Acrolinx check and corrections

Acrolinx check and corrections

Author: AlizaBernstein

articles/defender-for-cloud/auto-deploy-azure-monitoring-agent.md

@@ -109,15 +109,15 @@ The required [Log Analytics workspace solutions](../azure-monitor/insights/solut
 
 ### Additional extensions for Defender for Cloud
 
-The Azure Monitor Agent requires additional extensions. The ASA extension, which supports endpoint protection recommendations, fileless attack detection, and Adaptive Application controls, is automatically installed when you auto-provision the Azure Monitor Agent.
+The Azure Monitor Agent requires more extensions. The ASA extension, which supports endpoint protection recommendations, fileless attack detection, and Adaptive Application controls, is automatically installed when you auto-provision the Azure Monitor Agent.
 
 ### Additional security events collection
 
 When you auto-provision the Log Analytics agent in Defender for Cloud, you can choose to collect additional security events to the workspace. When you auto-provision the Azure Monitor agent in Defender for Cloud, the option to collect additional security events to the workspace isn't available. Defender for Cloud doesn't rely on these security events, but they can be helpful for investigations through Microsoft Sentinel.
 
 If you want to collect security events when you auto-provision the Azure Monitor Agent, you can create a [Data Collection Rule](../azure-monitor/essentials/data-collection-rule-overview.md) to collect the required events.
 
-Like for Log Analytics workspaces, Defender for Cloud users are eligible for [500-MB of free data](enhanced-security-features-overview.md#faq---pricing-and-billing) daily on defined data types that include security events.
+Like for Log Analytics workspaces, Defender for Cloud users are eligible for [500 MB of free data](enhanced-security-features-overview.md#faq---pricing-and-billing) daily on defined data types that include security events.
 
 ## Next steps
 

articles/defender-for-cloud/auto-deploy-vulnerability-assessment.md

@@ -16,7 +16,7 @@ To assess your machines for vulnerabilities, you can use one of the following so
 
 - Microsoft's threat and vulnerability management module of Microsoft Defender for Endpoint (included with Microsoft Defender for Servers)
 - An integrated Qualys agent (included with Microsoft Defender for Servers)
-- A Qualys or Rapid7 scanner which you have licensed separately and configured within Defender for Cloud (this is called the Bring Your Own License, or BYOL, scenario)
+- A Qualys or Rapid7 scanner that you've licensed separately and configured within Defender for Cloud (this scenario is called the Bring Your Own License, or BYOL, scenario)
 
 > [!NOTE]
 > To automatically configure a BYOL solution, see [Integrate security solutions in Microsoft Defender for Cloud](partner-integration.md).
@@ -28,6 +28,7 @@ To assess your machines for vulnerabilities, you can use one of the following so
 1. In the Monitoring coverage column of the Defender for Servers plan, select **Settings**.
     :::image type="content" source="media/auto-deploy-azure-monitoring-agent/select-server-setting.png" alt-text="screenshot showing selecting service plan settings for server." lightbox="media/auto-deploy-azure-monitoring-agent/select-server-setting.png":::
 1. Turn on the vulnerability assessment for machines and select the relevant solution.
+    :::image type="content" source="media/auto-deploy-vulnerability-assessment/turn-on-deploy-va.png" alt-text="Screenshot showing where to turn on deployment of vulnerability assessment for machines." lightbox="media/auto-deploy-vulnerability-assessment/turn-on-deploy-va.png":::
 
     > [!TIP]
     > Defender for Cloud enables the following policy: [(Preview) Configure machines to receive a vulnerability assessment provider](https://portal.azure.com/#blade/Microsoft_Azure_Policy/PolicyDetailBlade/definitionId/%2fproviders%2fMicrosoft.Authorization%2fpolicyDefinitions%2f13ce0167-8ca6-4048-8e6b-f996402e3c1b).