Merge pull request #211756 from WilliamDAssafMSFT/patch-3

Update how-to-create-a-workspace-with-data-exfiltration-protection.md

Author: v-regandowner

articles/synapse-analytics/security/how-to-create-a-workspace-with-data-exfiltration-protection.md

@@ -5,16 +5,17 @@ author: WilliamDAssafMSFT
 ms.service: synapse-analytics 
 ms.topic: how-to
 ms.subservice: security 
-ms.date: 12/01/2020 
+ms.date: 09/19/2022 
 ms.author: wiassaf
 ms.reviewer: sngun
 ---
 
 # Create a workspace with data exfiltration protection enabled
+
 This article describes how to create a workspace with data exfiltration protection enabled and how to manage the approved Azure AD tenants for this workspace.
 
->[!Note]
->You cannot change the workspace configuration for managed virtual network and data exfiltration protection after the workspace is created.
+> [!Note]
+> You cannot change the workspace configuration for managed virtual network and data exfiltration protection after the workspace is created.
 
 ## Prerequisites
 - Permissions to create a workspace resource in Azure.
@@ -41,20 +42,19 @@ Follow the steps listed in [Quickstart: Create a Synapse workspace](../quickstar
 
 You can create managed private endpoints to connect to Azure resources that reside in Azure AD tenants, which are approved for a workspace. Follow the steps listed in the guide for [creating managed private endpoints](./how-to-create-managed-private-endpoints.md).
 
->[!IMPORTANT]
->Resources in tenants other than the workspace's tenant must not have blocking firewall rules in place for the SQL pools to connect to them. Resources within the workspace’s managed virtual network, such as Spark clusters, can connect over managed private links to firewall-protected resources.
+> [!IMPORTANT]
+> Resources in tenants other than the workspace's tenant must not have blocking firewall rules in place for the SQL pools to connect to them. Resources within the workspace’s managed virtual network, such as Spark clusters, can connect over managed private links to firewall-protected resources.
 
 ## Known limitations
-Users can provide an environment configuration file to install Python packages from public repositories like PyPI. In data exfiltration protected workspaces, connections to outbound repositories are blocked. As a result, Python library installed from public repositories like PyPI are not supported. 
+Users can provide an environment configuration file to install Python packages from public repositories like PyPI. In data exfiltration protected workspaces, connections to outbound repositories are blocked. As a result, Python libraries installed from public repositories like PyPI are not supported. 
 
 As an alternative, users can upload workspace packages or create a private channel within their primary Azure Data Lake Storage account. For more information, visit [Package management in Azure Synapse Analytics](./spark/../../spark/apache-spark-azure-portal-add-libraries.md) 
+
+Ingesting data [from an Event Hub into Data Explorer pools](../data-explorer/ingest-data/data-explorer-ingest-event-hub-one-click.md) will not work if your Synapse workspace uses a managed virtual network with data exfiltration protection enabled.
 
 ## Next steps
 
-Learn more about [data exfiltration protection in Synapse workspaces](./workspace-data-exfiltration-protection.md)
-
-Learn more about [Managed workspace Virtual Network](./synapse-workspace-managed-vnet.md)
-
-Learn more about [Managed private endpoints](./synapse-workspace-managed-private-endpoints.md)
-
-[Create Managed private endpoints to your data sources](./how-to-create-managed-private-endpoints.md)
+ - Learn more about [data exfiltration protection in Synapse workspaces](./workspace-data-exfiltration-protection.md)
+ - Learn more about [Managed workspace Virtual Network](./synapse-workspace-managed-vnet.md)
+ - Learn more about [Managed private endpoints](./synapse-workspace-managed-private-endpoints.md)
+ - [Create Managed private endpoints to your data sources](./how-to-create-managed-private-endpoints.md)