Merge branch 'main' into eur/display-text-format

Author: eric-urban

.acrolinx-config.edn

@@ -1,2 +1,2 @@
 {:allowed-branchname-matches ["main" "release-.*"]
- :allowed-filename-matches ["(?i)articles/(?:(?!active-directory/saas-apps/toc.yml|role-based-access-control/resource-provider-operations.md))" "includes/"]}
+ :allowed-filename-matches ["(?i)articles/(?:(?!active-directory/saas-apps/toc.yml|role-based-access-control/resource-provider-operations.md|.*policy/samples/|.*resource-graph/samples/))" "(?i)includes/(?:(?!policy/reference/|policy/standards/))"]}

.openpublishing.redirection.defender-for-iot.json

@@ -1,19 +1,98 @@
 {
     "redirections": [          
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/resources-manage-proprietary-protocols.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/how-to-manage-individual-sensors#manage-custom-plugins-legacy",
+            "redirect_document_id": false
+        },      
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-set-up-high-availability.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-set-up-high-availability",
+            "redirect_document_id": false
+        },      
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/sites-and-zones-on-premises.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/sites-and-zones-on-premises",
+            "redirect_document_id": false
+        },        
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/activate-deploy-management.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/activate-deploy-management",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/back-up-restore-management.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/back-up-restore-management",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/back-up-sensors-from-management.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/back-up-sensors-from-management",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/connect-sensors-to-management.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/connect-sensors-to-management",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-investigate-all-enterprise-sensor-detections-in-a-device-inventory.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-investigate-all-enterprise-sensor-detections-in-a-device-inventory",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-manage-sensors-from-the-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-manage-sensors-from-the-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-manage-the-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-manage-the-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-troubleshoot-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-troubleshoot-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-work-with-alerts-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-work-with-alerts-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/install-software-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/install-software-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/legacy-air-gapped-deploy.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/legacy-air-gapped-deploy",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/manage-users-on-premises-management-console.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/manage-users-on-premises-management-console",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/defender-for-iot/organizations/ot-deploy/prepare-management-appliance.md",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/prepare-management-appliance",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/defender-for-iot/organizations/faqs-eiot.md",
             "redirect_url": "/azure/defender-for-iot/organizations/concept-enterprise#frequently-asked-questions",
             "redirect_document_id": false
         },
-
         {
             "source_path_from_root": "/articles/defender-for-iot/organizations/best-practices/plan-network-monitoring.md",
             "redirect_url": "/azure/defender-for-iot/organizations/best-practices/plan-prepare-deploy",
             "redirect_document_id": false
         },
         {
                 "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-activate-and-set-up-your-on-premises-management-console.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/ot-deploy/activate-deploy-management",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/activate-deploy-management",
             "redirect_document_id": false
         },
         {
@@ -92,7 +171,7 @@
         },
         {
             "source_path_from_root": "/articles/defender-for-iot/organizations/how-to-define-global-user-access-control.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/manage-users-on-premises-management-console#define-global-access-permission-for-on-premises-users",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/manage-users-on-premises-management-console#define-global-access-permission-for-on-premises-users",
             "redirect_document_id": false
         },
         {
@@ -237,7 +316,7 @@
         },
         {
             "source_path_from_root": "/articles/defender-for-iot/how-to-manage-sensors-from-the-on-premises-management-console.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/how-to-manage-sensors-from-the-on-premises-management-console",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-manage-sensors-from-the-on-premises-management-console",
             "redirect_document_id": false
         },
         {
@@ -252,7 +331,7 @@
         },
         {
             "source_path_from_root": "/articles/defender-for-iot/how-to-manage-the-on-premises-management-console.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/how-to-manage-the-on-premises-management-console",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-manage-the-on-premises-management-console",
             "redirect_document_id": false
         },
         {
@@ -262,7 +341,7 @@
         },
         {
             "source_path_from_root": "/articles/defender-for-iot/how-to-investigate-all-enterprise-sensor-detections-in-a-device-inventory.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/how-to-investigate-all-enterprise-sensor-detections-in-a-device-inventory",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-investigate-all-enterprise-sensor-detections-in-a-device-inventory",
             "redirect_document_id": false
         },
         {
@@ -322,7 +401,7 @@
         },
         {
             "source_path_from_root": "/articles/defender-for-iot/how-to-work-with-alerts-on-premises-management-console.md",
-            "redirect_url": "/azure/defender-for-iot/organizations/how-to-work-with-alerts-on-premises-management-console",
+            "redirect_url": "/azure/defender-for-iot/organizations/legacy-central-management/how-to-work-with-alerts-on-premises-management-console",
             "redirect_document_id": false
         },
         {

.openpublishing.redirection.json

@@ -1060,6 +1060,26 @@
             "redirect_url": "/azure/site-recovery/deploy-vmware-azure-replication-appliance-modernized",
             "redirect_document_id": false
         },
+        {
+            "source_path": "articles/site-recovery/hyper-v-vmm-powershell-resource-manager.md",
+            "redirect_url": "/azure/site-recovery/site-recovery-runbook-automation",
+            "redirect_document_id": false
+        },
+        {
+            "source_path": "articles/site-recovery/hyper-v-vmm-secondary-support-matrix.",
+            "redirect_url": "/azure/site-recovery/hyper-v-azure-support-matrix",
+            "redirect_document_id": false
+        },
+        {
+            "source_path": "articles/site-recovery/unregister-vmm-server-script.md",
+            "redirect_url": "/azure/site-recovery/azure-to-azure-autoupdate",
+            "redirect_document_id": false
+        },
+        {
+            "source_path": "articles/site-recovery/hyper-v-vmm-secondary-support-matrix.md",
+            "redirect_url": "/azure/site-recovery/azure-to-azure-autoupdate",
+            "redirect_document_id": false
+        },
         {
             "source_path": "articles/container-registry/container-registry-customer-managed-keys.md",
             "redirect_url": "/azure/container-registry/tutorial-customer-managed-keys",
@@ -4550,7 +4570,12 @@
         },
         {
             "source_path_from_root": "/articles/app-service/containers/configure-language-ruby.md",
-            "redirect_url": "/azure/app-service/configure-language-ruby",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/app-service/configure-language-ruby.md",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
@@ -5340,17 +5365,22 @@
         },
         {
             "source_path_from_root": "/articles/app-service/containers/quickstart-ruby.md",
-            "redirect_url": "/azure/app-service/quickstart-ruby",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/app-service/quickstart-ruby.md",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
             "source_path_from_root": "/articles/app-service-web/app-service-linux-ruby-get-started.md",
-            "redirect_url": "/azure/app-service/quickstart-ruby",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
             "source_path_from_root": "/articles/app-service-web/app-service-linux-using-ruby.md",
-            "redirect_url": "/azure/app-service/quickstart-ruby",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
@@ -5975,12 +6005,17 @@
         },
         {
             "source_path_from_root": "/articles/app-service/containers/tutorial-ruby-mysql-app.md",
-            "redirect_url": "/azure/app-service/tutorial-ruby-postgres-app",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
             "source_path_from_root": "/articles/app-service/containers/tutorial-ruby-postgres-app.md",
-            "redirect_url": "/azure/app-service/tutorial-ruby-postgres-app",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/app-service/tutorial-ruby-postgres-app.md",
+            "redirect_url": "https://github.com/Azure/app-service-linux-docs/blob/master/HowTo/use_ruby_with_container.md",
             "redirect_document_id": false
         },
         {
@@ -23678,6 +23713,11 @@
             "source_path_from_root": "/articles/aks/ai-toolchain-operator.md",
             "redirect_url": "https://azure.microsoft.com/updates/preview-ai-toolchain-operator-addon-for-aks/",
             "redirect_document_id": false  
+        },
+        {
+            "source_path_from_root": "/articles/reliability/disaster-recovery-guidance-overview.md",
+            "redirect_url": "/azure/reliability/reliability-guidance-overview",
+            "redirect_document_id": false  
         }
 
     ]

.openpublishing.redirection.virtual-desktop.json

@@ -299,6 +299,11 @@
             "source_path_from_root": "/articles/virtual-desktop/sandbox.md",
             "redirect_url": "/azure/virtual-desktop/publish-applications",
             "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/virtual-desktop/whats-new-client-web.md",
+            "redirect_url": "/azure/virtual-desktop/users/remote-desktop-clients-overview",
+            "redirect_document_id": false
         }
     ]
 }

articles/active-directory-b2c/add-ropc-policy.md

@@ -9,11 +9,13 @@ manager: CelesteDG
 ms.service: active-directory
 
 ms.topic: how-to
-ms.date: 12/16/2022
+ms.date: 12/16/2023
 ms.custom: 
 ms.author: kengaderdus
 ms.subservice: B2C
 zone_pivot_groups: b2c-policy-type
+
+#Customer intent: As a developer integrating Azure AD B2C into my application, I want to set up the resource owner password credentials flow, so that my application can exchange valid credentials for tokens and authenticate users.
 ---
 
 # Set up a resource owner password credentials flow in Azure Active Directory B2C
@@ -38,9 +40,9 @@ The following flows aren't supported:
 - **Server-to-server**: The identity protection system needs a reliable IP address gathered from the caller (the native client) as part of the interaction. In a server-side API call, only the server’s IP address is used. If a dynamic threshold of failed authentications is exceeded, the identity protection system may identify a repeated IP address as an attacker.
 - **Confidential client flow**: The application client ID is validated, but the application secret isn't validated.
 
-When using the ROPC flow, consider the following:
+When using the ROPC flow, consider the following limitations:
 
-- ROPC doesn’t work when there's any interruption to the authentication flow that needs user interaction. For example, when a password has expired or needs to be changed, [multifactor authentication](multi-factor-authentication.md) is required, or when more information needs to be collected during sign-in (for example, user consent).
+- ROPC doesn’t work when there's any interruption to the authentication flow that needs user interaction. For example, when a password expires or needs to be changed, [multifactor authentication](multi-factor-authentication.md) is required, or when more information needs to be collected during sign-in (for example, user consent).
 - ROPC supports local accounts only. Users can’t sign in with [federated identity providers](add-identity-provider.md) like Microsoft, Google+, Twitter, AD-FS, or Facebook.
 - [Session Management](session-behavior.md), including [keep me signed-in (KMSI)](session-behavior.md#enable-keep-me-signed-in-kmsi), isn't applicable.
 
@@ -68,13 +70,14 @@ When using the ROPC flow, consider the following:
 
 ::: zone pivot="b2c-custom-policy"
 
-## Pre-requisite 
-If you've not done so, learn about custom policy starter pack in [Get started with custom policies in Active Directory B2C](tutorial-create-user-flows.md).
+## Prerequisite 
+If you've not done so, learn how to use the custom policy starter pack in [Get started with custom policies in Active Directory B2C](tutorial-create-user-flows.md).
 
 ##  Create a resource owner policy
 
 1. Open the *TrustFrameworkExtensions.xml* file.
-2. If it doesn't exist already, add a **ClaimsSchema** element and its child elements as the first element under the **BuildingBlocks** element:
+ 
+1. Under the **BuildingBlocks** element, locate the **ClaimsSchema** element, then add the following claims types:  
 
     ```xml
     <ClaimsSchema>
@@ -372,12 +375,8 @@ A successful response looks like the following example:
 
 * **Symptom** - You run the ROPC flow, and get the following message: *AADB2C90057: The provided application isn't configured to allow the 'OAuth' Implicit flow*.
 * **Possible causes** - The implicit flow isn't allowed for your application.
-* **Resolution**: When creating your [app registration](#register-an-application) in Azure AD B2C, you need to manually edit the application manifest and set the value of the `oauth2AllowImplicitFlow` property to `true`. After you configure the `oauth2AllowImplicitFlow` property, it can take a few minutes (typically no more than five) for the change to take affect. 
+* **Resolution**: When creating your [app registration](#register-an-application) in Azure AD B2C, you need to manually edit the application manifest and set the value of the `oauth2AllowImplicitFlow` property to `true`. After you configure the `oauth2AllowImplicitFlow` property, it can take a few minutes (typically no more than five) for the change to take effect. 
 
 ## Use a native SDK or App-Auth
 
-Azure AD B2C meets OAuth 2.0 standards for public client resource owner password credentials and should be compatible with most client SDKs. For the latest information, see [Native App SDK for OAuth 2.0 and OpenID Connect implementing modern best practices](https://appauth.io/).
-
-## Next steps
-
-Download working samples that have been configured for use with Azure AD B2C from GitHub, [for Android](https://aka.ms/aadb2cappauthropc) and [for iOS](https://aka.ms/aadb2ciosappauthropc).
+Azure AD B2C meets OAuth 2.0 standards for public client resource owner password credentials and should be compatible with most client SDKs. For the latest information, see [Native App SDK for OAuth 2.0 and OpenID Connect implementing modern best practices](https://appauth.io/).