Merge pull request #293945 from RoseHJM/mdb-freshness-jan-04

prmerger-automator[bot] · web-flow · commit 1933b8199d96 · 2025-01-31T23:37:50.000Z
MDB - freshness Jan 04
diff --git a/articles/dev-box/how-to-authenticate.md b/articles/dev-box/how-to-authenticate.md
@@ -1,14 +1,18 @@
 ---
 title: Authenticate to Microsoft Dev Box REST APIs
-description: Learn how to authenticate to Microsoft Dev Box REST APIs.
+description: Learn how to authenticate to Microsoft Dev Box REST APIs as administrator or developer, by using the Azure CLI.
 ms.service: dev-box
-ms.topic: conceptual
+ms.topic: concept-article
 ms.author: rosemalcolm
 author: RoseHJM
-ms.date: 09/07/2023
+ms.date: 01/31/2025
+
+#customer intent: As a developer, I want to learn how to authenticate to Microsoft Dev Box REST APIs, so that I can securely interact with Microsoft Dev Box services.
 ---
 # Authenticating to Microsoft Dev Box REST APIs
 
+In this article, you will learn how to authenticate to Microsoft Dev Box REST APIs using the Azure CLI. Authentication is a crucial step for accessing both administrator (control plane) and developer (data plane) APIs. This guide will walk you through retrieving an access token from Microsoft Entra ID, understanding the token's structure and validity, and using the bearer token to access REST APIs. By following these steps, you can securely interact with Microsoft Dev Box services.
+
 > [!TIP]
 > Before authenticating, ensure that the user or identity has the appropriate permissions to perform the desired action. For more information, see [configuring project admins](./how-to-project-admin.md) and [configuring Dev Box users](./how-to-dev-box-user.md).
 
@@ -29,7 +33,7 @@ az login
 
 The command opens a browser window to the Microsoft Entra authentication page. It requires you to give your Microsoft Entra user ID and password.
 
-Next, set the correct subscription context. If you authenticate from an incorrect subscription or tenant you may receive unexpected 403 Forbidden errors.
+Next, set the correct subscription context. If you authenticate from an incorrect subscription or tenant, you might receive unexpected 403 Forbidden errors.
 
 ```azurecli
 az account set --subscription <subscription_id>
@@ -41,7 +45,7 @@ az account set --subscription <subscription_id>
 ### Retrieve the Microsoft Entra access token
 
 Use the Azure CLI to acquire an access token for the Microsoft Entra authenticated user.
-Note that the resource ID is different depending on if you are accessing administrator (control plane) APIs or developer (data plane) APIs.
+The resource ID is different depending on if you're accessing administrator (control plane) APIs or developer (data plane) APIs.
 
 For administrator APIs, use the following command:
 ```azurecli-interactive
@@ -68,11 +72,12 @@ After authentication is successful, Microsoft Entra ID returns an access token f
 The token is a Base64 string. The token is valid for at least 5 minutes with the maximum of 90 minutes. The expiresOn defines the actual token expiration time.
 
 > [!TIP]
-> Developer API tokens for the service are encrypted and cannot be decoded using JWT decoding tools. They can only be processed by the service.
+> Developer API tokens for the service are encrypted and can't be decoded using JWT decoding tools. They can only be processed by the service.
 
 
 ### Using a bearer token to access REST APIs
 To access REST APIs, you must set the Authorization header on your request. The header value should be the string `Bearer` followed by a space and the token you received in the previous step.
 
-## Next steps
+## Related content
+
 - Review [Microsoft Entra fundamentals](../../articles/active-directory/fundamentals/whatis.md).
