Merge pull request #109577 from MicrosoftDocs/repo_sync_working_branch

huypub · web-flow · commit 1797bb94b81d · 2020-03-31T09:28:45.000-07:00
Confirm merge from repo_sync_working_branch to master to sync with https://github.com/Microsoft/azure-docs (branch master)
diff --git a/articles/active-directory/governance/entitlement-management-catalog-create.md b/articles/active-directory/governance/entitlement-management-catalog-create.md
@@ -1,5 +1,5 @@
 ---
-title: Create & manage resources in entitlement management - Azure AD
+title: Create & manage a catalog of resources in entitlement management - Azure AD
 description: Learn how to create a new container of resources and access packages in Azure Active Directory entitlement management.
 services: active-directory
 documentationCenter: ''
diff --git a/articles/azure-government/documentation-government-ase-disa-cap.md b/articles/azure-government/documentation-government-ase-disa-cap.md
@@ -36,11 +36,11 @@ However, since DISA advertises a default route out the ExpressRoute circuit, the
 You will need to create new routes in the UDR for the management addresses in order to keep the ASE healthy. For Azure Government ranges see [App Service Environment management addresses](https://docs.microsoft.com/azure/app-service/environment/management-addresses
 )
 
-Rule 1: 23.97.29.209 --> Internet
-Rule 2: 23.97.0.17 --> Internet 
-Rule 3: 23.97.16.184 --> Internet 
-Rule 4: 13.72.180.105 --> Internet
-Rule 5: 13.72.53.37 --> Internet
+* Rule 1: 23.97.29.209 --> Internet
+* Rule 2: 23.97.0.17 --> Internet 
+* Rule 3: 23.97.16.184 --> Internet 
+* Rule 4: 13.72.180.105 --> Internet
+* Rule 5: 13.72.53.37 --> Internet
 
 Make sure the UDR is applied to the subnet your ASE is deployed to. 
 
@@ -56,16 +56,16 @@ The images below describe the default NSG rules created during the ASE creation.
 
 ### Service Endpoints 
 
-Depending what storage you are using you will be required to enable Service Endpoints for SQL and Azure Storage to access them without going back down to the DISA BCAP. You also need to enable EventHub Service Endpoint for ASE logs. 
+Depending on the storage you use, you will be required to enable Service Endpoints for SQL and Azure Storage to access them without going back down to the DISA BCAP. You also need to enable EventHub Service Endpoint for ASE logs. [Learn more](https://docs.microsoft.com/azure/app-service/environment/network-info#service-endpoints).
 
 ## FAQs
 
-* Some configuration changes may take some time to take effect.  Allow for several hours for changes to routing, NSGs, ASE Health, etc. to propagate and take effect, or optionally you can reboot the ASE. 
+Some configuration changes may take some time to take effect.  Allow for several hours for changes to routing, NSGs, ASE Health, etc. to propagate and take effect, or optionally you can reboot the ASE. 
 
 ## Resource manager template sample
 
 > [!NOTE]
-   >In order to deploy non-RFC 1918 IP addresses in the portal you must pre-stage the VNet and Subnet for the ASE. You can use a Resource Manager Template to deploy the ASE with non-RFC1918 IPs as well.
+> In order to deploy non-RFC 1918 IP addresses in the portal you must pre-stage the VNet and Subnet for the ASE. You can use a Resource Manager Template to deploy the ASE with non-RFC1918 IPs as well.
    
 <a href="https://portal.azure.us/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2FAzure%2Fazure-quickstart-templates%2Fmaster%2FApp-Service-Environment-AzFirewall%2Fazuredeploy.json" target="_blank">
 
diff --git a/articles/cost-management-billing/manage/mpa-request-ownership.md b/articles/cost-management-billing/manage/mpa-request-ownership.md
@@ -135,7 +135,7 @@ Azure Marketplace products which are available for subscriptions that are manage
 
 ### Azure Reservations transfer
 
-Azure Reservations don't automatically move with subscriptions.Either you can keep the Reservation in EAfor other subscriptions or [cancel the Reservation](https://docs.microsoft.com/azure/cost-management-billing/reservations/exchange-and-refund-azure-reservations) and parnter can repurchase in CSP. 
+Azure Reservations don't automatically move with subscriptions. Either you can keep the Reservation in EAfor other subscriptions or [cancel the Reservation](https://docs.microsoft.com/azure/cost-management-billing/reservations/exchange-and-refund-azure-reservations) and partner can repurchase in CSP. 
 
 ### Access to Azure services
 
diff --git a/articles/data-factory/connector-azure-sql-database.md b/articles/data-factory/connector-azure-sql-database.md
@@ -138,7 +138,7 @@ To use a service principal-based Azure AD application token authentication, foll
 4. Grant the service principal needed permissions as you normally do for SQL users or others. Run the following code. For more options, see [this document](https://docs.microsoft.com/sql/relational-databases/system-stored-procedures/sp-addrolemember-transact-sql?view=sql-server-2017).
 
     ```sql
-    EXEC sp_addrolemember [role name], [your application name];
+    ALTER ROLE [role name] ADD MEMBER [your application name];
     ```
 
 5. Configure an Azure SQL Database linked service in Azure Data Factory.
@@ -185,7 +185,7 @@ To use managed identity authentication, follow these steps.
 3. Grant the Data Factory managed identity needed permissions as you normally do for SQL users and others. Run the following code. For more options, see [this document](https://docs.microsoft.com/sql/relational-databases/system-stored-procedures/sp-addrolemember-transact-sql?view=sql-server-2017).
 
     ```sql
-    EXEC sp_addrolemember [role name], [your Data Factory name];
+    ALTER ROLE [role name] ADD MEMBER [your Data Factory name];
     ```
 
 4. Configure an Azure SQL Database linked service in Azure Data Factory.
diff --git a/articles/security-center/azure-kubernetes-service-integration.md b/articles/security-center/azure-kubernetes-service-integration.md
@@ -31,7 +31,7 @@ Together, these two tools form the best cloud-native Kubernetes security offerin
 
 Using the two services together provides:
 
-* **Security recommendations** - Security Center identifies your AKS resources and categorizes them: from clusters to individual virtual machines. You can then view security recommendations per resource. For more information, see the containers recommendations in the [reference list of recommendations](recommendations-reference.md#recs-computeapp). 
+* **Security recommendations** - Security Center identifies your AKS resources and categorizes them: from clusters to individual virtual machines. You can then view security recommendations per resource. For more information, see the containers recommendations in the [reference list of recommendations](recommendations-reference.md#recs-containers). 
 
 * **Environment hardening** - Security Center constantly monitors the configuration of your Kubernetes clusters and Docker configurations. It then generates security recommendations that reflect industry standards.
 
@@ -57,4 +57,4 @@ To learn more about Security Center's container security features, see:
 
 * [Integration with Azure Container Registry](azure-container-registry-integration.md)
 
-* [Data management at Microsoft](https://www.microsoft.com/trust-center/privacy/data-management) - Describes the data policies of Microsoft services (including Azure, Intune, and Office 365), details of Microsoft's data management, and the retention policies that affect your data
+* [Data management at Microsoft](https://www.microsoft.com/trust-center/privacy/data-management) - Describes the data policies of Microsoft services (including Azure, Intune, and Office 365), details of Microsoft's data management, and the retention policies that affect your data
