
Full Password manager glossary entry →

Term 529

Password policy

A set of rules designed to enhance computer security by encouraging users to create strong, secure passwords and store them properly.

Full entry →
Full Password policy glossary entry →

Term 530

Passwordless authentication

Passwordless authentication is a method of verifying a user's identity without requiring them to enter a password, using alternative factors like biometrics, hardware tokens, or one-time codes.

Full entry →
Full Passwordless authentication glossary entry →

Term 531

PAT

PAT (Port Address Translation) is a method of network address translation that maps multiple private IP addresses to a single public IP address by using different port numbers for each connection.

Full entry →
Full PAT glossary entry →

Term 532

Patch management

Patch management is the process of identifying, acquiring, testing, and deploying software updates (patches) to fix vulnerabilities, bugs, or improve performance in IT systems.

Full entry →
Full Patch management glossary entry →

Term 533

Patch Manager

A Patch Manager is a tool or service that automates the process of finding, downloading, testing, and installing software updates across multiple computers to keep them secure and stable.

Full entry →
Full Patch Manager glossary entry →

Term 534

Payment Card Industry Data Security Standards

A set of security rules that any company that handles credit card payments must follow to protect cardholder data from theft and fraud.

Full entry →
Full Payment Card Industry Data Security Standards glossary entry →

Term 535

PCI DSS

The Payment Card Industry Data Security Standard is a set of security requirements designed to protect credit card data during storage, processing, and transmission.

Full entry →
Full PCI DSS glossary entry →

Term 536

Penetration testing

Penetration testing is a simulated cyberattack on a computer system, network, or application to find security weaknesses before real attackers can exploit them.

Full entry →
Full Penetration testing glossary entry →

Term 537

Permission boundary

A permission boundary is the defined limit that controls which users, processes, or systems can access specific resources in a computing environment.

Full entry →
Full Permission boundary glossary entry →

Term 538

Personal Identification Number

A Personal Identification Number (PIN) is a short numeric code used to verify a user's identity before granting access to a system, device, or account.

Full entry →
Full Personal Identification Number glossary entry →

Term 539

Personal Identity Verification

Personal Identity Verification, or PIV, is a US federal government standard for using smart cards to securely verify a person's identity for access to physical and digital resources.

Full entry →
Full Personal Identity Verification glossary entry →

Term 540

Personally identifiable information

Personally identifiable information (PII) is any data that can be used to identify, contact, or locate a specific individual, either alone or when combined with other information.

Full entry →
Full Personally identifiable information glossary entry →
← Part 17Part 19 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18currentPart 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→