Merge branch 'main' of https://github.com/MicrosoftDocs/azure-docs-pr into WI158655-&-WI158654

Author: ElazarK

articles/ai-services/document-intelligence/overview.md

@@ -107,7 +107,7 @@ Prebuilt models enable you to add intelligent document processing to your apps a
 :::row:::
    :::column span="":::
       :::image type="icon" source="media/overview/icon-insurance-card.png" link="#health-insurance-card":::</br>
-    [**Health Insurance card**](#health-insurance-card) | Extract health insurance details.
+    [**Health Insurance card**](#health-insurance-card) | Extract health </br>insurance details.
    :::column-end:::
    :::column span="":::
       :::image type="icon" source="media/overview/icon-contract.png" link="#contract-model":::</br>
@@ -190,12 +190,13 @@ Prebuilt models enable you to add intelligent document processing to your apps a
 
 ## Custom models
 
-Custom models are trained using your labeled datasets to extract distinct data from forms and documents, specific to your use cases. Standalone custom models can be combined to create composed models.
+* Custom models are trained using your labeled datasets to extract distinct data from forms and documents, specific to your use cases.
+* Standalone custom models can be combined to create composed models.
 
 :::row:::
     :::column:::
-        **Extraction models**</br>
-        Custom extraction models are trained to extract labeled fields from documents.
+        * **Extraction models**</br>
+        ✔️ Custom extraction models are trained to extract labeled fields from documents.
     :::column-end:::
 :::row-end:::
 
@@ -216,15 +217,15 @@ Custom models are trained using your labeled datasets to extract distinct data f
 
 :::row:::
     :::column:::
-        **Classification model**</br>
-         Custom classifiers analyze input documents to identify document types prior to invoking an extraction model.
+        * **Classification model**</br>
+         ✔️ Custom classifiers identify document types prior to invoking an extraction model.
     :::column-end:::
 :::row-end:::
 
 :::row:::
    :::column span="":::
       :::image type="icon" source="media/overview/icon-custom-classifier.png" link="#custom-classification-model":::</br>
-    [**Custom classifier**](#custom-classification-model) | Identify designated document types (classes) prior to invoking an extraction model.
+    [**Custom classifier**](#custom-classification-model) | Identify designated document types (classes) </br>prior to invoking an extraction model.
    :::column-end:::
 :::row-end:::
 
@@ -261,8 +262,8 @@ Document Intelligence supports optional features that can be enabled and disable
 |prebuilt-tax.us.1099(Variations)|✓| | |✓| | |O|O|✓|O|O|O|✓|
 |prebuilt-contract|✓|✓|✓|✓| | |O|O|✓|O|O|O|✓|
 |{ customModelName }|✓|✓|✓|✓|✓| |O|O|✓|O|O|O|✓|
-|prebuilt-document (deprecated 2023-10-31-preview)|✓|✓|✓|✓|✓|✓|O|O| |O|O|O| |
-|prebuilt-businessCard (deprecated 2023-10-31-preview)|✓| | | | | | | |✓| | | | |
+|prebuilt-document (**deprecated </br>2023-10-31-preview**)|✓|✓|✓|✓|✓|✓|O|O| |O|O|O| |
+|prebuilt-businessCard (**deprecated </br>2023-10-31-preview**)|✓| | | | | | | |✓| | | | |
 
 ✓ - Enabled</br>
 O - Optional</br>

articles/ai-services/document-intelligence/toc.yml

@@ -25,7 +25,7 @@ items:
         href: changelog-release-history.md
   - name: Language support
     items:
-      - name: Read Layout OCR models
+      - name: Document analysis models
         displayName: language, locale, handwritten, handwriting, text, detect, detection, general, document, printed
         href: language-support-ocr.md?view=doc-intel-4.0.0&preserve-view=true
       - name: Prebuilt models

articles/ai-services/speech-service/text-to-speech-avatar/real-time-synthesis-avatar.md

@@ -21,10 +21,12 @@ In this how-to guide, you learn how to use text to speech avatar (preview) with
 
 To get started, make sure you have the following prerequisites:
 
-- **Azure Subscription:** [Create one for free](https://azure.microsoft.com/free/cognitive-services).
-- **Speech Resource:** <a href="https://portal.azure.com/#create/Microsoft.CognitiveServicesSpeechServices"  title="Create a Speech resource"  target="_blank">Create a speech resource</a> in the Azure portal.
-- **Communication Resource:** Create a [Communication resource](https://portal.azure.com/#create/Microsoft.Communication) in the Azure portal (for real-time avatar synthesis only).
-- You also need your network relay token for real-time avatar synthesis. After deploying your Communication resource, select **Go to resource** to view the endpoint and connection string under **Settings** -> **Keys** tab, and then follow [Access TURN relays](/azure/ai-services/speech-service/quickstarts/setup-platform#install-the-speech-sdk-for-javascript) to generate the relay token with the endpoint and connection string filled.
+- **Azure subscription:** [Create one for free](https://azure.microsoft.com/free/cognitive-services).
+- **Speech resource:** <a href="https://portal.azure.com/#create/Microsoft.CognitiveServicesSpeechServices"  title="Create a Speech resource"  target="_blank">Create a speech resource</a> in the Azure portal. Select "Standard S0" pricing tier if you want to create speech resource to access avatar. 
+- **Your speech resource key and region:** After your Speech resource is deployed, select **Go to resource** to view and manage keys. For more information about Azure AI services resources, see [Get the keys for your resource](/azure/ai-services/multi-service-resource?pivots=azportal&tabs=windows#get-the-keys-for-your-resource).
+- If you build an application of real time avatar: 
+   - **Communication resource:** Create a [Communication resource](https://portal.azure.com/#create/Microsoft.Communication) in the Azure portal (for real-time avatar synthesis only).
+   - You also need your network relay token for real-time avatar synthesis. After deploying your Communication resource, select **Go to resource** to view the endpoint and connection string under **Settings** -> **Keys** tab, and then follow [Access TURN relays](/azure/ai-services/speech-service/quickstarts/setup-platform#install-the-speech-sdk-for-javascript) to generate the relay token with the endpoint and connection string filled.
 
 ## Set up environment
 

articles/backup/backup-azure-database-postgresql-flex-overview.md

@@ -27,10 +27,10 @@ To perform the backup operation:
 
 Once the configuration is complete:
 
-1. The Backup recovery point invokes the backup based on the policy schedules on the ARM API of PostgresFlex server, writing data to a secure blob-container with a SAS for enhanced security. 
+1. The Backup service invokes the backup based on the policy schedules on the ARM API of PostgresFlex server, writing data to a secure blob-container with a SAS for enhanced security. 
 1. Backup runs independently preventing disruptions during long-running tasks. 
 1. The retention and recovery point lifecycles align with the backup policies for effective management. 
-1. During the restore, the Backup recovery point invokes restore on the ARM API of PostgresFlex server using the SAS for asynchronous, nondisruptive recovery. 
+1. During the restore, the Backup service invokes restore on the ARM API of PostgresFlex server using the SAS for asynchronous, nondisruptive recovery. 
 
  :::image type="content" source="./media/backup-azure-database-postgresql-flex-overview/backup-process.png" alt-text="Diagram showing the backup process.":::
 

articles/backup/backup-azure-database-postgresql-flex.md

@@ -38,9 +38,7 @@ To configure backup on the Azure PostgreSQL-flex databases using Azure Backup, f
 1. Choose one of the Azure PostgreSQL-Flex servers across subscriptions if they're in the same region as that of the vault. Expand the arrow to see the list of databases within a server.
    :::image type="content" source="./media/backup-azure-database-postgresql-flex/select-resources.png" alt-text="Screenshot showing the select resources option.":::
 
-1. After the selection, the validation starts. The backup readiness check ensures the vault has sufficient permissions for backup operations. Resolve any access issues by selecting **Assign missing roles** action button in the top action menu to grant permissions.
-   :::image type="content" source="./media/backup-azure-database-postgresql-flex/assign-missing-roles.png" alt-text="Screenshot showing the **Assign missing roles** option.":::
-
+1. After the selection, the validation starts. The backup readiness check ensures the vault has sufficient permissions for backup operations. Resolve any access issues by granting appropriate [permissions](/azure/backup/backup-azure-database-postgresql-flex-overview) to the vault MSI and re-triggering the validation.
 1. Submit the configure backup operation and track the progress under **Backup instances**.
 
 

articles/backup/backup-azure-sql-manage-cli.md

@@ -62,7 +62,7 @@ F7c68818-039f-4a0f-8d73-e0747e68a813  Restore (Log)          Completed   master
 To change the policy underlying the SQL backup configuration, use the [az backup policy set](/cli/azure/backup/policy#az-backup-policy-set) command. The name parameter in this command refers to the backup item whose policy you want to change. Here, replace the policy of the SQL database *sqldatabase;mssqlserver;master* with a new policy *newSQLPolicy*. You can create new policies using the [az backup policy create](/cli/azure/backup/policy#az-backup-policy-create) command.
 
 ```azurecli-interactive
-az backup item set policy --resource-group SQLResourceGroup \
+az backup item set-policy --resource-group SQLResourceGroup \
     --vault-name SQLVault \
     --container-name VMAppContainer;Compute;SQLResourceGroup;testSQLVM \
     --policy-name newSQLPolicy \

articles/defender-for-cloud/TOC.yml

@@ -104,15 +104,12 @@
     - name: Planning and operations guide
       displayName: guide, planning, roles, policies, recommendations
       href: defender-for-cloud-planning-and-operations-guide.md
-    - name: Protect your VMs
+    - name: Protect VMs
       displayName: manage, access, harden
       href: tutorial-protect-resources.md
     - name: Investigate and respond to security alerts
       displayName: triage, security, alerts, investigate,
       href: tutorial-security-incident.md
-    - name: Manage security policies
-      displayName: security, policies, edit, disable
-      href: tutorial-security-policy.md
     - name: Investigate the health of your resources
       displayName: health, resources, outstanding, security, issues,
       href: investigate-resource-health.md
@@ -288,23 +285,9 @@
         - name: Track secure score
           displayName: secure score, rest api, resource graph
           href: secure-score-access-and-track.md
-        - name: View recommendations and alerts in Windows Admin Center
-          displayName: windows, admin, center
-          href: windows-admin-center-integration.md
         - name: Integrate security solutions
           displayName: security, solutions, integrate, integrated, data sources
           href: partner-integration.md
-        - name: Security graph
-          items:
-            - name: Identify and remediate attack paths
-              displayName: attack paths, paths, investigate, easm,
-              href: how-to-manage-attack-path.md
-            - name: Build queries with cloud security explorer
-              displayName: queries, security explorer, explorer, templates, query
-              href: how-to-manage-cloud-security-explorer.md
-            - name: Testing the attack path and security explorer
-              displayName: attack paths, paths, security explorer, test
-              href: how-to-test-attack-path-and-security-explorer-with-vulnerable-container-image.md
     - name: Data-aware security posture
       items:
         - name: Enable data-aware security posture
@@ -331,37 +314,45 @@
       - name: Exempt resources from recommendations
         displayName: disable, resource, exempt, recommendation
         href: exempt-resource.md
-      - name: Manage AWS assessments and standards
-        displayName: aws, assessments, standards, custom, standard, built-in, query
-        href: how-to-manage-aws-assessments-standards.md
-      - name: Manage GCP assessments and standards
-        displayName: gcp, assessment, standards, built-in, compliance, standard, custom,
-            assessment, query
-        href: how-to-manage-gcp-assessments-standards.md
       - name: Prevent misconfigurations with Enforce/Deny
         displayName: recommendations, enforce, deny
         href: prevent-misconfigurations.md
-      - name: Disable a recommendation
-        displayName: recommendation, disable, security, policy,
-        href: tutorial-security-policy.md#disable-a-security-recommendation
     - name: Investigate and remediate security posture
       items:
-      - name: Review security recommendations
-        displayName: security, recommendations, owner, azure, resource, graph, azure
+      - name: Investigate security recommendations
+        items:
+        - name: Review security recommendations
+          displayName: security, recommendations, owner, azure, resource, graph, azure
             resource graph, csv report
-        href: review-security-recommendations.md
-      - name: Review exempted resources
-        href: review-exemptions.md
-      - name: Remediate recommendations
-        displayName: remediation, steps, recommendations, fix, actions, activity log
-        href: implement-security-recommendations.md
-      - name: Drive remediation with governance rules
-        displayName: security, posture, recommendation, governance, automated, rules,
+          href: review-security-recommendations.md
+        - name: Review exempted resources
+          href: review-exemptions.md
+        - name: Remediate recommendations
+          displayName: remediation, steps, recommendations, fix, actions, activity log
+          href: implement-security-recommendations.md
+        - name: Drive remediation with governance rules
+          displayName: security, posture, recommendation, governance, automated, rules,
             owners, status, progress
-        href: governance-rules.md
-      - name: Automate remediation responses
-        displayName: workflow, triggers, logic app, automation, policies, breaking change
-        href: workflow-automation.md
+          href: governance-rules.md
+        - name: Automate remediation responses
+          displayName: workflow, triggers, logic app, automation, policies, breaking change
+          href: workflow-automation.md
+        - name: View recommendations and alerts in Windows Admin Center
+          displayName: windows, admin, center
+          href: windows-admin-center-integration.md
+      - name: Improve regulatory compliance
+        href: regulatory-compliance-dashboard.md
+      - name: Investigate with security explorer and attack path
+        items:
+        - name: Identify and remediate attack paths
+          displayName: attack paths, paths, investigate, easm,
+          href: how-to-manage-attack-path.md
+        - name: Build queries with cloud security explorer
+          displayName: queries, security explorer, explorer, templates, query
+          href: how-to-manage-cloud-security-explorer.md
+        - name: Test attack paths and security explorer
+          displayName: attack paths, paths, security explorer, test
+          href: how-to-test-attack-path-and-security-explorer-with-vulnerable-container-image.md
     - name: Built-in security protections
       items:
         - name: Leverage Purview to protect sensitive data

articles/defender-for-cloud/how-to-manage-attack-path.md

@@ -1,6 +1,6 @@
 ---
-title: Identify and remediate attack paths
-description: Learn how to manage your attack path analysis and build queries to locate vulnerabilities in your multicloud environment.
+title: Identify and remediate attack paths in Microsoft Defender for Cloud
+description: Learn how to identify and remediate attack paths in Microsoft Defender for Cloud
 ms.topic: how-to
 ms.custom: ignite-2023
 ms.date: 11/01/2023

articles/defender-for-cloud/how-to-manage-cloud-security-explorer.md

@@ -1,7 +1,6 @@
 ---
-title: Build queries with cloud security explorer
-
-description: Learn how to build queries in cloud security explorer to find vulnerabilities that exist on your multicloud environment.
+title: Build queries with cloud security explorer in Microsoft Defender for Cloud
+description: Learn how to build queries with cloud security explorer in Microsoft Defender for Cloud
 ms.topic: how-to
 ms.custom: ignite-2022
 ms.date: 11/01/2023

articles/defender-for-cloud/how-to-test-attack-path-and-security-explorer-with-vulnerable-container-image.md

@@ -1,14 +1,13 @@
 ---
-title: How-to test the attack path and cloud security explorer using a vulnerable container image in Microsoft Defender for Cloud
-description: Learn how to test the attack path and security explorer using a vulnerable container image
+title: Test attack paths and cloud security explorer in Microsoft Defender for Cloud
+description: Learn how to test attack paths and cloud security explorer in Microsoft Defender for Cloud
 ms.service: defender-for-cloud
 ms.topic: how-to
 ms.date: 11/08/2023
 ---
 
-# Testing the Attack Path and Security Explorer using a vulnerable container image
+# Test attack paths and cloud security explorer
 
-## Observing potential threats in the attack path experience
 
 Attack path analysis is a graph-based algorithm that scans the cloud security graph. The scans expose exploitable paths that attackers might use to breach your environment to reach your high-impact assets. Attack path analysis exposes attack paths and suggests recommendations as to how best remediate issues that break the attack path and prevent successful breach.