Addressed PR feedback

msmbaldwin · msmbaldwin · commit 42e8699dc833 · 2019-06-12T14:25:56.000-07:00
diff --git a/articles/security/azure-security-disk-encryption-overview.md b/articles/security/azure-security-disk-encryption-overview.md
@@ -61,7 +61,7 @@ Azure Disk Encryption does not work for the following scenarios, features, and t
 
 * Encrypting basic tier VM or VMs created through the classic VM creation method.
 * Disabling encryption on an OS drive or data drive of a Linux VM when the OS drive is encrypted.
-* Encrypting OS drive  for Linux virtual machine scale sets.
+* Encrypting OS drive for Linux virtual machine scale sets.
 * Encrypting Windows VMs configured with software-based RAID systems.
 * Encrypting custom images on Linux VMs.
 * Integration with an on-premises key management system.
@@ -74,7 +74,7 @@ Azure Disk Encryption does not work for the following scenarios, features, and t
 When you enable and deploy Azure Disk Encryption for Azure VMs, you can configure the following capabilities to be enabled:
 
 * Encrypting the OS volume to protect the boot volume at rest in your storage.
-* Encryptng data volumes to protect the data volumes at rest in your storage.
+* Encrypting data volumes to protect the data volumes at rest in your storage.
 * Disabling encryption on the OS and data drives for Windows VMs.
 * Disabling encryption on the data drives for Linux VMs (only when the OS drive isn't encrypted).
 * Safeguarding the encryption keys and secrets in your Azure Key Vault subscription.
@@ -86,7 +86,7 @@ Azure Disk Encryption for VMs for Windows and Linux includes:
 
 * [The disk encryption extension for Windows](../virtual-machines/extensions/azure-disk-enc-windows.md).
 * [The disk encryption extension for Linux](../virtual-machines/extensions/azure-disk-enc-linux.md).
-* T[he PowerShell disk encryption cmdlets](/powershell/module/az.compute/set-azvmdiskencryptionextension?view=azps-2.2.0).
+* [The PowerShell disk encryption cmdlets](/powershell/module/az.compute/set-azvmdiskencryptionextension?view=azps-2.2.0).
 * [The Azure CLI disk encryption cmdlets](/cli/azure/vm/encryption?view=azure-cli-latest).
 * [The Azure Resource Manager disk encryption templates](azure-security-disk-encryption-appendix.md#resource-manager-templates).
 
@@ -163,5 +163,3 @@ The following table defines some of the common terms used in Azure disk encrypti
 
 To get started, see the [Azure Disk Encryption prerequisites](azure-security-disk-encryption-prerequisites.md).
 
-> [!div class="nextstepaction"]
-> [Azure Disk Encryption prerequisites](azure-security-disk-encryption-prerequisites.md)
diff --git a/articles/security/azure-security-disk-encryption-prerequisites.md b/articles/security/azure-security-disk-encryption-prerequisites.md
@@ -57,9 +57,9 @@ An example of commands that can be used to mount the data disks and create the n
 **Group Policy:**
  - The Azure Disk Encryption solution uses the BitLocker external key protector for Windows IaaS VMs. For domain joined VMs, don't push any group policies that enforce TPM protectors. For information about the group policy for “Allow BitLocker without a compatible TPM,” see [BitLocker Group Policy Reference](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings#a-href-idbkmk-unlockpol1arequire-additional-authentication-at-startup).
 
--  BitLocker policy on domain joined virtual machines with custom group policy must include the following setting: [Configure user storage of bitlocker recovery information -> Allow 256-bit recovery key](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings). Azure Disk Encryption will fail when custom group policy settings for BitLocker are incompatible. On machines that didn't have the correct policy setting, apply the new policy, force the new policy to update (gpupdate.exe /force), and then restarting may be required.
+-  BitLocker policy on domain joined virtual machines with custom group policy must include the following setting: [Configure user storage of BitLocker recovery information -> Allow 256-bit recovery key](https://docs.microsoft.com/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings). Azure Disk Encryption will fail when custom group policy settings for BitLocker are incompatible. On machines that didn't have the correct policy setting, apply the new policy, force the new policy to update (gpupdate.exe /force), and then restarting may be required.
 
-- Azure Disk Encryption will fail if domain level group policy blocks the AES-CBC algorithm, which is used by Bitlocker.
+- Azure Disk Encryption will fail if domain level group policy blocks the AES-CBC algorithm, which is used by BitLocker.
 
 
 ## <a name="bkmk_PSH"></a> Azure PowerShell
@@ -239,7 +239,7 @@ Use [az keyvault update](/cli/azure/keyvault#az-keyvault-update) to enable disk
 3. Select **Enable access to Azure Virtual Machines for deployment** and/or **Enable Access to Azure Resource Manager for template deployment**, if needed. 
 4. Click **Save**.
 
-![Azure key vault advanced access policies](./media/azure-security-disk-encryption/keyvault-portal-fig4.png)
+    ![Azure key vault advanced access policies](./media/azure-security-disk-encryption/keyvault-portal-fig4.png)
 
 
 ## <a name="bkmk_KEK"></a> Set up a key encryption key (optional)
