MicrosoftDocs
diff --git a/‎articles/api-management/api-management-howto-api-inspector.md
Lines changed: 35 additions & 20 deletions b/‎articles/api-management/api-management-howto-api-inspector.md
Lines changed: 35 additions & 20 deletions
diff --git a/‎articles/azure-functions/functions-reference-python.md
Lines changed: 2 additions & 2 deletions b/‎articles/azure-functions/functions-reference-python.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/container-apps/metrics.md
Lines changed: 29 additions & 18 deletions b/‎articles/container-apps/metrics.md
Lines changed: 29 additions & 18 deletions
diff --git a/‎articles/dns/dns-faq.yml
Lines changed: 1 addition & 1 deletion b/‎articles/dns/dns-faq.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/dns/dns-zones-records.md
Lines changed: 11 additions & 1 deletion b/‎articles/dns/dns-zones-records.md
Lines changed: 11 additions & 1 deletion
diff --git a/‎articles/event-hubs/azure-event-hubs-kafka-overview.md
Lines changed: 0 additions & 4 deletions b/‎articles/event-hubs/azure-event-hubs-kafka-overview.md
Lines changed: 0 additions & 4 deletions
@@ -5,7 +5,7 @@ services: api-management
 author: dlepow
 ms.service: azure-api-management
 ms.topic: tutorial
-ms.date: 05/05/2024
+ms.date: 11/04/2024
 ms.author: danlep
 ms.custom: devdivchpfy22
 ---
@@ -36,11 +36,14 @@ In this tutorial, you learn how to:
 
 ## Trace a call in the portal
 
+Follow these steps to trace an API request in the test console in the portal. This example assumes that you [imported](import-and-publish.md) a sample API in a previous tutorial. You can follow similar steps with a different API that you imported.
+
 1. Sign in to the [Azure portal](https://portal.azure.com), and navigate to your API Management instance.
-1. Select **APIs**.
-1. Select  **Demo Conference API** from your API list.
+1. Select **APIs** > **APIs**.
+1. Select  **Petstore API** from your API list.
 1. Select the **Test** tab.
-1. Select the **GetSpeakers** operation.
+1. Select the **Find pet by ID** operation.
+1. In the *petId* **Query parameter**, enter *1*.
 1. Optionally check the value for the **Ocp-Apim-Subscription-Key** header used in the request by selecting the "eye" icon.
     > [!TIP]
     > You can override the value of **Ocp-Apim-Subscription-Key** by retrieving a key for another subscription in the portal. Select **Subscriptions**, and open the context menu (**...**) for another subscription. Select **Show/hide keys** and copy one of the keys. You can also regenerate keys if needed. Then, in the test console, select **+ Add header** to add an **Ocp-Apim-Subscription-Key** header with the new key value.
@@ -55,7 +58,7 @@ In this tutorial, you learn how to:
 
      :::image type="content" source="media/api-management-howto-api-inspector/response-trace-1.png" alt-text="Review response trace":::
 
-    * **Inbound** - Shows the original request API Management received from the caller and the policies applied to the request. For example, if you added policies in [Tutorial: Transform and protect your API](transform-api.md), they'll appear here.
+    * **Inbound** - Shows the original request API Management received from the caller and the policies applied to the request. For example, if you added policies in [Tutorial: Transform and protect your API](transform-api.md), they appear here.
 
     * **Backend** - Shows the requests API Management sent to the API backend and the response it received.
 
@@ -69,25 +72,31 @@ In this tutorial, you learn how to:
 
 ## Enable tracing for an API
 
-You can enable tracing for an API when making requests to API Management using `curl`, a REST client such as Visual Studio Code with the REST Client extension, or a client app. 
+The following high level steps are required to enable tracing for a request to API Management when using `curl`, a REST client such as Visual Studio Code with the REST Client extension, or a client app. Currently these steps must be followed using the [API Management REST API](/rest/api/apimanagement):
+
+1. Obtain a token credential for tracing.
+1. Add the token value in an `Apim-Debug-Authorization` request header to the API Management gateway.
+1. Obtain a trace ID in the `Apim-Trace-Id` response header.
+1. Retrieve the trace corresponding to the trace ID.
 
-Enable tracing by the following steps using calls to the API Management REST API.
+Detailed steps follow.
 
 > [!NOTE]
-> The following steps require API Management REST API version 2023-05-01-preview or later. You must be assigned the Contributor or higher role on the API Management instance to call the REST API.
+> * These steps require API Management REST API version 2023-05-01-preview or later. You must be assigned the Contributor or higher role on the API Management instance to call the REST API.
+> * For information about authenticating to the REST API, see [Azure REST API reference](/rest/api/azure). 
 
-1. Obtain trace credentials by calling the [List debug credentials](/rest/api/apimanagement/gateway/list-debug-credentials) API. Pass the gateway ID in the URI, or use "managed" for the instance's managed gateway in the cloud. For example, to obtain trace credentials for the managed gateway, use a call similar to the following:
+1. **Obtain a token credential** - Call the API Management gateway's [List debug credentials](/rest/api/apimanagement/gateway/list-debug-credentials) API. In the URI, enter "managed" for the instance's managed gateway in the cloud, or the gateway ID for a self-hosted gateway. For example, to obtain trace credentials for the instance's managed gateway, use a request similar to the following:
 
     ```http
     POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/gateways/managed/listDebugCredentials?api-version=2023-05-01-preview
     ```
     
-    In the request body, pass the full resource ID of the API that you want to trace, and specify `purposes` as `tracing`. By default the token credential returned in the response expires after 1 hour, but you can specify a different value in the payload.
+    In the request body, pass the full resource ID of the API that you want to trace, and specify `purposes` as `tracing`. By default the token credential returned in the response expires after 1 hour, but you can specify a different value in the payload. For example:
 
     ```json
     {
         "credentialsExpireAfter": PT1H,
-        "apiId": "<API resource ID>",
+        "apiId": ""/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/apis/{apiName}",
         "purposes": ["tracing"]
     }
     ```
@@ -96,21 +105,27 @@ Enable tracing by the following steps using calls to the API Management REST API
 
     ```json
     {
-          "token": "aid=api-name&p=tracing&ex=......."
+          "token": "aid=api-name&......."
     }
     ```
 
-1. To enable tracing for a request to the API Management gateway, send the token value in an `Apim-Debug-Authorization` header. For example, to trace a call to the demo conference API, use a call similar to the following:
+1. **Add the token value in a request header** - To enable tracing for a request to the API Management gateway, send the token value in an `Apim-Debug-Authorization` header. For example, to trace a call to the Petstore API that you imported in a previous tutorial, you might use a request similar to the following:
 
     ```bash
-    curl -v GET https://apim-hello-world.azure-api.net/conference/speakers HTTP/1.1 -H "Ocp-Apim-Subscription-Key: <subscription-key>" -H "Apim-Debug-Authorization: aid=api-name&p=tracing&ex=......."
+    curl -v https://apim-hello-world.azure-api.net/pet/1 HTTP/1.1 -H "Ocp-Apim-Subscription-Key: <subscription-key>" -H "Apim-Debug-Authorization: aid=api-name&......."
     ```
-1. Depending on the token, the response contains different headers:
-    * If the token is valid, the response includes an `Apim-Trace-Id` header whose value is the trace ID.
+
+1. Depending on the token, the response contains one of the following headers:
+    * If the token is valid, the response includes an `Apim-Trace-Id` header whose value is the trace ID, similar to the following:
+
+        ```http
+        Apim-Trace-Id: 0123456789abcdef....
+        ```
+        
     * If the token is expired, the response includes an `Apim-Debug-Authorization-Expired` header with information about expiration date.
-    * If the token was obtained for wrong API, the response includes an `Apim-Debug-Authorization-WrongAPI` header with an error message.
+    * If the token was obtained for a different API, the response includes an `Apim-Debug-Authorization-WrongAPI` header with an error message.
 
-1. To retrieve the trace, pass the trace ID obtained in the previous step to the [List trace](/rest/api/apimanagement/gateway/list-trace) API for the gateway. For example, to retrieve the trace for the managed gateway, use a call similar to the following:
+1. **Retrieve the trace** - Pass the trace ID obtained in the previous step to the gateway's [List trace](/rest/api/apimanagement/gateway/list-trace) API. For example, to retrieve the trace for the managed gateway, use a request similar to the following:
 
     ```http
     POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ApiManagement/service/{serviceName}/gateways/managed/listTrace?api-version=2023-05-01-preview
@@ -120,7 +135,7 @@ Enable tracing by the following steps using calls to the API Management REST API
 
     ```json
     {
-        "traceId": "<trace ID>"
+        "traceId": "0123456789abcdef...."
     }
     ```
     
@@ -134,7 +149,7 @@ For information about customizing trace information, see the [trace](trace-polic
 In this tutorial, you learned how to:
 
 > [!div class="checklist"]
-> * Trace an example call
+> * Trace an example call in the test conosle
 > * Review request processing steps
 > * Enable tracing for an API
 
 
@@ -1104,7 +1104,7 @@ In Azure Functions, [application settings](functions-app-settings.md), such as s
 | Method | Description |
 | --- | --- |
 | **`os.environ["myAppSetting"]`** | Tries to get the application setting by key name, and raises an error when it's unsuccessful.  |
-| **`os.getenv("myAppSetting")`** | Tries to get the application setting by key name, and returns `null` when it's unsuccessful.  |
+| **`os.getenv("myAppSetting")`** | Tries to get the application setting by key name, and returns `None` when it's unsuccessful.  |
 
 Both of these ways require you to declare `import os`.
 
@@ -1131,7 +1131,7 @@ In Azure Functions, [application settings](functions-app-settings.md), such as s
 | Method | Description |
 | --- | --- |
 | **`os.environ["myAppSetting"]`** | Tries to get the application setting by key name, and raises an error when it's unsuccessful.  |
-| **`os.getenv("myAppSetting")`** | Tries to get the application setting by key name, and returns `null` when it's unsuccessful.  |
+| **`os.getenv("myAppSetting")`** | Tries to get the application setting by key name, and returns `None` when it's unsuccessful.  |
 
 Both of these ways require you to declare `import os`.
 
 
@@ -5,7 +5,7 @@ services: container-apps
 author: v-jaswel
 ms.service: azure-container-apps
 ms.topic: how-to
-ms.date: 09/23/2024
+ms.date: 11/01/2024
 ms.author: v-wellsjason
 ---
 
@@ -21,27 +21,38 @@ Container Apps provides these basic metrics.
 
 | Title | Dimensions | Description | Metric ID | Unit |
 |--|--|--|--|--|
-| CPU Usage | Replica, Revision | CPU consumed by the container app, in nano cores (1,000,000,000 nanocores = 1 core) | `UsageNanoCores` | nanocores |
-| Memory Working Set Bytes | Replica, Revision | Container app working set memory used in bytes | `WorkingSetBytes` | bytes |
-| Network In Bytes | Replica, Revision | Network received bytes | `RxBytes` | bytes |
-| Network Out Bytes | Replica, Revision | Network transmitted bytes | `TxBytes` | bytes |
-| Replica count | Revision | Number of active replicas | `Replicas` | n/a |
-| Replica Restart Count | Replica, Revision | Restarts count of container app replicas | `RestartCount` | n/a |
-| Requests | Replica, Revision, Status Code, Status Code Category | Requests processed | `Requests` | n/a |
-| Reserved Cores | Revision | Number of reserved cores for container app revisions | `CoresQuotaUsed` | n/a |
-| Resiliency Connection Timeouts | Revision | Total connection timeouts | `ResiliencyConnectTimeouts` | n/a |
-| Resiliency Ejected Hosts | Revision | Number of currently ejected hosts | `ResiliencyEjectedHosts` | n/a |
-| Resiliency Ejections Aborted | Revision | Number of ejections aborted due to the max ejection % | `ResiliencyEjectionsAborted` | n/a |
-| Resiliency Request Retries | Revision | Total request retries | `ResiliencyRequestRetries` | n/a |
-| Resiliency Request Timeouts | Revision | Total requests that timed out waiting for a response | `ResiliencyRequestTimeouts` | n/a |
-| Resiliency Requests Pending Connection Pool | Replica | Total requests pending a connection pool connection | `ResiliencyRequestsPendingConnectionPool` | n/a |
-| Total Reserved Cores | None | Total cores reserved for the container app | `TotalCoresQuotaUsed` | n/a |
-
-The metrics namespace is `microsoft.app/containerapps`.
+| CPU Usage | Replica, Revision | CPU consumed by the container app, in nano cores (1,000,000,000 nanocores = 1 core) | `UsageNanoCores` | Nanocores |
+| Memory Working Set Bytes | Replica, Revision | Container app working set memory used in bytes | `WorkingSetBytes` | Bytes |
+| Network In Bytes | Replica, Revision | Network received bytes | `RxBytes` | Bytes |
+| Network Out Bytes | Replica, Revision | Network transmitted bytes | `TxBytes` | Bytes |
+| Replica count | Revision | Number of active replicas | `Replicas` | Count |
+| Replica Restart Count | Replica, Revision | Restarts count of container app replicas | `RestartCount` | Count |
+| Requests | Replica, Revision, Status Code, Status Code Category | Requests processed | `Requests` | Count |
+| Reserved Cores | Revision | Number of reserved cores for container app revisions | `CoresQuotaUsed` | Count |
+| Resiliency Connection Timeouts | Revision | Total connection timeouts | `ResiliencyConnectTimeouts` | Count |
+| Resiliency Ejected Hosts | Revision | Number of currently ejected hosts | `ResiliencyEjectedHosts` | Count |
+| Resiliency Ejections Aborted | Revision | Number of ejections aborted due to the max ejection % | `ResiliencyEjectionsAborted` | Count |
+| Resiliency Request Retries | Revision | Total request retries | `ResiliencyRequestRetries` | Count |
+| Resiliency Request Timeouts | Revision | Total requests that timed out waiting for a response | `ResiliencyRequestTimeouts` | Count |
+| Resiliency Requests Pending Connection Pool | Replica | Total requests pending a connection pool connection | `ResiliencyRequestsPendingConnectionPool` | Count |
+| Total Reserved Cores | None | Total cores reserved for the container app | `TotalCoresQuotaUsed` | Count |
+| Average Response Time (Preview) | Status Code, Status Code Category | Average response time per status code | `ResponseTime` | Milliseconds |
+| CPU Usage Percentage (Preview) | Replica | Percentage of CPU limit used, in percentage points | `CpuPercentage` | Percent |
+| Memory Percentage (Preview) | Replica | Percentage of memory limit used, in percentage points | `MemoryPercentage` | Percent |
+
+The metrics namespace is `Microsoft.App/containerapps`.
 
 > [!NOTE]
 > Replica restart count is the aggregate restart count over the specified time range, not the number of restarts that occurred at a point in time.
 
+Container Apps environments provides this basic metric. You can only view this metric in [Azure Monitor metrics](https://ms.portal.azure.com/?feature.allrts=true#view/Microsoft_Azure_Monitoring/AzureMonitoringBrowseBlade/~/metrics). 
+
+| Title | Dimensions | Description | Metric ID | Unit |
+|--|--|--|--|--|
+| Workload Profile Node Count (Preview) | Workload Profile Name | The node count per workload profile | `NodeCount` | Count |
+
+The metrics namespace is `Microsoft.App/managedEnvironments`.
+
 More runtime specific metrics are available, [Java metrics](./java-metrics.md).
 
 ## Metrics snapshots
 
@@ -79,7 +79,7 @@ sections:
       - question: |
           Does Azure DNS support Domain Name System Security Extensions (DNSSEC)?
         answer: |
-          Yes. See [DNSSEC overview](dnssec.md).
+          Yes. Azure Public DNS supports DNSSEC. For more information, see [DNSSEC overview](dnssec.md).
           
       - question: |
           Does Azure DNS support zone transfers (AXFR/IXFR)?
 
@@ -6,7 +6,7 @@ ms.assetid: be4580d7-aa1b-4b6b-89a3-0991c0cda897
 ms.service: azure-dns
 ms.topic: concept-article
 ms.custom: H1Hack27Feb2017
-ms.date: 10/30/2024
+ms.date: 11/04/2024
 ms.author: greglin
 ---
 
@@ -102,6 +102,16 @@ When calling the Azure DNS REST API, you need to specify each TXT string separat
 
 The multiple strings in a DNS record shouldn't be confused with the multiple TXT records in a TXT record set.  A TXT record set can contain multiple records, *each of which* can contain multiple strings.  Azure DNS supports a total string length of up to 4096 characters in each TXT record set (across all records combined).
 
+### DS records
+
+The delegation signer (DS) record is a [DNSSEC](dnssec.md) resource record type that is used to secure a delegation. To create a DS record in a zone, the zone must first be signed with DNSSEC.
+
+### TLSA records
+
+A TLSA (Transport Layer Security Authentication) record is used to associate a TLS server certificate or public key with the domain name where the record is found. A TLSA record links the public key (a TLS server certificate) to the domain name, providing an additional layer of security for TLS connections. 
+
+To use TLSA records effectively, [DNSSEC](dnssec.md) must be enabled on your domain. This ensures that the TLSA records can be trusted and properly validated
+
 ## Tags and metadata
 
 ### Tags
 
@@ -58,10 +58,6 @@ Standalone and without ksqlDB, Kafka Streams has fewer capabilities than many al
 - [Apache Flink](event-hubs-kafka-flink-tutorial.md)
 - [Apache Flink on HDInsight on AKS](../hdinsight-aks/flink/flink-overview.md)
 - [Akka Streams](event-hubs-kafka-akka-streams-tutorial.md)
- 
-The listed services and frameworks can generally acquire event streams and reference data directly from a diverse set of sources through adapters. Kafka Streams can only acquire data from Apache Kafka and your analytics projects are therefore locked into Apache Kafka. To use data from other sources, you're required to first import data into Apache Kafka with the Kafka Connect framework.
- 
-If you must use the Kafka Streams framework on Azure, [Apache Kafka on HDInsight](../hdinsight/kafka/apache-kafka-introduction.md) provides you with that option. Apache Kafka on HDInsight provides full control over all configuration aspects of Apache Kafka, while being fully integrated with various aspects of the Azure platform, from fault/update domain placement to network isolation to monitoring integration.
 
 ### Kafka Transactions