refining table

HeidiSteen · HeidiSteen · commit c29036e2f18a · 2024-10-31T09:20:01.000-07:00
diff --git a/articles/search/search-security-enable-roles.md b/articles/search/search-security-enable-roles.md
@@ -14,7 +14,7 @@ ms.date: 10/30/2024
 
 # Enable or disable role-based access control in Azure AI Search
 
-Azure AI Search uses [key-based authentication](search-security-api-keys.md) by default, but it fully supports Microsoft Entra ID authentication and authorization for all control plane and data plane operations through role-based access controls.
+Azure AI Search uses [key-based authentication](search-security-api-keys.md) by default, but it fully supports Microsoft Entra ID authentication and authorization for all control plane and data plane operations through Azure role-based access control (RBAC).
 
 Before you can assign roles for authorized data plane access to Azure AI Search, you must enable role-based access control on your search service. Roles for service administration (control plane) are built in and can't be enabled or disabled. 
 
diff --git a/articles/search/search-security-rbac.md b/articles/search/search-security-rbac.md
@@ -83,23 +83,25 @@ Combine these roles to get sufficient permissions for your use case.
 |-------------|--------------------------|-------------------------------|----------------------------|-------------------|--------|
 |View the resource in Azure portal |❌|❌|✅|✅|✅|
 |View resource properties/metrics/endpoint |❌|❌|✅|✅|✅|
-|View quotas and service statistics |❌|❌|✅|✅|❌|
 |List all objects on the resource |❌|❌|✅|✅|✅|
+|Access quotas and service statistics |❌|❌|✅|✅|❌|
 |Read/query an index |✅|❌|❌|❌|❌|
 |Upload data for indexing |❌|✅|❌|❌|❌|
 |Create or edit indexes/aliases |❌|❌|✅|✅|❌|
 |Create, edit and run indexers/data sources/skillsets |❌|❌|✅|✅|❌|
 |Create or edit synonym maps |❌|❌|✅|✅|❌|
+|Create or edit debug sessions |❌|❌|✅|✅|❌|
 |Create or manage deployments |❌|❌|✅|✅|❌|
 |Create or configure Azure AI Search resources |❌|❌|✅|✅|❌|
-|View/Copy/Regenerate keys under Keys |❌|❌|✅|❌|❌|
-|Set authentication options |❌|❌|❌|✅|❌|
-|Configure private connections |❌|❌|❌|✅|❌|
-|Configure network security |❌|❌|❌|✅|❌|
+|View/Copy/Regenerate keys under Keys |❌|❌|✅|✅|❌|
+|View roles/policies/definitions |❌|❌|✅|✅|❌|
+|Set authentication options |❌|❌|✅|✅|❌|
+|Configure private connections |❌|❌|✅|✅|❌|
+|Configure network security |❌|❌|✅|✅|❌|
 
 Owners and Contributors grant the same permissions, except that only Owners can assign roles.
 
-Owners and Contributors can also create, read, update, and delete objects in the Azure portal *if API keys are enabled*. The portal uses API keys on internal calls to data plane APIs. In an Azure RBAC-only configuration, Owner and Contributor can't manage objects on the data plane.
+Owners and Contributors can create, read, update, and delete objects in the Azure portal *if API keys are enabled*. The portal uses API keys on internal calls to data plane APIs. In an Azure RBAC-only configuration, Owner and Contributor can't manage objects on the data plane.
 
 ## Assign roles
 
