edits

tarTech23 · tarTech23 · commit 06128ab17ea6 · 2025-04-06T17:17:49.000+03:00
diff --git a/articles/defender-for-iot/organizations/how-to-troubleshoot-sensor.md b/articles/defender-for-iot/organizations/how-to-troubleshoot-sensor.md
@@ -247,7 +247,7 @@ When signing into a pre-configured sensor for the first time, you'll need to per
 1. Select **Next**, and your user, and a system-generated password for your OT sensor will then appear.
 
     > [!NOTE]
-    > When you sign in to a sensor for the first time, it's linked to your Azure subscription, which you'll need if you need to recover the password for the *admin* user. For more information, see [Recover privileged access to a sensor](manage-users-sensor.md#recover-privileged-access-to-a-sensor).
+    > When you sign in to a sensor for the first time, it's linked to your Azure subscription, which you need if you need to recover the password for the *admin* user. For more information, see [Recover privileged access to a sensor](manage-users-sensor.md#recover-privileged-access-to-a-sensor).
 
 ## Investigate a lack of traffic
 
@@ -257,7 +257,7 @@ An indicator appears at the top of the console when the sensor recognizes that t
 
 When a new sensor is deployed or a sensor is working slowly or not showing any alerts, you can check system performance.
 
-1. Sign in to the sensor and select **Overview**. Make sure that **PPS** is greater than 0, and that **Devices** are being discovered. 
+1. Sign in to the sensor and select **Overview**. Make sure that **PPS** is greater than 0, and that **Devices** are being discovered.
 1. In the **Data Mining** page, generate a report.
 1. In the **Trends & Statistics** page, create a dashboard.
 1. In the **Alerts** page, check that the alert was created.
@@ -289,7 +289,7 @@ For more information, see:
 
 ## Connect the sensor to NTP
 
-You can configure a standalone sensor and a OT sensor console, with the sensors related to it, to connect to NTP.
+You can configure a standalone sensor and an OT sensor console, with the sensors related to it, to connect to NTP.
 
 > [!TIP]
 > When you're ready to start managing your OT sensor settings at scale, define NTP settings from the Azure portal. Once you apply settings from the Azure portal, settings on the sensor console are read-only. For more information, see [Configure OT sensor settings from the Azure portal (Public preview)](configure-sensor-settings-portal.md).
@@ -319,7 +319,7 @@ For more information on how to clear system data, see [Clear OT sensor data](how
 
 ## Export logs from the sensor console for troubleshooting
 
-For further troubleshooting, you may want to export logs to send to the support team, such as database or operating system logs.
+For further troubleshooting, you might want to export logs to send to the support team, such as database or operating system logs.
 
 **To export log data**:
 
@@ -348,15 +348,19 @@ For further troubleshooting, you may want to export logs to send to the support
 > [!NOTE]
 > Support ticket diagnostics can be downloaded from the sensor console and then uploaded directly to the support team in the Azure portal. For more information on downloading diagnostic logs, see [Download a diagnostics log for support](how-to-troubleshoot-sensor.md#download-a-diagnostics-log-for-support).
 
-## configure a backup server after false positive alert
+## Configure a backup server after false positive alert
 <!-- what should the title be?-->
 
-If a false positive alert is produced the backup server might be misconfiigured. In order to correct this:
+When a false positive alert is produced the backup server might be misconfigured. In confirm the correct settings:
 
 1. In the sensor console, go to **System settings** > **Sensor management** > **Advanced configurations**.
+
 1. Select the **Global** category. Ensure that **is_reduce_backup_malware_enabled=1** (Note: **true** is also an acceptable parameter).
-1. Select the **Vulnerability assessment** category. Ensure **backup_servers** contains the back up server device's IP address.
+
+1. Select the **Vulnerability assessment** category. Ensure **backup_servers** contains the backup server device's IP address.
+
 1. Select the **Ports** category. Ensure that **backup_known_ports** contains the list of port(s) used for the backup server.
+
 1. Select **Save**.
 
 ## Next steps
diff --git a/articles/defender-for-iot/organizations/whats-new.md b/articles/defender-for-iot/organizations/whats-new.md
@@ -2,7 +2,7 @@
 title: What's new in Microsoft Defender for IoT
 description: This article describes new features available in Microsoft Defender for IoT, including both OT and Enterprise IoT networks, and both on-premises and in the Azure portal.
 ms.topic: whats-new
-ms.date: 10/14/2024
+ms.date: 04/08/2025
 ms.custom: enterprise-iot
 ---
 
@@ -22,6 +22,16 @@ Features released earlier than nine months ago are described in the [What's new
 
 The legacy on-premises management console won't be available for download after **January 1st, 2025**. We recommend transitioning to the new architecture using the full spectrum of on-premises and cloud APIs before this date. For more information, see [on-premises management console retirement](ot-deploy/on-premises-management-console-retirement.md).
 
+## April 2025
+
+|Service area  |Updates  |
+|---------|---------|
+| **OT networks** | - [Configure a backup server after false positive alert](#configure-a-backup-server-after-false-positive-alert)<br> |
+
+### Configure a backup server after false positive alert
+
+When a false positive alert is produced, the backup server might need to be reconfigured. For more information, see [configure a backup server after false positive alert](how-to-troubleshoot-sensor.md#configure-a-backup-server-after-false-positive-alert).
+
 ## March 2025
 
 |Service area  |Updates  |
@@ -32,8 +42,6 @@ The legacy on-premises management console won't be available for download after
 
 The "Unauthorized Internet Connectivity Detected" alert details now includes the URL from which the suspicious connection initiated, helping SOC analysts assess and respond to incidents more effectively.
 
-:::image type="content" source="media/whats-new/url-parameters.png" alt-text="Screenshot of URL information in alert details." lightbox="media/whats-new/url-parameters.png":::
-
 ### Improved RDP brute force detection
 
 The “Excessive Number of Sessions” alert now includes support by default to a remote desktop protocol (RDP) port, enhancing visibility into potential brute-force attacks and unauthorized access attempts.
