update

halkazwini · halkazwini · commit 065f2c7564b7 · 2023-04-03T16:33:35.000-05:00
diff --git a/articles/network-watcher/required-rbac-permissions.md b/articles/network-watcher/required-rbac-permissions.md
@@ -1,21 +1,21 @@
 ---
-title: Azure RBAC permissions required to use capabilities
-titleSuffix: Azure Network Watcher
-description: Learn which Azure role-based access control permissions are required to work with Network Watcher capabilities.
+title: Azure RBAC permissions required to use Azure Network Watcher capabilities
+description: Learn which Azure role-based access control (Azure RBAC) permissions are required to use Azure Network Watcher capabilities.
 services: network-watcher
 author: halkazwini
 ms.service: network-watcher
 ms.topic: conceptual
-ms.date: 10/07/2022
+ms.date: 04/03/2023
 ms.author: halkazwini
+ms.custom: template-concept, engagement-fy23
 ---
 
 # Azure role-based access control permissions required to use Network Watcher capabilities
 
 Azure role-based access control (Azure RBAC) enables you to assign only the specific actions to members of your organization that they require to complete their assigned responsibilities. To use Network Watcher capabilities, the account you log into Azure with, must be assigned to the [Owner](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#owner), [Contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#contributor), or [Network contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#network-contributor) built-in roles, or assigned to a [custom role](../role-based-access-control/custom-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json) that is assigned the actions listed for each Network Watcher capability in the sections that follow. To learn more about Network Watcher's capabilities, see [What is Network Watcher?](network-watcher-monitoring-overview.md).
 
 > [!IMPORTANT]
-> [Network contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#network-contributor) does not cover Microsoft.Storage/* or Microsoft.Compute/* actions listed in Additional actions section.
+> [Network contributor](../role-based-access-control/built-in-roles.md?toc=%2fazure%2fnetwork-watcher%2ftoc.json#network-contributor) does not cover Microsoft.Storage/* or Microsoft.Compute/* actions listed in [Additional actions](#additional-actions) section.
 
 ## Network Watcher
 
