MicrosoftDocs
diff --git a/‎articles/active-directory-domain-services/TOC.yml
Lines changed: 3 additions & 3 deletions b/‎articles/active-directory-domain-services/TOC.yml
Lines changed: 3 additions & 3 deletions
diff --git a/‎articles/active-directory-domain-services/security-audit-events.md
Lines changed: 17 additions & 17 deletions b/‎articles/active-directory-domain-services/security-audit-events.md
Lines changed: 17 additions & 17 deletions
diff --git a/‎articles/active-directory-domain-services/suspension.md
Lines changed: 5 additions & 5 deletions b/‎articles/active-directory-domain-services/suspension.md
Lines changed: 5 additions & 5 deletions
@@ -49,7 +49,7 @@
       href: concepts-replica-sets.md
     - name: Forests trusts
       href: concepts-forest-trust.md
-    - name: How Microsoft Entra DS synchronization works
+    - name: How Domain Services synchronization works
       href: synchronization.md
     - name: How password hash synchronization works
       href: ../active-directory/hybrid/connect/how-to-connect-password-hash-synchronization.md?context=/azure/active-directory-domain-services/context/azure-ad-ds-context
@@ -71,7 +71,7 @@
           href: create-ou.md
         - name: Create a group managed service account (gMSA)
           href: create-gmsa.md
-    - name: Manage Microsoft Entra DS
+    - name: Manage Domain Services
       items:
         - name: Administer Group Policy
           href: manage-group-policy.md
@@ -89,7 +89,7 @@
           href: change-sku.md
         - name: Retrieve data
           href: how-to-data-retrieval.md
-    - name: Secure Microsoft Entra DS
+    - name: Secure Domain Services
       items:
         - name: Secure your managed domain
           href: secure-your-domain.md
 
@@ -17,35 +17,35 @@ ms.custom: devx-track-azurepowershell
 ---
 # Enable security and DNS audits for Microsoft Entra Domain Services
 
-Microsoft Entra Domain Services (Microsoft Entra DS) security and DNS audits let Azure stream events to targeted resources. These resources include Azure Storage, Azure Log Analytics workspaces, or Azure Event Hub. After you enable security audit events, Microsoft Entra DS sends all the audited events for the selected category to the targeted resource.
+Microsoft Entra Domain Services security and DNS audits let Azure stream events to targeted resources. These resources include Azure Storage, Azure Log Analytics workspaces, or Azure Event Hub. After you enable security audit events, Domain Services sends all the audited events for the selected category to the targeted resource.
 
 You can archive events into Azure storage and stream events into security information and event management (SIEM) software (or equivalent) using Azure Event Hubs, or do your own analysis and using Azure Log Analytics workspaces from the Microsoft Entra admin center.
 
 ## Security audit destinations
 
-You can use Azure Storage, Azure Event Hubs, or Azure Log Analytics workspaces as a target resource for Microsoft Entra DS security audits. These destinations can be combined. For example, you could use Azure Storage for archiving security audit events, but an Azure Log Analytics workspace to analyze and report on the information in the short term.
+You can use Azure Storage, Azure Event Hubs, or Azure Log Analytics workspaces as a target resource for Domain Services security audits. These destinations can be combined. For example, you could use Azure Storage for archiving security audit events, but an Azure Log Analytics workspace to analyze and report on the information in the short term.
 
 The following table outlines scenarios for each destination resource type.
 
 > [!IMPORTANT]
-> You need to create the target resource before you enable Microsoft Entra DS security audits. You can create these resources using the Microsoft Entra admin center, Azure PowerShell, or the Azure CLI.
+> You need to create the target resource before you enable Domain Services security audits. You can create these resources using the Microsoft Entra admin center, Azure PowerShell, or the Azure CLI.
 
 | Target Resource | Scenario |
 |:---|:---|
-|Azure Storage| This target should be used when your primary need is to store security audit events for archival purposes. Other targets can be used for archival purposes, however those targets provide capabilities beyond the primary need of archiving. <br /><br />Before you enable Microsoft Entra DS security audit events, first [Create an Azure Storage account](../storage/common/storage-account-create.md).|
-|Azure Event Hubs| This target should be used when your primary need is to share security audit events with additional software such as data analysis software or security information & event management (SIEM) software.<br /><br />Before you enable Microsoft Entra DS security audit events, [Create an event hub using Microsoft Entra admin center](../event-hubs/event-hubs-create.md)|
-|Azure Log Analytics Workspace| This target should be used when your primary need is to analyze and review secure audits from the Microsoft Entra admin center directly.<br /><br />Before you enable Microsoft Entra DS security audit events, [Create a Log Analytics workspace in the Microsoft Entra admin center.](../azure-monitor/logs/quick-create-workspace.md)|
+|Azure Storage| This target should be used when your primary need is to store security audit events for archival purposes. Other targets can be used for archival purposes, however those targets provide capabilities beyond the primary need of archiving. <br /><br />Before you enable Domain Services security audit events, first [Create an Azure Storage account](../storage/common/storage-account-create.md).|
+|Azure Event Hubs| This target should be used when your primary need is to share security audit events with additional software such as data analysis software or security information & event management (SIEM) software.<br /><br />Before you enable Domain Services security audit events, [Create an event hub using Microsoft Entra admin center](../event-hubs/event-hubs-create.md)|
+|Azure Log Analytics Workspace| This target should be used when your primary need is to analyze and review secure audits from the Microsoft Entra admin center directly.<br /><br />Before you enable Domain Services security audit events, [Create a Log Analytics workspace in the Microsoft Entra admin center.](../azure-monitor/logs/quick-create-workspace.md)|
 
 ## Enable security audit events using the Microsoft Entra admin center
 
-To enable Microsoft Entra DS security audit events using the Microsoft Entra admin center, complete the following steps.
+To enable Domain Services security audit events using the Microsoft Entra admin center, complete the following steps.
 
 > [!IMPORTANT]
-> Microsoft Entra DS security audits aren't retroactive. You can't retrieve or replay events from the past. Microsoft Entra DS can only send events that occur after security audits are enabled.
+> Domain Services security audits aren't retroactive. You can't retrieve or replay events from the past. Domain Services can only send events that occur after security audits are enabled.
 
 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as a Global Administrator.
 1. Search for and select **Microsoft Entra Domain Services**. Choose your managed domain, such as *aaddscontoso.com*.
-1. In the Microsoft Entra DS window, select **Diagnostic settings** on the left-hand side.
+1. In the Domain Services window, select **Diagnostic settings** on the left-hand side.
 1. No diagnostics are configured by default. To get started, select **Add diagnostic setting**.
 
     ![Add a diagnostic setting for Microsoft Entra Domain Services](./media/security-audit-events/add-diagnostic-settings.png)
@@ -71,14 +71,14 @@ To enable Microsoft Entra DS security audit events using the Microsoft Entra adm
 
     You can select different log categories for each targeted resource within a single configuration. This ability lets you choose which logs categories you want to keep for Log Analytics and which logs categories you want to archive, for example.
 
-1. When done, select **Save** to commit your changes. The target resources start to receive Microsoft Entra DS audit events soon after the configuration is saved.
+1. When done, select **Save** to commit your changes. The target resources start to receive Domain Services audit events soon after the configuration is saved.
 
 ## Enable security and DNS audit events using Azure PowerShell
 
-To enable Microsoft Entra DS security and DNS audit events using Azure PowerShell, complete the following steps. If needed, first [install the Azure PowerShell module and connect to your Azure subscription](/powershell/azure/install-azure-powershell).
+To enable Domain Services security and DNS audit events using Azure PowerShell, complete the following steps. If needed, first [install the Azure PowerShell module and connect to your Azure subscription](/powershell/azure/install-azure-powershell).
 
 > [!IMPORTANT]
-> Microsoft Entra DS audits aren't retroactive. You can't retrieve or replay events from the past. Microsoft Entra DS can only send events that occur after audits are enabled.
+> Domain Services audits aren't retroactive. You can't retrieve or replay events from the past. Domain Services can only send events that occur after audits are enabled.
 
 1. Authenticate to your Azure subscription using the [Connect-AzAccount](/powershell/module/Az.Accounts/Connect-AzAccount) cmdlet. When prompted, enter your account credentials.
 
@@ -90,12 +90,12 @@ To enable Microsoft Entra DS security and DNS audit events using Azure PowerShel
 
     * **Azure Log Analytic workspaces** - [Create a Log Analytics workspace with Azure PowerShell](../azure-monitor/logs/powershell-workspace-configuration.md).
     * **Azure storage** - [Create a storage account using Azure PowerShell](../storage/common/storage-account-create.md?tabs=azure-powershell)
-    * **Azure event hubs** - [Create an event hub using Azure PowerShell](../event-hubs/event-hubs-quickstart-powershell.md). You may also need to use the [New-AzEventHubAuthorizationRule](/powershell/module/az.eventhub/new-azeventhubauthorizationrule) cmdlet to create an authorization rule that grants Microsoft Entra DS permissions to the event hub *namespace*. The authorization rule must include the **Manage**, **Listen**, and **Send** rights.
+    * **Azure event hubs** - [Create an event hub using Azure PowerShell](../event-hubs/event-hubs-quickstart-powershell.md). You may also need to use the [New-AzEventHubAuthorizationRule](/powershell/module/az.eventhub/new-azeventhubauthorizationrule) cmdlet to create an authorization rule that grants Domain Services permissions to the event hub *namespace*. The authorization rule must include the **Manage**, **Listen**, and **Send** rights.
 
         > [!IMPORTANT]
         > Ensure you set the authorization rule on the event hub namespace and not the event hub itself.
 
-1. Get the resource ID for your Microsoft Entra DS managed domain using the [Get-AzResource](/powershell/module/Az.Resources/Get-AzResource) cmdlet. Create a variable named *$aadds.ResourceId* to hold the value:
+1. Get the resource ID for your Domain Services managed domain using the [Get-AzResource](/powershell/module/Az.Resources/Get-AzResource) cmdlet. Create a variable named *$aadds.ResourceId* to hold the value:
 
     ```azurepowershell
     $aadds = Get-AzResource -name aaddsDomainName
@@ -138,7 +138,7 @@ Log Analytic workspaces let you view and analyze the security and DNS audit even
 * [Get started with log queries in Azure Monitor](../azure-monitor/logs/get-started-queries.md)
 * [Create and share dashboards of Log Analytics data](../azure-monitor/visualize/tutorial-logs-dashboards.md)
 
-The following sample queries can be used to start analyzing audit events from Microsoft Entra DS.
+The following sample queries can be used to start analyzing audit events from Domain Services.
 
 ### Sample query 1
 
@@ -206,7 +206,7 @@ AADDomainServicesAccountLogon
 
 ## Audit security and DNS event categories
 
-Microsoft Entra DS security and DNS audits align with traditional auditing for traditional AD DS domain controllers. In hybrid environments, you can reuse existing audit patterns so the same logic may be used when analyzing the events. Depending on the scenario you need to troubleshoot or analyze, the different audit event categories need to be targeted.
+Domain Services security and DNS audits align with traditional auditing for traditional AD DS domain controllers. In hybrid environments, you can reuse existing audit patterns so the same logic may be used when analyzing the events. Depending on the scenario you need to troubleshoot or analyze, the different audit event categories need to be targeted.
 
 The following audit event categories are available:
 
@@ -226,7 +226,7 @@ The following audit event categories are available:
 
 ## Event IDs per category
 
- Microsoft Entra DS security and DNS audits record the following event IDs when the specific action triggers an auditable event:
+ Domain Services security and DNS audits record the following event IDs when the specific action triggers an auditable event:
 
 | Event Category Name | Event IDs |
 |:---|:---|
 
@@ -1,6 +1,6 @@
 ---
 title: Suspended domains in Microsoft Entra Domain Services | Microsoft Docs
-description: Learn about the different health states for a Microsoft Entra DS managed domain and how to restore a suspended domain.
+description: Learn about the different health states for a Microsoft Entra Domain Services managed domain and how to restore a suspended domain.
 services: active-directory-ds
 author: justinha
 manager: amycolannino
@@ -16,7 +16,7 @@ ms.author: justinha
 ---
 # Understand the health states and resolve suspended domains in Microsoft Entra Domain Services
 
-When Microsoft Entra Domain Services (Microsoft Entra DS) is unable to service a managed domain for a long period of time, it puts the managed domain into a suspended state. If a managed domain remains in a suspended state, it's automatically deleted. To keep your Microsoft Entra DS managed domain healthy and avoid suspension, resolve any alerts as quickly as you can.
+When Microsoft Entra Domain Services is unable to service a managed domain for a long period of time, it puts the managed domain into a suspended state. If a managed domain remains in a suspended state, it's automatically deleted. To keep your Domain Services managed domain healthy and avoid suspension, resolve any alerts as quickly as you can.
 
 This article explains why managed domains are suspended, and how to recover a suspended domain.
 
@@ -70,7 +70,7 @@ When a managed domain is in the *Needs Attention* state, the Azure platform may
 A managed domain enters the **Suspended** state for one of the following reasons:
 
 * One or more critical alerts haven't been resolved in 15 days.
-    * Critical alerts can be caused by a misconfiguration that blocks access to resources that are needed by Microsoft Entra DS. For example, the alert [AADDS104: Network Error][alert-nsg] has been unresolved for more than 15 days in the managed domain.
+    * Critical alerts can be caused by a misconfiguration that blocks access to resources that are needed by Domain Services. For example, the alert [AADDS104: Network Error][alert-nsg] has been unresolved for more than 15 days in the managed domain.
 * There's a billing issue with the Azure subscription or the Azure subscription has expired.
 
 Managed domains are suspended when the Azure platform can't manage, monitor, patch, or back up the domain. A managed domain stays in a *Suspended* state for 15 days. To maintain access to the managed domain, resolve critical alerts immediately.
@@ -87,7 +87,7 @@ The following behavior is experienced when a managed domain is in the *Suspended
 
 ### How do you know if your managed domain is suspended?
 
-You see an [alert][resolve-alerts] on the Microsoft Entra DS Health page in the Microsoft Entra admin center that notes the domain is suspended. The state of the domain also shows *Suspended*.
+You see an [alert][resolve-alerts] on the Domain Services Health page in the Microsoft Entra admin center that notes the domain is suspended. The state of the domain also shows *Suspended*.
 
 ### Restore a suspended domain
 
@@ -111,7 +111,7 @@ If a managed domain stays in the *Suspended* state for 15 days, it's deleted. Th
 When a managed domain enters the *Deleted* state, the following behavior is seen:
 
 * All resources and backups for the managed domain are deleted.
-* You can't restore the managed domain. You must create a replacement managed domain to reuse Microsoft Entra DS.
+* You can't restore the managed domain. You must create a replacement managed domain to reuse Domain Services.
 * After it's deleted, you aren't billed for the managed domain.
 
 ## Next steps