Merging changes synced from https://github.com/MicrosoftDocs/azure-docs-pr (branch live)

Author: Learn Build Service GitHub App

articles/azure-monitor/overview.md

@@ -4,7 +4,7 @@ description: Overview of Microsoft services and functionalities that contribute
 ms.topic: overview
 author: rboucher
 ms.author: robb
-ms.date: 12/07/2023
+ms.date: 02/05/2024
 ms.reviewer: robb
 ---
 # Azure Monitor overview
@@ -36,7 +36,7 @@ You can also export monitoring data from Azure Monitor into other systems so you
 - Integrate with other third-party and open-source monitoring and visualization tools
 - Integrate with ticketing and other ITSM systems
 
-If you're a System Center Operations Manager (SCOM) user, Azure Monitor now includes a preview of Azure Monitor [SCOM Managed Instance (SCOM MI)](./vm/scom-managed-instance-overview.md). Operations Manager MI is a cloud-hosted version of Operations Manager and allows you to move your on-premises Operations Manager installation to Azure.
+If you're a System Center Operations Manager (SCOM) user, Azure Monitor now includes Azure Monitor [SCOM Managed Instance (SCOM MI)](./vm/scom-managed-instance-overview.md). Operations Manager MI is a cloud-hosted version of Operations Manager and allows you to move your on-premises Operations Manager installation to Azure.
 
 The following diagram shows a high-level architecture view of Azure Monitor.
 

articles/communication-services/toc.yml

@@ -344,6 +344,8 @@ items:
         href: quickstarts/voice-video-calling/get-started-raw-media-access.md
       - name: Add video background effects
         href: quickstarts/voice-video-calling/get-started-video-effects.md
+      - name: Add Augmented Reality filters to your video calls
+        href: tutorials/add-video-augmented-reality-tutorial.md
     - name: Diagnostics
       items:
       - name: Diagnose your network

articles/communication-services/tutorials/add-video-augmented-reality-tutorial.md

@@ -0,0 +1,138 @@
+---
+title: Tutorial - Add Augmented Reality filter to your app
+titleSuffix: An Azure Communication Services tutorial
+description: In this tutorial, you learn how to add Augmented Reality filter to your app using Azure Communication Services and other effects SDKs.
+author: sloanster
+services: azure-communication-services
+
+ms.author: micahvivion
+ms.date: 01/15/2024
+ms.topic: tutorial
+ms.service: azure-communication-services
+ms.subservice: calling
+ms.custom: mode-other
+---
+
+# Tutorial: How to add Augmented Reality filters to your video calls
+
+> [!NOTE]
+> DeepAR SDK is third-party software which is licensed under its own terms. Microsoft does not make any representations or warranties concerning the use of third-party software.
+
+In some usage scenarios, you may want to apply some video processing to the original camera video, such as background blur or background replacement.
+This can provide a better user experience.
+The Azure Communication Calling video effects package provides several video processing functions. However, this isn't the only choice.
+You can also integrate other video effects library with ACS raw media access API.
+
+We'll use DeepAR SDK(https://www.deepar.ai/) as an example to show how to integrate other effects libraries with ACS Calling SDK. 
+Let's try DeepAR to enrich your video with Augmented Reality!
+
+## Prerequisites
+
+- An Azure account with an active subscription. [Create an account for free](https://azure.microsoft.com/free/?WT.mc_id=A261C142F).
+- An Azure Communication Service resource. Further details can be found in the [Create an Azure Communication Services resource](../quickstarts/create-communication-resource.md) quickstart.
+- An Azure Communication Services voice and video calling enabled client. [Add video calling to your app](../quickstarts/voice-video-calling/get-started-with-video-calling.md?pivots=platform-web).
+- DeepAR license key. [Getting started | DeepAR](https://docs.deepar.ai/deepar-sdk/platforms/web/getting-started).
+
+## How video input and output work between ACS Web SDK and DeepAR
+Both ACS Web SDK and DeepAR can read the camera device list and get the video stream directly from the device.
+We want to provide consistency in the app, and DeepAR SDK provides a way for us to directly input a video stream acquired from ACS Web SDK.
+Similarly, ACS Web SDK needs the processed video stream output from DeepAR SDK and sends this video stream to the remote endpoint.
+DeepAR offers the option to use a canvas as an output. ACS Web SDK can consume the raw video stream captured from the canvas.
+
+Here's the data flow:
+
+:::image type="content" source="./media/ar/videoflow.png" alt-text="The diagram of data flow between ACS SDK and DeepAR SDK.":::
+
+
+## Initialize DeepAR SDK
+
+To enable DeepAR filters, you need to initialize DeepAR SDK, this can be done by invoking `deepar.initialize` API.
+```javascript
+const canvas = document.createElement('canvas');
+const deepAR = await deepar.initialize({
+    licenseKey: 'YOUR_LICENSE_KEY',
+    canvas: canvas,
+    additionalOptions: {
+        cameraConfig: {
+            disableDefaultCamera: true
+        }
+    }
+});
+```
+Here we disable the default camera because we want ACS Web SDK to provide the source video stream.
+The canvas is required as this provides a way for ACS Web SDK to consume the video output from DeepAR SDK.
+
+## Connect the input and output
+
+To start a video call, you need to create a `LocalVideoStream` object as the video input in SDK.
+```javascript
+const deviceManager = await callClient.getDeviceManager();
+const cameras = await deviceManager.getCameras();
+const camera = cameras[0]
+const localVideoStream = new LocalVideoStream(camera);
+await call.startVideo(localVideoStream);
+```
+By doing this, ACS SDK directly sends out the video from camera without processed by DeepAR.
+We need to create a path to forward the video acquired from ACS SDK to DeepAR SDK.
+
+```javascript
+const deviceManager = await callClient.getDeviceManager();
+const cameras = await deviceManager.getCameras();
+const camera = cameras[0]
+const inputVideoStream = new LocalVideoStream(camera);
+const inputMediaStream = await inputVideoStream.getMediaStream();
+const video = document.createElement('video');
+const videoResizeCallback = () => {
+    canvas.width = video.videoWidth;
+    canvas.height = video.videoHeight;
+};
+video.addEventListener('resize', videoResizeCallback);
+video.autoplay = true;
+video.srcObject = inputMediaStream;
+deepAR.setVideoElement(video, true);
+```
+Now we have finished configuring the input video. To configure the output video, we need another `LocalVideoStream`.
+
+```javascript
+const outputMediaStream = canvas.captureStream(30);
+const outputVideoStream = new LocalVideoStream(outputMediaStream);
+await call.startVideo(outputVideoStream);
+```
+
+## Start the effect
+
+In DeepAR, effects and background processing are independent, which means you can apply the filter while enabling the background blur or background replacement.
+```javascript
+// apply the effect
+await deepAR.switchEffect('https://cdn.jsdelivr.net/npm/deepar/effects/lion');
+// enable the background blur
+await deepAR.backgroundBlur(true, 8);
+
+```
+:::image type="content" source="./media/ar/screenshot.png" alt-text="Screenshot of the video effect.":::
+
+## Stop the effect
+
+If you want to stop the effect, you can invoke `deepar.clearEffect` API
+```javascript
+await deepAR.clearEffect();
+```
+To disable the background blur, you can pass `false` to `deepar.backgroundBlur` API.
+
+## Disable DeepAR during the video call
+
+In case you want to disable DeepAR during the video call.
+You need to call `deepar.stopVideo`.
+Invoking `deepar.stopVideo` also ends the current media stream captured from the canvas.
+
+```javascript
+await outputVideoStream.switchSource(cameras[0]);
+await deepAR.stopVideo();
+```
+
+## Next steps
+For more information, see the following articles:
+
+- Learn about [Video effects](../quickstarts/voice-video-calling/get-started-video-effects.md?pivots=platform-web).
+- Learn more about [Manage video during calls](../how-tos/calling-sdk/manage-video.md?pivots=platform-web).
+- DeepAR documentation. [Getting started | DeepAR](https://docs.deepar.ai/deepar-sdk/platforms/web/getting-started).

articles/communication-services/tutorials/media/ar/screenshot.png

@@ -19,7 +19,7 @@ When you enable and configure adaptive application controls, you get security al
 
 By defining lists of known-safe applications, and generating alerts when anything else is executed, you can achieve multiple oversight and compliance goals:
 
-- Identify potential malware, even any that antimalware solutions can miss 
+- Identify potential malware, even any that antimalware solutions can miss
 - Improve compliance with local security policies that dictate the use of only licensed software
 - Identify outdated or unsupported versions of applications
 - Identify software your organization banned but is nevertheless running on your machines

articles/communication-services/tutorials/media/ar/videoflow.png

@@ -137,5 +137,3 @@ To delete an adaptive network hardening rule for your current session:
 ## Next steps
 
 - View common questions about [adaptive network hardening](/azure/defender-for-cloud/faq-defender-for-servers#which-ports-are-supported-by-adaptive-network-hardening-)
-
-

articles/defender-for-cloud/adaptive-application-controls.md

@@ -15,9 +15,9 @@ Microsoft Defender for Cloud's Defender for Servers plan 2 supports an agentless
 
 Agentless malware scanning provides:
 
-- Up-to-date and comprehensive malware detection capabilities that utilize the [Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-windows?view=o365-worldwide) engine and [cloud protection](/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus?view=o365-worldwide) signature feed that Microsoft's intelligence feeds support.
+- Up-to-date and comprehensive malware detection capabilities that utilize the [Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-windows) engine and [cloud protection](/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus) signature feed that Microsoft's intelligence feeds support.
 
-- Quick and full scans that use heuristic and signature-based threat detection. 
+- Quick and full scans that use heuristic and signature-based threat detection.
 
 - Security alerts that are generated when malware is detected. These alerts provide extra details and context for investigations, and are sent to both the Defender for Cloud Alerts page and Defender XDR.
 
@@ -32,7 +32,7 @@ Agentless malware scanning offers the following benefits to both protected and u
 
 - **Detect potential threats** - The agentless scanner scans all files and folders including any files or folders that are excluded from the agent-based antivirus scans, without having an effect on the performance of the machine.  
 
-You can learn more about [agentless machine scanning](concept-agentless-data-collection.md) and how to [enable agentless scanning for VMs](enable-agentless-scanning-vms.md). 
+You can learn more about [agentless machine scanning](concept-agentless-data-collection.md) and how to [enable agentless scanning for VMs](enable-agentless-scanning-vms.md).
 
 > [!IMPORTANT]
 > Security alerts appear on the portal only in cases where threats are detected on your environment. If you do not have any alerts it may be because there are no threats on your environment. You can [test to see if the agentless malware scanning capability has been properly onboarded and is reporting to Defender for Cloud](enable-agentless-scanning-vms.md#test-the-agentless-malware-scanners-deployment).

articles/defender-for-cloud/adaptive-network-hardening.md

@@ -24,7 +24,7 @@ Container vulnerability assessment powered by Microsoft Defender Vulnerability M
 - **Exploitability information** - Each vulnerability report is searched through exploitability databases to assist our customers with determining actual risk associated with each reported vulnerability.  
 - **Reporting** - Container Vulnerability Assessment for Azure powered by Microsoft Defender Vulnerability Management provides vulnerability reports using following recommendations:
 
-    | Recommendation | Description | Assessment Key
+    | Recommendation | Description | Assessment Key |
     |--|--|--|
     | [Azure registry container images should have vulnerabilities resolved (powered by Microsoft Defender Vulnerability Management)](https://ms.portal.azure.com/#view/Microsoft_Azure_Security_CloudNativeCompute/AzureContainerRegistryRecommendationDetailsBlade/assessmentKey/c0b7cfc6-3172-465a-b378-53c7ff2cc0d5) | Container image vulnerability assessment scans your registry for commonly known vulnerabilities (CVEs) and provides a detailed vulnerability report for each image. Resolving vulnerabilities can greatly improve your security posture, ensuring images are safe to use prior to deployment. | c0b7cfc6-3172-465a-b378-53c7ff2cc0d5 |
     | [Azure running container images should have vulnerabilities resolved (powered by Microsoft Defender Vulnerability Management)](https://ms.portal.azure.com/#view/Microsoft_Azure_Security_CloudNativeCompute/ContainersRuntimeRecommendationDetailsBlade/assessmentKey/c609cf0f-71ab-41e9-a3c6-9a1f7fe1b8d5)  | Container image vulnerability assessment scans your registry for commonly known vulnerabilities (CVEs) and provides a detailed vulnerability report for each image. This recommendation provides visibility to vulnerable images currently running in your Kubernetes clusters. Remediating vulnerabilities in container images that are currently running is key to improving your security posture, significantly reducing the attack surface for your containerized workloads. | c609cf0f-71ab-41e9-a3c6-9a1f7fe1b8d5 |

articles/defender-for-cloud/agentless-malware-scanning.md

@@ -11,7 +11,7 @@ ms.topic: how-to
 
 Vulnerability assessment for GCP, powered by Microsoft Defender Vulnerability Management, is an out-of-box solution that empowers security teams to easily discover and remediate vulnerabilities in Linux container images, with zero configuration for onboarding, and without deployment of any agents.
 
-In every account where enablement of this capability is completed, all images stored in Google Registries (GAR and GCR) that meet the following criteria for scan triggers are scanned for vulnerabilities without any extra configuration of users or registries. Recommendations with vulnerability reports are provided for all images in Google Registries (GAR and GCR), images that are currently running in GKE that were pulled from Google Registries (GAR and GCR) or any other Defender for Cloud supported registry (ACR or ECR). Images are scanned shortly after being added to a registry, and rescanned for new vulnerabilities once every 24 hours.
+In every account where enablement of this capability is completed, all images stored in Google Registries (GAR and GCR) that meet the criteria for scan triggers are scanned for vulnerabilities without any extra configuration of users or registries. Recommendations with vulnerability reports are provided for all images in Google Registries (GAR and GCR), images that are currently running in GKE that were pulled from Google Registries (GAR and GCR) or any other Defender for Cloud supported registry (ACR or ECR). Images are scanned shortly after being added to a registry, and rescanned for new vulnerabilities once every 24 hours.
 
 Container vulnerability assessment powered by Microsoft Defender Vulnerability Management has the following capabilities: