# Naming convention # General Concept ### Structure In order to be able to standardize environments, naming is incredibly important. To provide a similar experience for admin users and automation this structure can be followed. It should be as compliant with the Microsoft recommendations as possible. Abbreviations are based on Microsoft best practices: [Abbreviation recommendations for Azure resources - Cloud Adoption Framework | Microsoft Learn](https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/resource-abbreviations) The following contents must be included in the name of an entity: - Object entity (Microsoft Entra ID Group, Intune Configuration Profile, Microsoft Entra ID Administrative Unit, AD Group, etc.) - Affected Technology (Azure Virtual Desktop, Cloud PC, Modern Workplace, etc.) - CompanyTag(ELB, PRD, DEV, ALL, etc.) - Object type (USER, DEVICE, PERMISSION, ALL, etc.) - Description of Environment in Pascal Case-Convention (I am doing something -> IAmDoingSomething) - Production status (PROD, NONPROD, TODELETE, etc.) - (Location) Hyphen can be used to separate the entities. #### Basic concept <Entity>-<Affected Technology>-<CompanyTag>-<Object>-<Description>-<Status>
**Tag Name** **Description** **Examplee**
**Entity** What is the object? ST, RB, CAP, CAR
**Affected Technology** Which technology is affected? MW, CVD, AVD, CPC, WIN, INT, MEID, MFT, RB, SPO, EXO, TVW, ALL
**Company Tag** Which scope or Company is affected? LNC, XYZ, ALL
**Object** Which objects are affected? USER, DEVICE, GROUP, ROLE, PERMISSION, INTUNE, ALL
**Description** What is the purpose? Short description in Pascal Case
**Status** How is this object used? PROD, NONPROD, DELETED
**Location** In which region or location is the entity stored / created? WE, CH, F3
**For example:** MEID-WIN-ALL-USER-IamDoingSomething-PROD # Summary of abbreviations ### Abbreviations for naming convention This table represents a lot of common usecases and the standardised abbreviations.
**Abbreviation****Meaning****Category**
MEIDMicrosoft Entra IDEntity, Affected Technology
AAAutomation AccountEntity
AAPAzure App Application (App Registration)Entity
ACPAccount Protection PolicyEntity
ADATActive Directory Attribute SchemaEntity
ADCDActive Directory Child DomainEntity
ADCLActive Directory Class SchemaEntity
ADDGActive Directory Distribution GroupEntity
ADEAActive Directory External AccountEntity
ADFAActive Directory Functional AccountEntity
ADFPActive Directory Federation PartyEntity
ADSAActive Directory Service AccountEntity
ADSGActive Directory Security GroupEntity
ADSIActive Directory SiteEntity
ADSRVActive Directory ServerEntity
ADTAActive Directory Test AccountEntity
ADUAdministrative UnitEntity
ADUSRActive Directory UserEntity
ALLAll ObjectsGeneral
ANCAzure Network ConnectionEntity
APGApplication GroupEntity
AVDAzure Virtual DesktopEntity, Affected Technology
CAConditional AccessEntity
CAPClient AppEntity
CARCustom Azure RoleEntity
CERTAzure Runbook CertificateEntity
CFPConfiguration ProfileEntity
CGRConnection GroupEntity
CIMCloud PC Custom ImageEntity
CLPClaim PolicyEntity
CLSClient SecretEntity
CPCCloud PCEntity
CPPCompliance PolicyEntity
CVDCitrix Virtual DesktopEntity
DPRDeployment ProfileEntity
DSCDevice ScriptEntity
ESPEnrollment Service ProfileEntity
FIFilterEntity
FKEYFunction KeyEntity
FUNCAzure FunctionEntity
GPOGroup Policy ObjectEntity
GRTGroupTagEntity
HPHost PoolEntity
IAPIntune AppEntity
INTIntuneAffected Technology
IRAIntune Role AssignmentEntity
IROIntune RoleEntity
LDSLightweight Directory ServiceEntity
MAIManaged IdentityEntity
MCMachine CatalogEntity
MWModern Workplace (3.0)Entity
PPProvisioning PolicyEntity
PRPCloud PC Provisioning PolicyEntity
PSOPassword Setting ObjectEntity
RBAzure RunbookEntity
RGResource GroupEntity
RSRemediation ScriptEntity
RSCRemediation ScriptEntity
SCEDAzure Runbook ScheduleEntity
SCPScaling PlanEntity
SCTIntune Scope TagEntity
SPService PrincipleEntity
STStorage TableEntity
STTAzure Storage TableEntity
TVGTeamViewer GroupEntity
TVPTeamViewer PolicyEntity
TVWTeamViewerAffected Technology
UPUpdate PolicyEntity
USECloud PC User SettingsEntity
VARAzure Runbook VariableEntity
WINWindows DevicesAffected Technology
WSPAVD WorkspacesEntity
# Namings specific to technology This technology specifc naming convention was created to have a standardised naming solution. ### Microsoft Entra ID #### Group MEID-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: MEID-WIN-ALL-USER-IAmDoingSomething-NONPROD #### AllUsers Group MEID-<Technology>-<CompanyTag>-USER-AllCompanyUsers-<Status> Example: MEID-ALL-LNC-USER-CompanyAllUsers-PROD #### AllAdmins Group MEID-<Technology>-<CompanyTag>-USER-AllAdminAccounts-<Status> Example: MEID-WIN-LNC-USER-CompanyAllAdmins-PROD #### Conditional Access CA-<Technology>-<CompanyTag>-SETTING-<Description>-<Status> Example: CA-WIN-ALL-SETTING-IamDoingSomething-PROD #### Custom Azure Rolle CAR-MEID-ALL-ROLE-<Description>-<Status> Example: CAR-MEID-ALL-ROLE-CompanyReader-PROD #### Administrative Unit ADU-<Technology>-<CompanyTag>-GROUPS-<Description>-<Status> Example: ADU-WIN-LNC-GROUPS-Role01-PROD #### App (Registration) APR-<Technology>-<CompanyTag>-PERMISSION-<Description>-<Status> Example: APR-RB-LNC-PERMISSION-CleanUpMEIDDevices-PROD #### Service Principal SP-<Technology>-<CompanyTag>-PERMISSION-<Description>-<Status> Example: SP-SPO-LNC-PERMISSION-SiteXYZ-PROD #### Client Secret CLS-<Technology>-<CompanyTag>-SECRET-<Description>-<Status> #### Connector Group CGR-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Connector <FQDNServer> #### Claim Policy CLP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Managed Identity MAI-<Technology>-<CompanyTag>-PERMISSION-<Description>-<Status> Example: MAI-FUNC-LNC-PERMISSION-CreateProfile-PROD #### Custom Role CAR-<Technology>-<CompanyTag>-SETTING-<Description>-<Status> CAR-MEID-ALL-SETTING-<Description>-<Status> #### Access Package APA-<Technology>-<CompanyTag>-ACCESS-<Description>-<Status> Example: APA-MEID-LNC-ACCESS-App1-NONPROD #### Log Analytics Workspace LAW-<Technology>-<CompanyTag>-ACCESS-<Description>-<Status> Example: LAW-MEID-LNC-LOG-EntraIDLogs-PROD ### Intune #### Deployment Profile DEP-<Technology>-<CompanyTag>-DEVICE-<Description>-<Status> Example: DEP-WIN-LNC-DEVICE-CompanyProfile-PROD #### Devicename <Technology>-<CompanyTag>-<Serialnumber> Zum Example: MWP-LNC-4CE0460D0G-> Modern Workplace (physical) CPC-LNC-4CE0460D0G-> Cloud PC Workplace AVD-LNC-4CE0460D0G-> Azure Virtual Desktop Workplace CVD-LNC-4CE0460D0G-> Citrix Virtual Desktop Workplace #### GroupTag GRT-<Technology>-<CompanyTag>-DEVICE-<Description>-<Status> Example: GRT-WIN-LNC-DEVICE-CompanyDevice-PROD #### Enrollment Service Profile ESP-<Technology>-<CompanyTag>-DEVICE-<Description>-<Status> Example: ESP-WIN-LNC-DEVICE-CompanyEnrollment-PROD #### Filter FI-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: FI-CPC-LNC-DEVICE-CompanyDevices-PROD #### Configuration Profile CFP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: CFP-WIN-ALL-DEVICE-SecurityBaselines-PROD #### Compliance Policy CPP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: CPP-WIN-LNC-USER-BitlockerActivation-NONPROD #### Device Script DSC-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: DSC-WIN-ALL-DEVICE-InstallFollowMePrint-PROD #### Remediation Script RSC-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: RSC-WIN-LNC-PS1-EnableSecureBoot-NONPROD #### Update Policy UP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: UPP-WIN-ALL-DEVICE-Ring1CIT -PROD #### Scope Tag SCT-<Technology>-<CompanyTag>-INTUNE-<Description>-<Status> Example: SCT-INT-LNC-INTUNE-CompanyObjects-PROD #### Custom Intune Rollen IRO-<Technology>-<CompanyTag>-ROLE-<Description>-<Status> Example: IRO-CVD-LNC-ROLE-LimitedIntuneReader-PROD #### Intune Role Assignment IRA-INT-<CompanyTag>-ROLE-<RollenName>-<STATUS> Example: IRA-INT-LNC-ROLE-CompanyReader-PROD #### Account Protection Policy ACP-<Technology>-<CompanyTag>-DEVICE-<Serialnumber>-<Status> Example: ACP-WIN-LNC-DEVICE-5CG9272S38-PROD #### Intune Apps IAP-<Technology>-<CompanyTag>-APP-<AppManufacturer>.<AppName>-<Status> Example: IAP-ALL-LNC-APP-Microsoft.PowerToys-PROD #### Endpoint Privilege Management Profile EPM-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: EPM-CPC-LNC-DEVICE-AutoDeskApp-NONPROD ### TeamViewer #### TeamViewer Policy TVP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: TVP-ALL-ALL-DEVICE-AllCompanyDevices-PROD #### TeamViewer Device Group TVG-<Technology>-<CompanyTag>-DEVICE-<Description>-<Status> Example: TVG-ALL-LNC-DEVICE-AllCompanyDevices-PROD ### Cloud PC #### Provisioning Policy PRP-CPC-<CompanyTag>-USER-<Description>-<Status> Example: PRP-CPC-LNC-USER-CloudPCAdvanced-PROD #### Azure Network Connections Policy ANC-CPC-<CompanyTag>-DEVICE-<Description>-<Status> Example: ANC-CPC-LNC-DEVICE-CloudPCStandardAdmin-PROD #### User Settings USE-CPC-<CompanyTag>-USER-<Description>-<Status> Example: USS-CPC-LNC-USER-RestorePointFrequency-PROD #### Custom Image CIM-CPC-<CompanyTag>-IMAGE-<Description>-<Status> Example: CIM-CPC-LNC-IMAGE-RestorePointFrequency-PROD ### Azure Virtual Desktop #### MEID App Groups MEID-AVD-<CompanyTag>-USER-<Description>-<Status> Example: MEID-AVD-LNC-USER-APP.Microsoft.Office-PROD #### Application Groups APG-AVD-<CompanyTag>-APP-<Description>-<Status>-<Location> Example: APG-AVD-LNC-APP-Messerli.BauAD-PROD-WE #### Host Pools HPO-AVD-<CompanyTag>-APPGROUP-<Description>-<Status>-<Location> Example: HP-AVD-IFB-APPGROUP-AppPool-PROD-WE #### Workspaces WSP-AVD-<CompanyTag>-APPGROUP-<Description>-<Status>-<Location> Example: WS-AVD-ELB-APPGROUP-<Description>-PROD-WE #### Scaling Plan SCP-AVD-<CompanyTag>-HOSTPOOL-<Description>-<Status>-<Location> SCP-AVD-LNC-HOSTPOOL-<Description>-PROD-WE ### Citrix Virtual Desktop #### GPO GPO-CVD-<CompanyTag>-DEVICE-<Description>-<Status> Example: GPO-CVD-LNC-DEVICE-IntuneJoin-PROD #### APP Group ADG-CVD-<CompanyTag>-<Object>-<AppManufacturer>.<AppName>-<Status> Example: ADG-CVD-ALL-USER-APP.Microsoft.PowerToys-PROD #### Machine Catalog MAC-CVD-<CompanyTag>-DEVICE-<Description>-<Status> Example: MC-CVD-LNC-DEVICE-Sidoun-PROD ### Active Directory #### Security Groups ADSG-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Distribution Group ADDG-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Federation Group ADFG-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Federation Party ADFP-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Service Account ADSA-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Functional Account ADFA-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Test Account ADTA-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Password Setting Object PSO-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Child Domain ADCD-<Number>.net #### Parent Domain ADPD-<Number>.net #### LDS Instance LDS-<Number>.net #### AD Site ADSI-<Technology>-<CompanyTag>-<Object>-<City<<Street><Number>-<Status> #### Password Setting Object PSO-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Class Schema ADCL-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> #### Attribute Schema ADAT-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> ### Group Policy Management #### GPO Client Computers GPO-CVD-<CompanyTag>-SETTING-<Description>-<Status> Beispiel: GPO-CVD-LNC-SETTING-<Description>-<Status> #### GPO External Accounts GPO-ADEA-<CompanyTag>-SETTING-<Description>-<Status> #### GPO Functional Accounts GPO-ADFA-<CompanyTag>-SETTING-<Description>-<Status> #### GPO Service Accounts GPO-ADSA-<CompanyTag>-SETTING-<Description>-<Status> #### GPO Test Accounts GPO-ADTA-<CompanyTag>-SETTING-<Description>-<Status> #### GPO Servers GPO-ADSRV-<CompanyTag>-SETTING-<Description>-<Status> #### GPO Users GPO-ADUSR-<CompanyTag>-SETTING-<Description>-<Status> ### Azure Function App #### Function FUNC-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> Example: FUNC-WIN-ALL-PS1-GetStorageTableContent-PROD-WE #### Function Key FKEY-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> Example: FKEY-RS-ALL-KEY-SetLanguageByUPN-PROD-WE ### Azure Automation Account #### Automation Account AA-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> AA-INT-LNC-RB-IntuneAutomation-PROD-WE #### Runbook RB-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> RB-EXO-LNC-PS1-CreateDomainByCompany-PROD-WE #### Secret CERT-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> CERT-RB-LNC-CERT-CleanUpMEIDDevices-PROD-WE #### Variable VAR-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> VAR-RB-LNC-CLIENTID-CleanUpMEIDDevices-PROD-WE #### Schedule SCED-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> SCED-RB-LNC-DAILY-CheckLicenseCount-PROD-WE ### Azure Storage #### Azure Storage Table STT-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> Example: STT-ALL-ALL--WPSMasterTable-PROD-WE ### Azure Resources #### Subscription SUB-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> #### Resourcegroup RG-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> #### Virtual Machines VM-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: VM-WIN-LNC-AppPackaging-NONPROD-CHN #### Virtual Network VNET-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: VNET-SUBNET-LNC-TerraformTesting-NONPROD-WE #### Subnet
SUBNET-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: SUBNET-NSG-LNC-TerraformTesting-NONPROD-WE
#### Network Security Group NSG-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: NSG-NIC-LNC-TerraformTesting-NONPROD-WE #### Network Interfaces NIC-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: NIC-VM-LNC-TerraformTesting-NONPROD-WE #### Public IP PIP-<Technology>-<CompanyTag>-<Description>-<Status>-<Location> Example: PIP-IP-LNC-TerraformTesting-NONPROD-WE #### Disk
DSK-<Technology>-<CompanyTag>-<Description>-<Status>-<Location>
Example: DSK-VM-LNC-TerraformTesting-NONPROD-WE
### VMWare ESXi #### VCenter Compute Node VMHOST-<Technology>-<CompanyTag>-<Object>-<Description>-<Status>-<Location> Example: VMHOST-ESXI-LNC-VMS-PackagingVirtualizer-NONPROD-F3 ### Identity Access Management ### Exchange Online #### Mail enabled security group MESG-<Technology>-<CompanyTag>-<Object>-<Description>-<Status> Example: MESG-AAP-ALL-USER-CleanUpMEIDGuestUser-PROD