updates

v-albemi · v-albemi · commit 3a4d1235bc09 · 2025-05-06T10:39:10.000-07:00
diff --git a/articles/app-service/app-service-web-configure-tls-mutual-auth.md b/articles/app-service/app-service-web-configure-tls-mutual-auth.md
@@ -9,14 +9,16 @@ ms.topic: how-to
 ms.date: 05/09/2025
 ms.devlang: csharp
 ms.custom: devx-track-csharp, devx-track-extended-java, devx-track-js, devx-track-python
+
+#customer intent: As a developer, I want to set up mutual authentication so that I can restrict access to an App Service app. 
 ---
 
 # Configure TLS mutual authentication in Azure App Service
 
-You can restrict access to your Azure App Service app by enabling different types of authentication for the app. One way to set up authentication is to request a client certificate when the client request is sent by using Transport Layer Security (TLS)/Secure Sockets Layer (SSL) and to validate the certificate. This mechanism is called *mutual authentication* or *client certificate authentication*. This article shows you how to set up your app to use client certificate authentication.
+You can restrict access to your Azure App Service app by enabling various types of authentication for the app. One way to set up authentication is to request a client certificate when the client request is sent by using Transport Layer Security (TLS) / Secure Sockets Layer (SSL) and to validate the certificate. This mechanism is called *mutual authentication* or *client certificate authentication*. This article shows how to set up your app to use client certificate authentication.
 
 > [!NOTE]
-> Your app code is responsible for validating the client certificate. App Service doesn't do anything with this client certificate other than forward it to your app.
+> Your app code must validate the client certificate. App Service doesn't do anything with the client certificate other than forward it to your app.
 >
 > If you access your site over HTTP and not HTTPS, you don't receive any client certificates. If your application requires client certificates, you shouldn't allow requests to your application over HTTP.
 
diff --git a/includes/app-service-ssl-prepare-app.md b/includes/app-service-ssl-prepare-app.md
@@ -10,17 +10,15 @@ ms.custom: "include file"
 
 ## Prepare your web app
 
-To create custom TLS/SSL bindings or to enable client certificates for your App Service app, your [App Service plan](https://azure.microsoft.com/pricing/details/app-service/) must be in the Basic, Standard, Premium, or Isolated tiers.
+If you want to create custom TLS/SSL bindings or to enable client certificates for your App Service app, your [App Service plan](https://azure.microsoft.com/pricing/details/app-service/) must be in the Basic, Standard, Premium, or Isolated tiers.
 
 To make sure that your web app is in the supported pricing tier:
 
 ### Go to your web app
 
 1. In the [Azure portal](https://portal.azure.com) search box, enter **App Services** and then select it in the search results.
 
-   :::image type="content" source="./media/app-service-ssl-prepare-app/app-services.png" alt-text="Screenshot of the Azure portal search box and App Services selected.":::
-
-1. On the **App Services** pane, select your web app name.
+1. On the **App Services** page, select your web app name:
 
    :::image type="content" source="./media/app-service-ssl-prepare-app/select-app-service.png" alt-text="Screenshot of the App Services pane in the Azure portal showing a list of all running web apps, with the first app in the list highlighted.":::
 
