MicrosoftDocs
diff --git a/‎articles/virtual-network-manager/concept-security-admins.md‎
Lines changed: 1 addition & 1 deletion b/‎articles/virtual-network-manager/concept-security-admins.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/virtual-network-manager/faq.md‎
Lines changed: 1 addition & 1 deletion b/‎articles/virtual-network-manager/faq.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/virtual-network-manager/how-to-block-high-risk-ports.md‎
Lines changed: 0 additions & 3 deletions b/‎articles/virtual-network-manager/how-to-block-high-risk-ports.md‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/add-routing-rule-azure-firewall.png‎
36 KB b/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/add-routing-rule-azure-firewall.png‎
36 KB
diff --git a/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/routing-rule-settings.png‎
25.5 KB b/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/routing-rule-settings.png‎
25.5 KB
diff --git a/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/rule-collection-settings.png‎
32.9 KB b/‎articles/virtual-network-manager/media/how-to-deploy-user-defined-routes/rule-collection-settings.png‎
32.9 KB
@@ -44,7 +44,7 @@ Security admin rules allow or deny traffic on specific ports, protocols, and sou
 To enforce security policies across multiple virtual networks, you [create and deploy a security admin configuration](how-to-block-network-traffic-portal.md). This configuration contains a set of rule collections, and each rule collection contains one or more security admin rules. Once created, you associate the rule collection with the network groups requiring security admin rules. The rules are then applied to all virtual networks contained in the network groups when the configuration is deployed. A single configuration provides a centralized and scalable enforcement of security policies across multiple virtual networks.
 
 > [!IMPORTANT]
-> Only one security admin configuration can be deployed to a region. However, multiple connectivity configurations can exist in a region. To deploy multiple security admin configurations to a region, you can [create multiple rule collections](how-to-block-network-traffic-portal.md#add-a-rule-collection) in a security configuration instead.
+> Only one security admin configuration can be deployed to a region. However, multiple connectivity configurations can exist in a region. To deploy multiple security admin configurations to a region, you can [create multiple rule collections](how-to-block-network-traffic-portal.md#add-a-rule-collection-and-security-rule) in a security configuration instead.
 
 ### How security admin rules and network security groups (NSGs) are evaluated
 
 
@@ -147,7 +147,7 @@ Normally, security admin rules are defined to block traffic across virtual netwo
 
 ### How can I deploy multiple security admin configurations to a region?
 
-You can deploy only one security admin configuration to a region. However, multiple connectivity configurations can exist in a region if you [create multiple rule collections](how-to-block-network-traffic-portal.md#add-a-rule-collection) in a security configuration.
+You can deploy only one security admin configuration to a region. However, multiple connectivity configurations can exist in a region if you [create multiple rule collections](how-to-block-network-traffic-portal.md#add-a-rule-collection-and-security-rule) in a security configuration.
 
 ### Do security admin rules apply to Azure private endpoints?
 
 
@@ -113,9 +113,6 @@ In this section, you define the security rule to block high-risk network traffic
 In this section, the rules created take effect when you deploy the security admin configuration.
 
 1. Select **Deployments** under *Settings*, then select **Deploy configuration**.
-
-    :::image type="content" source="./media/how-to-block-network-traffic-portal/deploy-configuration.png" alt-text="Screenshot of deploy a configuration button.":::
-
 1. Select the **Include security admin in your goal state** checkbox and choose the security configuration you created in the last section from the dropdown menu. Then choose the region(s) you would like to deploy this configuration to.
 1. Select **Next** and **Deploy** to deploy the security admin configuration.