MicrosoftDocs
diff --git a/‎articles/aks/use-kms-etcd-encryption.md
Lines changed: 2 additions & 2 deletions b/‎articles/aks/use-kms-etcd-encryption.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/app-service/environment/using.md
Lines changed: 2 additions & 2 deletions b/‎articles/app-service/environment/using.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/azure-monitor/alerts/alerts-types.md
Lines changed: 1 addition & 1 deletion b/‎articles/azure-monitor/alerts/alerts-types.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/cosmos-db/mongodb/vcore/how-to-create-wildcard-indexes.md
Lines changed: 150 additions & 0 deletions b/‎articles/cosmos-db/mongodb/vcore/how-to-create-wildcard-indexes.md
Lines changed: 150 additions & 0 deletions
diff --git a/‎articles/defender-for-cloud/TOC.yml
Lines changed: 0 additions & 3 deletions b/‎articles/defender-for-cloud/TOC.yml
Lines changed: 0 additions & 3 deletions
diff --git a/‎articles/defender-for-iot/organizations/release-notes.md
Lines changed: 11 additions & 0 deletions b/‎articles/defender-for-iot/organizations/release-notes.md
Lines changed: 11 additions & 0 deletions
diff --git a/‎articles/defender-for-iot/organizations/whats-new.md
Lines changed: 2 additions & 2 deletions b/‎articles/defender-for-iot/organizations/whats-new.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/iot-central/core/concepts-quotas-limits.md
Lines changed: 7 additions & 7 deletions b/‎articles/iot-central/core/concepts-quotas-limits.md
Lines changed: 7 additions & 7 deletions
diff --git a/‎articles/iot-central/core/howto-faq.yml
Lines changed: 1 addition & 1 deletion b/‎articles/iot-central/core/howto-faq.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/migrate/migrate-support-matrix-physical-migration.md
Lines changed: 2 additions & 2 deletions b/‎articles/migrate/migrate-support-matrix-physical-migration.md
Lines changed: 2 additions & 2 deletions
@@ -4,7 +4,7 @@ description: Learn how to use Key Management Service (KMS) etcd encryption with
 ms.topic: article
 ms.subservice: aks-security
 ms.custom: devx-track-azurecli
-ms.date: 06/19/2024
+ms.date: 06/26/2024
 ---
 
 # Add Key Management Service etcd encryption to an Azure Kubernetes Service cluster
@@ -191,7 +191,7 @@ After you change the key ID (including changing either the key name or the key v
 > [!WARNING]
 > Remember to update all secrets after key rotation. If you don't update all secrets, the secrets are inaccessible if the keys that were created earlier don't exist or no longer work.
 >
-> After you rotate the key, the previous key (key1) is still cached and shouldn't be deleted. If you want to delete the previous key (key1) immediately, you need to rotate the key twice. Then key2 and key3 are cached, and key1 can be deleted without affecting the existing cluster.
+> KMS uses 2 keys at the same time. After the first key rotation, you need to ensure both the old and new keys are valid (not expired) until the next key rotation. After the second key rotation, the oldest key can be safely removed/expired
 
 ```azurecli-interactive
 az aks update --name myAKSCluster --resource-group MyResourceGroup  --enable-azure-keyvault-kms --azure-keyvault-kms-key-vault-network-access "Public" --azure-keyvault-kms-key-id $NEW_KEY_ID 
 
@@ -3,7 +3,7 @@ title: Use an App Service Environment
 description: Learn how to use your App Service Environment to host isolated applications.
 author: madsd
 ms.topic: article
-ms.date: 03/27/2023
+ms.date: 06/26/2024
 ms.author: madsd
 ---
 
@@ -47,7 +47,7 @@ Every App Service app runs in an App Service plan. App Service Environments hold
 
 When you scale an App Service plan, the needed infrastructure is added automatically. Be aware that there's a time delay to scale operations while the infrastructure is being added. For example, when you scale an App Service plan, and you have another scale operation of the same operating system and size running, there might be a delay of a few minutes until the requested scale starts.
 
-A scale operation on one size and operating system won't affect scaling of the other combinations of size and operating system. For example, if you are scaling a Windows I2v2 App Service plan, a scale operation to a Windows I3v2 App Service plan starts immediately. Scaling normally takes less than 15 minutes.
+A scale operation on one size and operating system won't affect scaling of the other combinations of size and operating system. For example, if you are scaling a Windows I2v2 App Service plan, a scale operation to a Windows I3v2 App Service plan starts immediately. Scaling normally takes less than 15 minutes but can take up to 45 minutes.
 
 In a multi-tenant App Service, scaling is immediate, because a pool of shared resources is readily available to support it. App Service Environment is a single-tenant service, so there's no shared buffer, and resources are allocated based on need.
 
 
@@ -133,7 +133,7 @@ Log search alerts can measure two different things, which can be used for differ
 - **Table rows**: The number of rows returned can be used to work with events such as Windows event logs, Syslog, and application exceptions.
 - **Calculation of a numeric column**: Calculations based on any numeric column can be used to include any number of resources. An example is CPU percentage.
 
-You can configure if log search alerts are [stateful or stateless](alerts-overview.md#alerts-and-state). This feature is currently in preview. 
+You can configure if log search alerts are [stateful or stateless](alerts-overview.md#alerts-and-state).  
 Note that stateful log search alerts have these limitations:
 - they can trigger up to 300 alerts per evaluation.
 - you can have a maximum of 5000 alerts with the `fired` alert condition.
 
@@ -0,0 +1,150 @@
+---
+title:  Wildcard indexes in Azure Cosmos DB for MongoDB vCore
+titleSuffix: Azure Cosmos DB for MongoDB vCore
+description: Sample to create wildcard indexes in Azure Cosmos DB for MongoDB vCore.
+author: abinav2307
+ms.author: abramees
+ms.reviewer: sidandrews
+ms.service: cosmos-db
+ms.subservice: mongodb-vcore
+ms.topic: conceptual
+ms.date: 6/25/2024
+---
+
+
+# Create wildcard indexes in Azure Cosmos DB for MongoDB vCore
+
+[!INCLUDE[MongoDB vCore](~/reusable-content/ce-skilling/azure/includes/cosmos-db/includes/appliesto-mongodb-vcore.md)]
+
+While most workloads have a predictable set of fields used in query filters and predicates, adhoc query patterns may use filters on any field in the json document structure. 
+
+Wildcard indexing can be helpful in the following scenarios:
+- Queries filtering on any field in the document making indexing all fields through a single command easier than indexing each field individually.
+- Queries filtering on most fields in the document making indexing all but a few fields through a single easier than indexing most fields individually.
+
+This sample describes a simple workaround to minimize the effort needed to create individual indexes until wildcard indexing is generally available in Azure Cosmos DB for MongoDB vCore.
+
+## Solution
+Consider the json document below:
+```json
+{
+    "firstName": "Steve",
+    "lastName": "Smith",
+    "companyName": "Microsoft",
+    "division": "Azure",
+    "subDivision": "Data & AI",
+    "timeInOrgInYears": 7,
+    "roles": [
+        {
+            "teamName" : "Windows",
+            "teamSubName" "Operating Systems",
+            "timeInTeamInYears": 3
+        },
+        {
+            "teamName" : "Devices",
+            "teamSubName" "Surface",
+            "timeInTeamInYears": 2
+        },
+        {
+            "teamName" : "Devices",
+            "teamSubName" "Surface",
+            "timeInTeamInYears": 2
+        }
+    ]
+}
+```
+
+The following indices are created under the covers when wildcard indexing is used.
+- db.collection.createIndex({"firstName", 1})
+- db.collection.createIndex({"lastName", 1})
+- db.collection.createIndex({"companyName", 1})
+- db.collection.createIndex({"division", 1})
+- db.collection.createIndex({"subDivision", 1})
+- db.collection.createIndex({"timeInOrgInYears", 1})
+- db.collection.createIndex({"subDivision", 1})
+- db.collection.createIndex({"roles.teamName", 1})
+- db.collection.createIndex({"roles.teamSubName", 1})
+- db.collection.createIndex({"roles.timeInTeamInYears", 1})
+
+While this sample document only requires a combination of 10 fields to be explicitly indexed, larger documents with hundreds or thousands of fields can get tedious and error prone when indexing fields individually.
+
+The jar file detailed in the rest of this document makes indexing fields in larger documents simpler. The jar takes a sample JSON document as input, parses the document and executes createIndex commands for each field without the need for user intervention.
+
+## Prerequisites
+
+### Java 21
+After the virtual machine is deployed, use SSH to connect to the machine, and install CQLSH using the below commands:
+
+```bash
+# Install default-jdk
+sudo apt update
+sudo apt install openjdk-21-jdk
+```
+
+## Sample jar to create individual indexes for all fields
+
+Clone the repository containing the Java sample to iterate through each field in the JSON document's structure and issue createIndex operations for each field in the document.
+
+```bash
+git clone https://github.com/Azure-Samples/cosmosdb-mongodb-vcore-wildcard-indexing.git
+```
+
+The cloned repository does not need to be built if there are no changes to be made to the solution. The built runnable jar named azure-cosmosdb-mongo-data-indexer-1.0-SNAPSHOT.jar is already included in the runnableJar/ folder. The jar can be executed by specifying the following required parameters:
+- Azure Cosmos DB for MongoDB vCore cluster connection string with the username and password used when the cluster was provisioned
+- The Azure Cosmos DB for MongoDB vCore database
+- The collection to be indexed
+- The location of the json file with the document structure for the collection. This document is parsed by the jar file to extract every field and issue individual createIndex operations.
+
+```bash
+java -jar azure-cosmosdb-mongo-data-indexer-1.0-SNAPSHOT.jar mongodb+srv://<user>:<password>@abinav-test-benchmarking.global.mongocluster.cosmos.azure.com/?tls=true&authMechanism=SCRAM-SHA-256&retrywrites=false&maxIdleTimeMS=120000 cosmicworks employee sampleEmployee.json
+```
+
+## Track the status of a createIndex operation
+The jar file is designed to not wait on a response from each createIndex operation. The indexes are created asynchronously on the server and the progress of the index build operation on the cluster can be tracked.
+
+Consider this sample to track indexing progress on the 'cosmicworks' database.
+```javascript
+use cosmicworks;
+db.currentOp()
+```
+
+When a createIndex operation is in progress, the response looks like:
+```json
+{
+  "inprog": [
+    {
+      "shard": "defaultShard",
+      "active": true,
+      "type": "op",
+      "opid": "30000451493:1719209762286363",
+      "op_prefix": 30000451493,
+      "currentOpTime": "2024-06-24T06:16:02.000Z",
+      "secs_running": 0,
+      "command": { "aggregate": "" },
+      "op": "command",
+      "waitingForLock": false
+    },
+    {
+      "shard": "defaultShard",
+      "active": true,
+      "type": "op",
+      "opid": "30000451876:1719209638351743",
+      "op_prefix": 30000451876,
+      "currentOpTime": "2024-06-24T06:13:58.000Z",
+      "secs_running": 124,
+      "command": { "createIndexes": "" },
+      "op": "workerCommand",
+      "waitingForLock": false,
+      "progress": {},
+      "msg": ""
+    }
+  ],
+  "ok": 1
+}
+```
+
+## Related content
+
+Check out the full sample here - https://github.com/Azure-Samples/cosmosdb-mongodb-vcore-wildcard-indexing
+
+Check out [indexing best practices](how-to-create-indexes.md), which details best practices for indexing on Azure Cosmos DB for MongoDB vCore.
@@ -741,9 +741,6 @@
       - name: Kubeaudit events in advanced hunting
         displayName: k8s, containers
         href: kubeaudit-events-advanced-hunting.md
-      - name: Vulnerability assessment for Azure powered by Qualys (Deprecated)
-        displayName: ACR, registry, images, qualys
-        href: defender-for-containers-vulnerability-assessment-azure.md
       - name: Defender for Kubernetes (deprecated)
         displayName: clusters, k8s, aks
         href: defender-for-kubernetes-introduction.md
 
@@ -38,6 +38,7 @@ Cloud features may be dependent on a specific sensor version. Such features are
 | Version / Patch |  Release date | Scope     | Supported until |
 | ------- |  ------------ | ----------- | ------------------- |
 | **24.1** | | | |
+| 24.1.4  |06/2024 | Major |05/2025 |
 | 24.1.3  |04/2024 | Major |03/2025 |
 | 24.1.2  |02/2024 | Major |01/2025 |
 | **23.2** | | | |
@@ -106,6 +107,16 @@ To understand whether a feature is supported in your sensor version, check the r
 
 ## Versions 24.1.x
 
+### Version 24.1.4
+
+**Release date**: 06/2024
+
+**Supported until**: 05/2025
+
+This version includes the following updates and enhancements:
+
+- [Malicious URL path alert](whats-new.md#malicious-url-path-alert)
+
 ### Version 24.1.3
 
 **Release date**: 04/2024
 
@@ -19,9 +19,9 @@ Features released earlier than nine months ago are described in the [What's new
 
 |Service area  |Updates  |
 |---------|---------|
-| **OT networks** | - [Malicious alert path](#malicious-alert-path)<br> |
+| **OT networks** | - [Malicious URL path alert](#malicious-url-path-alert)<br> |
 
-### Malicious alert path
+### Malicious URL path alert
 
 The new alert, Malicious URL path, allows users to identify malicious paths in legitimate URLs. The Malicious URL path alert expands Defender for IoT's threat identification to include generic URL signatures, crucial for countering a wide range of cyber threats.
 
 
@@ -3,7 +3,7 @@ title: Azure IoT Central quotas and limits
 description: This article lists the key quotas and limits that apply to an IoT Central application including from the underlying DPS and IoT Hub services.
 author: dominicbetts
 ms.author: dobett
-ms.date: 10/26/2023
+ms.date: 06/17/2024
 ms.topic: conceptual
 ms.service: iot-central
 services: iot-central
@@ -57,12 +57,12 @@ There are various quotas and limits that apply to IoT Central applications. IoT
 
 ## Data export
 
-| Item | Quota or limit | Notes |
-| ---- | -------------- | ----- |
-| Number of data export jobs | 10 | If you need to exceed this limit, contact support to discuss increasing it for your application. |
-| Number of data export destinations | 10 | If you need to exceed this limit, contact support to discuss increasing it for your application. |
-| Number of data export destinations per job | 10 | If you need to exceed this limit, contact support to discuss increasing it for your application. |
-| Number of filters and enrichments per data export job | 10 | If you need to exceed this limit, contact support to discuss increasing it for your application. |
+| Item | Quota or limit |
+| ---- | -------------- |
+| Number of data export jobs | 10 |
+| Number of data export destinations | 10 |
+| Number of data export destinations per job | 10 |
+| Number of filters and enrichments per data export job | 10 |
 
 For large volumes of export data, you may experience up to 60 seconds of latency. Typically, the latency is much lower than this.
 
 
@@ -39,7 +39,7 @@ sections:
       - question: |
           How many IoT Central applications can I deploy in my subscription?
         answer: |
-          Each Azure subscription has default quotas that could impact the scope of your IoT solution. Currently, IoT Central limits the number of applications you can deploy in a subscription to 100. If you need to increase this limit, contact [Microsoft support](https://azure.microsoft.com/support/options/).
+          Each Azure subscription has default quotas that could impact the scope of your IoT solution. IoT Central limits the number of applications you can deploy in a subscription to 100.
                     
       - question: |
           How do I file a ticket with customer support?
 
@@ -6,7 +6,7 @@ ms.author: vijain
 ms.manager: kmadnani
 ms.topic: conceptual
 ms.service: azure-migrate
-ms.date: 10/16/2023
+ms.date: 06/18/2024
 ms.custom: engagement-fy24
 ---
 
@@ -40,7 +40,7 @@ Linux file system/guest storage | For the latest information, see the [Linux fil
 Network/Storage | For the latest information, see the [network](../site-recovery/vmware-physical-azure-support-matrix.md#network) and [storage](../site-recovery/vmware-physical-azure-support-matrix.md#storage) prerequisites for Site Recovery. Azure Migrate and Modernize provides identical network/storage requirements.
 Azure requirements | For the latest information, see the [Azure network](../site-recovery/vmware-physical-azure-support-matrix.md#azure-vm-network-after-failover), [storage](../site-recovery/vmware-physical-azure-support-matrix.md#azure-storage), and [compute](../site-recovery/vmware-physical-azure-support-matrix.md#azure-compute) requirements for Site Recovery. Azure Migrate and Modernize has identical requirements for physical server migration.
 Mobility service | Install the Mobility service agent on each machine you want to migrate.
-UEFI boot | Supported. UEFI-based machines are migrated to Azure generation 2 VMs.  <br/><br/> The OS disk should have up to four partitions, and volumes should be formatted with NTFS.
+UEFI boot | Supported. <br/><br/> Windows : NTFS  <br/><br/> Linux: The following filesystem types are supported: ext4, xfs, btrfs. Some filesystems such as ZFS, UFS, ReiserFS, and DazukoFS may not be supported subject to additional command requirements to mount them.
 UEFI - Secure boot         | Not supported for migration.
 Target disk | Machines can be migrated only to managed disks (standard HDD, standard SSD, premium SSD) in Azure.
 Ultra disk | Ultra disk migration isn't supported from the Azure Migrate and Modernize portal. You have to do an out-of-band migration for the disks that are recommended as Ultra disks. That is, you can migrate selecting it as premium disk type and change it to Ultra disk after migration.