MicrosoftDocs
diff --git a/‎articles/active-directory-b2c/custom-domain.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory-b2c/custom-domain.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory/fundamentals/add-custom-domain.md
Lines changed: 32 additions & 37 deletions b/‎articles/active-directory/fundamentals/add-custom-domain.md
Lines changed: 32 additions & 37 deletions
@@ -67,7 +67,7 @@ Every new Azure AD B2C tenant comes with an initial domain name, &lt;domainname&
 
 Follow these steps to add a custom domain to your Azure AD B2C tenant:
 
-1. [Add your custom domain name to Azure AD](../active-directory/fundamentals/add-custom-domain.md#add-your-custom-domain-name-to-azure-ad).
+1. [Add your custom domain name to Azure AD](../active-directory/fundamentals/add-custom-domain.md#add-your-custom-domain-name).
 
     > [!IMPORTANT]
     > For these steps, be sure to sign in to your **Azure AD B2C** tenant and select the **Azure Active Directory** service.
 
@@ -1,6 +1,6 @@
 ---
 title: Add your custom domain
-description: Instructions about how to add a custom domain using Azure Active Directory.
+description: Instructions about how to add your custom domain name to your tenant.
 services: active-directory
 author: barclayn
 manager: amycolannino
@@ -9,108 +9,103 @@ ms.service: active-directory
 ms.workload: identity
 ms.subservice: fundamentals
 ms.topic: how-to
-ms.date: 01/23/2023
+ms.date: 09/12/2023
 ms.author: barclayn
 ms.reviewer: elkuzmen
-ms.custom: "it-pro, seodec18"
-ms.collection: M365-identity-device-management
 ---
+# Add your custom domain name to your tenant
 
-# Add your custom domain name using the Azure portal
-
-Azure Active Directory (Azure AD) tenants come with an initial domain name, *\<domainname>.onmicrosoft.com*. You can't change or delete the initial domain name, but you can add your organization's names. Adding custom domain names helps you to create user names that are familiar to your users, such as *alain\@contoso.com*.
+Azure Active Directory (Azure AD) tenants come with an initial domain name like, `domainname.onmicrosoft.com`. You can't change or delete the initial domain name, but you can add your organization's names. Adding custom domain names helps you to create user names that are familiar to your users, such as `[email protected]`.
 
 ## Before you begin
 
 Before you can add a custom domain name, create your domain name with a domain registrar. For an accredited domain registrar, see [ICANN-Accredited Registrars](https://www.icann.org/registrar-reports/accredited-list.html).
 
-## Create your directory in Azure AD
+## Create your directory
 
 [!INCLUDE [portal updates](~/articles/active-directory/includes/portal-update.md)]
 
-After you get your domain name, you can create your first Azure AD directory. Sign in to the [Azure portal](https://portal.azure.com) for your directory, using an account with the **Owner** role for the subscription.
+After you get your domain name, you can create your first directory. Sign in to the [Azure portal](https://portal.azure.com) for your directory, using an account with the [Owner](/azure/role-based-access-control/built-in-roles#owner) role for the subscription.
 
 Create your new directory by following the steps in [Create a new tenant for your organization](./create-new-tenant.md#create-a-new-tenant-for-your-organization).
 
->[!IMPORTANT]
->The person who creates the tenant is automatically the Global administrator for that tenant. The Global administrator can add additional administrators to the tenant.
+> [!IMPORTANT]
+> The person who creates the tenant is automatically granted [Global Administrator](../roles/permissions-reference.md#global-administrator) privileges. The Global Administrator role is highly privileged and can add additional administrators to the tenant.
 
 For more information about subscription roles, see [Azure roles](../../role-based-access-control/rbac-and-directory-admin-roles.md#azure-roles).
 
->[!TIP]
-> If you plan to federate your on-premises Windows Server AD with Azure AD, then you need to select **I plan to configure this domain for single sign-on with my local Active Directory** when you run the Azure AD Connect tool to synchronize your directories.
+> [!TIP]
+> If you plan to federate on-premises Windows Server Active Directory with Azure AD, then you need to select **I plan to configure this domain for single sign-on with my local Active Directory** when you run the Azure AD Connect tool to synchronize your directories.
 >
-> You also need to register the same domain name you select for federating with your on-premises directory in the **Azure AD Domain** step in the wizard. To see what that setup looks like, see [Verify the Azure AD domain selected for federation](../hybrid/connect/how-to-connect-install-custom.md#verify-the-azure-ad-domain-selected-for-federation). If you don't have the Azure AD Connect tool, you can [download it here](https://go.microsoft.com/fwlink/?LinkId=615771).
+> You also need to register the same domain name you select for federating with your on-premises directory in the **Azure AD Domain** step in the wizard. To see what that setup looks like, see [Verify the domain selected for federation](../hybrid/connect/how-to-connect-install-custom.md#verify-the-azure-ad-domain-selected-for-federation). If you don't have the Azure AD Connect tool, you can [download it here](https://go.microsoft.com/fwlink/?LinkId=615771).
 
-## Add your custom domain name to Azure AD
+## Add your custom domain name
 
 After you create your directory, you can add your custom domain name.
 
-1. Sign in to the [Azure portal](https://portal.azure.com) using a Global administrator account for the directory.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least a [Domain Name Administrator](../roles/permissions-reference.md#domain-name-administrator).
 
-1. Search for and select *Azure Active Directory* from any page. Then select **Custom domain names** > **Add custom domain**.
+1. Browse to **Identity** > **Settings** > **Domain names** > **Add custom domain**.
 
     ![Custom domain names page, with Add custom domain shown](media/add-custom-domain/add-custom-domain.png)
 
-1. In **Custom domain name**, enter your organization's new name, in this example, *contoso.com*. Select **Add domain**.
+1. In **Custom domain name**, enter your organization's domain, in this example, *contoso.com*. Select **Add domain**.
 
     ![Custom domain names page, with Add custom domain page](media/add-custom-domain/add-custom-domain-blade.png)
 
-    >[!IMPORTANT]
-    >You must include *.com*, *.net*, or any other top-level extension for this to work. When adding a custom domain, the Password Policy values will be inherited from the initial domain.
+    > [!IMPORTANT]
+    > You must include *.com*, *.net*, or any other top-level extension for this to work. When adding a custom domain, the Password Policy values will be inherited from the initial domain.
 
-    The unverified domain is added. The **contoso.com** page appears showing your DNS information. Save this information. You need it later to create a TXT record to configure DNS.
+1. The unverified domain is added. The **contoso.com** page appears showing the DNS information needed to validate your domain ownership. Save this information.
 
     ![Contoso page with DNS entry information](media/add-custom-domain/contoso-blade-with-dns-info.png)
 
 ## Add your DNS information to the domain registrar
 
-After you add your custom domain name to Azure AD, you must return to your domain registrar and add the Azure AD DNS information from your copied TXT file. Creating this TXT record for your domain verifies ownership of your domain name.
+After you add your custom domain name, you must return to your domain registrar and add the DNS information from your copied from the previous step. Creating this TXT or MX record for your domain verifies ownership of your domain name.
 
-Go back to your domain registrar and create a new TXT record for your domain based on your copied DNS information. Set the time to live (TTL) to 3600 seconds (60 minutes), and then save the record.
+Go back to your domain registrar and create a new TXT or MX record for your domain based on your copied DNS information. Set the time to live (TTL) to 3600 seconds (60 minutes), and then save the record.
 
->[!IMPORTANT]
->You can register as many domain names as you want. However, each domain gets its own TXT record from Azure AD. Be careful when you enter the TXT file information at the domain registrar. If you enter the wrong or duplicate information by mistake, you'll have to wait until the TTL times out (60 minutes) before you can try again.
+> [!IMPORTANT]
+> You can register as many domain names as you want. However, each domain gets its own TXT or MX record. Be careful when you enter the information at the domain registrar. If you enter the wrong or duplicate information by mistake, you'll have to wait until the TTL times out (60 minutes) before you can try again.
 
 ## Verify your custom domain name
 
-After you register your custom domain name, make sure it's valid in Azure AD. The propagation from your domain registrar to Azure AD can be instantaneous or it can take a few days, depending on your domain registrar.
+After you register your custom domain name, make sure it's valid in Microsoft Entra. The propagation time can be instantaneous or it can take a few days, depending on your domain registrar.
 
 To verify your custom domain name, follow these steps:
 
-1. Sign in to the [Azure portal](https://portal.azure.com) using a Global administrator account for the directory.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least a [Domain Name Administrator](../roles/permissions-reference.md#domain-name-administrator).
 
-1. Search for and select *Azure Active Directory* from any page, then select **Custom domain names**.
+1. Browse to **Identity** > **Settings** > **Domain names**.
 
 1. In **Custom domain names**, select the custom domain name. In this example, select **contoso.com**.
 
     ![Fabrikam - Custom domain names page, with contoso highlighted](media/add-custom-domain/custom-blade-with-contoso-highlighted.png)
 
-1. On the **contoso.com** page, select **Verify** to make sure your custom domain is properly registered and is valid for Azure AD.
+1. On the **contoso.com** page, select **Verify** to make sure your custom domain is properly registered and is valid.
 
     ![Contoso page with DNS entry information and the Verify button](media/add-custom-domain/contoso-blade-with-dns-info-verify.png)
 
-After you've verified your custom domain name, you can delete your verification TXT or MX file.
-
 ## Common verification issues
 
-If Azure AD can't verify a custom domain name, try the following suggestions:
+If you can't verify a custom domain name, try the following suggestions:
 
-- **Wait at least an hour and try again.** DNS records must propagate before Azure AD can verify the domain. This process can take an hour or more.
+- **Wait at least an hour and try again.** DNS records must propagate before you can verify the domain. This process can take an hour or more.
 
 - **If you are trying to verify a child domain, verify the parent domain first.** Make sure the parent domain is created and verified first before you try to verify a child domain.
 
-- **Make sure the DNS record is correct.** Go back to the domain name registrar site. Make sure the entry is there, and that it matches the DNS entry information provided by Azure AD.
+- **Make sure the DNS record is correct.** Go back to the domain name registrar site. Make sure the entry is there, and that it matches the DNS entry information provided in the Microsoft Entra admin center.
 
-  If you can't update the record on the registrar site, share the entry with someone who has permissions to add the entry and verify it's correct.
+   - If you can't update the record on the registrar site, share the entry with someone who has permissions to add the entry and verify it's correct.
 
 - **Make sure the domain name isn't already in use in another directory.** A domain name can only be verified in one directory. If your domain name is currently verified in another directory, it can't also be verified in the new directory. To fix this duplication problem, you must delete the domain name from the old directory. For more information about deleting domain names, see [Manage custom domain names](../enterprise-users/domains-manage.md).
 
-- **Make sure you don't have any unmanaged Power BI tenants.** If your users have activated Power BI through self-service sign-up and created an unmanaged tenant for your organization, you must take over management as an internal or external admin, using PowerShell. For more information, see [Take over an unmanaged directory as administrator in Azure Active Directory](../enterprise-users/domains-admin-takeover.md).
+- **Make sure you don't have any unmanaged Power BI tenants.** If your users have activated Power BI through self-service sign-up and created an unmanaged tenant for your organization, you must take over management as an internal or external admin, using PowerShell. For more information, see [Take over an unmanaged directory](../enterprise-users/domains-admin-takeover.md).
 
 ## Next steps
 
-- Add another Global administrator to your directory. For more information, see [How to assign roles and administrators](./how-subscriptions-associated-directory.md).
+- Add another Global Administrator to your directory. For more information, see [How to assign roles and administrators](./how-subscriptions-associated-directory.md).
 
 - Add users to your domain. For more information, see [How to add or delete users](./add-users.md).