| A | B |
|---|
| Active Directory Federation Services (AD S) | A role that allows administrators to configure SSO for web-based applications across a single organization or multiple organizations without requiring users to remember multiple usernames and passwords, although it is not required. |
| Windows Rights Management Services | is a Microsoft Windows security tool that provides persistent data protection by enforcing data access policies. |
| Claims Statement | is a statement made by a trusted entity about an object, such as a user, that includes identifying the object |
| Claims Provider | is the server that issues claims and authenticates users. |
| Microsoft Intune Company Portal | provides self-service connection point for users to request help and select apps to install. It gives users the access they need to perform self-service tasks, such as adding or removing their computers from Microsoft Intune, selecting applications to install (made available to them by the Administrator), and contacting the technical support administrator |
| Work Folders | allow users to store and access work files on a sync share from multiple devices, including personal computers and devices (including BYODs). Work Folders are for only individual data and do not support sharing files between users. |
| Azure RemoteApp | allows you to connect to Azure cloud services using Remote Desktop Services (RDS) from your corporation on-premises. With Azure RemoteApp, users can securely access applications from different devices. |
| BYOD policy | defines the standards, restrictions and procedures for end users who have authorized access to company data from their personal devices (tablets, laptops, or smartphones). |
| SSO | Single sign-on is a property of access control of multiple related, yet independent, software systems. |
| Sideloading | is a process for installing Windows Store applications without using the Windows Store. |
| TUD | trusted user domain |
| DC | A "Domain Controller" is a server that responds to security authentication requests within a Windows Server domain. |
| Kerberos | is a computer network authentication protocol that allows hosts to prove their identity over a nonsecure network in a secure manner. |
| attribute store | A database, such as Active Directory Domain Services (AD DS), that is used to look up claim values. |
| IaaS | Infrastructure as a service (IaaS) is a form of cloud computing that provides virtualized computing resources over the internet. |
| SaaS | Software as a service - is a software licensing and delivery model in which software is licensed on a subscription basis and is centrally hosted |
| Azure Active Directory (AD) | A cloud-based IaaS that you can use for identity management and access control. |
| BYOD | Bring Your Own Device |
| built-in groups | These default groups are granted specific rights and permissions to get you started. |
| deeplinking | The process of identifying an application in the Windows store that you want to deploy to Windows and a link is then provided to the user that will take him directly to the app in the Windows store. |
