Syncing with main. Merge branch 'main' of https://github.com/MicrosoftDocs/azure-docs-pr into work-startvm-character

Author: Heidilohr

articles/active-directory-b2c/partner-idemia.md

@@ -8,7 +8,7 @@ ms.service: active-directory
 ms.subservice: domain-services
 ms.workload: identity
 ms.topic: how-to
-ms.date: 01/29/2023
+ms.date: 03/10/2023
 ms.author: justinha 
 ---
 
@@ -174,11 +174,11 @@ Before you begin the migration process, complete the following initial checks an
 
     The following network security group Inbound rules are required for the managed domain to provide authentication and management services. Don't edit or delete these network security group rules for the virtual network subnet your managed domain is deployed into.
 
-    | Inbound port number | Protocol | Source                             | Destination | Action | Required | Purpose |
-    |:-----------:|:--------:|:----------------------------------:|:-----------:|:------:|:--------:|:--------|
-    | 5986        | TCP      | AzureActiveDirectoryDomainServices | Any         | Allow  | Yes      | Management of your domain. |
-    | 3389        | TCP      | CorpNetSaw                         | Any         | Allow  | Optional      | Debugging for support. |
-    | 636         | TCP      | AzureActiveDirectoryDomainServices | Inbound         | Allow  | Optional      | Secure LDAP. |
+    | Source      | Source service tag                 | Source port ranges |  Destination  | Service | Destination port ranges | Protocol | Action | Required | Purpose |
+    |:-----------:|:----------------------------------:|:------------------:|:-------------:|:-------:|:-----------------------:|:--------:|:------:|:--------:|:--------|
+    | Service tag | AzureActiveDirectoryDomainServices | *                  | Any           | WinRM   | 5986        | TCP       | Allow  | Yes       | Management of your domain |
+    | Service tag | CorpNetSaw                         | *                  | Any           | WinRM   | 3389        | TCP       | Allow  | Optional  | Debugging for support |
+    | Service tag | AzureActiveDirectoryDomainServices | *                  | Any           | WinRM   | 636         | TCP       | Allow  | Optional  | Secure LDAP |
 
     Make a note of this target resource group, target virtual network, and target virtual network subnet. These resource names are used during the migration process.
 

articles/active-directory-domain-services/migrate-from-classic-vnet.md

@@ -15,17 +15,19 @@ ms.reviewer: manrath, sureshja
 
 # Validation differences by supported account types (signInAudience)
 
-When registering an application with the Microsoft identity platform for developers, you're asked to select which account types your application supports. In the application object and manifest, this property is `signInAudience`.
+When registering an application with the Microsoft identity platform for developers, you're asked to select which account types your application supports. You can refer to the **Help me choose** link under **Supported account types** during the registration process. The value you select for this property has implications on other app object properties.
 
-The options include the following values:
+After the application has been registered, you can check or change the account type that the application supports at any time. Under the **Manage** pane of your application, search for **Manifest** and find the `signInAudience` value. The different account types, and the corresponding `signInAudience` are shown in the following table:
 
-- **AzureADMyOrg**: Only accounts in the organizational directory where the app is registered (single-tenant).
-- **AzureADMultipleOrgs**: Accounts in any organizational directory (multi-tenant).
-- **AzureADandPersonalMicrosoftAccount**: Accounts in any organizational directory (multi-tenant) and personal Microsoft accounts (for example, Skype, Xbox, and Outlook.com).
+| Supported account types (Register an application) | `signInAudience` (Manifest) |
+|---------------------------------------------------|-----------------------------|
+| Accounts in this organizational directory only (Single tenant) | `AzureADMyOrg` |
+| Accounts in any organizational directory (Any Azure AD directory - Multitenant) | `AzureADMultipleOrgs` |
+| Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox) | `AzureADandPersonalMicrosoftAccount` |
 
-For registered applications, you can find the value for supported account types on the **Authentication** section of an application. You can also find it under the `signInAudience` property in the **Manifest**.
+If you change this property you may need to change other properties first. 
 
-The value you select for this property has implications on other app object properties. As a result, if you change this property you may need to change other properties first.
+## Validation differences
 
 See the following table for the validation differences of various properties for different supported account types.
 

articles/active-directory/develop/supported-accounts-validation.md

@@ -332,7 +332,7 @@ When you click the F5 tile in the Access Panel, you should be automatically sign
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
 
-- [Try F5 with Azure AD](https://aad.portal.azure.com/)
+
 
 - [Configure F5 single sign-on for Header Based application](headerf5-tutorial.md)
 

articles/active-directory/saas-apps/advance-kerbf5-tutorial.md

@@ -164,5 +164,3 @@ When you click the Bright Pattern Omnichannel Contact Center tile in the Access
 - [What is application access and single sign-on with Azure Active Directory? ](../manage-apps/what-is-single-sign-on.md)
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
-
-- [Try Bright Pattern Omnichannel Contact Center with Azure AD](https://aad.portal.azure.com/)

articles/active-directory/saas-apps/bright-pattern-omnichannel-contact-center-tutorial.md

@@ -211,8 +211,6 @@ When you click the CloudPassage tile in the Access Panel, you should be automati
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
 
-- [Try CloudPassage with Azure AD](https://aad.portal.azure.com/)
-
 <!--Image references-->
 
 [12]: ./media/cloudpassage-tutorial/tutorial_cloudpassage_07.png

articles/active-directory/saas-apps/cloudpassage-tutorial.md

@@ -160,4 +160,3 @@ When you click the Collaborative Innovation tile in the Access Panel, you should
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
 
-- [Try Collaborative Innovation with Azure AD](https://aad.portal.azure.com/)

articles/active-directory/saas-apps/collaborativeinnovation-tutorial.md

@@ -167,5 +167,3 @@ When you click the Coralogix tile in the Access Panel, you should be automatical
 - [What is application access and single sign-on with Azure Active Directory? ](../manage-apps/what-is-single-sign-on.md)
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
-
-- [Try Coralogix with Azure AD](https://aad.portal.azure.com/)

articles/active-directory/saas-apps/coralogix-tutorial.md

@@ -149,8 +149,6 @@ When you click the CrossKnowledge Learning Suite tile in the Access Panel, you s
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
 
-- [Try CrossKnowledge Learning Suite with Azure AD](https://aad.portal.azure.com/)
-
 - [What is session control in Microsoft Defender for Cloud Apps?](/cloud-app-security/proxy-intro-aad)
 
 - [How to protect CrossKnowledge Learning Suite with advanced visibility and controls](/cloud-app-security/proxy-intro-aad)

articles/active-directory/saas-apps/crossknowledge-learning-suite-tutorial.md

@@ -161,5 +161,3 @@ When you click the Dovetale tile in the Access Panel, you should be automaticall
 - [What is application access and single sign-on with Azure Active Directory? ](../manage-apps/what-is-single-sign-on.md)
 
 - [What is conditional access in Azure Active Directory?](../conditional-access/overview.md)
-
-- [Try Dovetale with Azure AD](https://aad.portal.azure.com/)