Glossary
| Term | Description |
|---|---|
| Azure Marketplace | An online store that contains thousands of IT software applications and services built by industry-leading technology companies. |
| Azure Tenant | A reserved Entra ID service instance that an organization receives and owns once it signs up for a Microsoft cloud service such as Azure, Microsoft Intune, or Microsoft 365. |
| App Service | An HTTP-based service for hosting web applications, REST APIs, and mobile back ends. |
| Client ID | The unique Application (client) ID assigned to your app by Entra ID when the app was registered. |
| Client Secret | A secret known only to your application and the authorization server. It protects your resources by only granting tokens to authorized requestors. |
| JIT Access | A fundamental security practice where the privilege granted to access applications or systems is limited to predetermined periods of time, on an as-needed basis. |
| KeyVault | A cloud service for securely storing and accessing secrets. |
| Microsoft Graph API | An intermediary service (or broker) that provides a single programmatic interface to connect multiple Microsoft Graph security providers (also called security providers or providers). |
| Service Principal | The local representation of an application object in a single tenant or directory. It functions as the identity of the application instance. Service principals define who can access the application, and what resources the application can access. |
| Subscription ID | A globally unique identifier (GUID) that uniquely identifies your subscription to use Azure services. |
| Tenant ID | A globally unique identifier (GUID) that is different than your organization name or domain. |
| VNet | The fundamental building block for your private network in Azure. |