Merge branch 'main' of https://github.com/MicrosoftDocs/azure-docs-pr into dns-design

Author: greg-lindsay

articles/active-directory/governance/index.yml

@@ -7,8 +7,8 @@ metadata:
   author: owinfreyatl
   description: "Learn how to protect, monitor, and audit access to critical assets while ensuring employee productivity."
   manager: amycolannino
-  ms.author: owinfreyatl
-  ms.date: 12/06/2022
+  ms.author: owinfrey
+  ms.date: 03/07/2023
   ms.service: active-directory
   ms.subservice: compliance
   ms.topic: landing-page

articles/active-directory/governance/manage-workflow-properties.md

@@ -7,7 +7,7 @@ manager: amycolannino
 ms.service: active-directory
 ms.workload: identity
 ms.topic: how-to 
-ms.date: 01/31/2022
+ms.date: 03/07/2023
 ms.subservice: compliance
 ms.custom: template-how-to 
 ---
@@ -28,11 +28,11 @@ You can update the following basic information without creating a new workflow.
 
 If you change any other parameters, a new version is required to be created as outlined in the [Managing workflow versions](manage-workflow-tasks.md) article.
 
-If done via the Azure portal, the new version is created automatically. If done using Microsoft Graph, you will have to manually create a new version of the workflow.  For more information, see [Edit the properties of a workflow using Microsoft Graph](#edit-the-properties-of-a-workflow-using-microsoft-graph).
+If done via the Azure portal, the new version is created automatically. If done using Microsoft Graph, you must manually create a new version of the workflow.  For more information, see [Edit the properties of a workflow using Microsoft Graph](#edit-the-properties-of-a-workflow-using-microsoft-graph).
 
 ## Edit the properties of a workflow using the Azure portal
 
-To edit the properties of a workflow using the Azure portal, you'll do the following steps:
+To edit the properties of a workflow using the Azure portal, you do the following steps:
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
 
@@ -42,7 +42,7 @@ To edit the properties of a workflow using the Azure portal, you'll do the follo
 
 1. On the left menu, select **Workflows (Preview)**.
 
-1. Here you'll see a list of all of your current workflows. Select the workflow that you want to edit.
+1. Here you see a list of all of your current workflows. Select the workflow that you want to edit.
 
     :::image type="content" source="media/manage-workflow-properties/manage-list.png" alt-text="Screenshot of the manage workflow list.":::
 

articles/active-directory/reports-monitoring/media/recommendation-mfa-from-known-devices/mfa-configuration-settings.png

@@ -8,7 +8,7 @@ ms.service: active-directory
 ms.topic: reference
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 03/02/2023
+ms.date: 03/07/2023
 ms.author: sarahlipsey
 ms.reviewer: hafowler
 
@@ -19,37 +19,35 @@ ms.collection: M365-identity-device-management
 
 [Azure AD recommendations](overview-recommendations.md) is a feature that provides you with personalized insights and actionable guidance to align your tenant with recommended best practices.
 
-
 This article covers the recommendation to minimize multi-factor authentication (MFA) prompts from known devices. This recommendation is called `tenantMFA` in the recommendations API in Microsoft Graph. 
 
 ## Description
 
 As an admin, you want to maintain security for your company’s resources, but you also want your employees to easily access resources as needed.
 
-MFA enables you to enhance the security posture of your tenant. While enabling MFA is a good practice, you should try to keep the number of MFA prompts your users have to go through at a minimum. One option you have to accomplish this goal is to **allow users to remember multi-factor authentication on devices they trust**.
-
-The remember multi-factor authentication feature sets a persistent cookie on the browser when a user selects the Don't ask again for X days option at sign-in. The user isn't prompted again for MFA from that browser until the cookie expires. If the user opens a different browser on the same device or clears the cookies, they're prompted again to verify.
+MFA enables you to enhance the security posture of your tenant. While enabling MFA is a good practice, you should try to keep the number of MFA prompts your users have to go through at a minimum. One option you have to accomplish this goal is to **allow users to remember multi-factor authentication on trusted devices**.
 
-![Remember MFA on trusted devices](./media/recommendation-mfa-from-known-devices\remember-mfa-on-trusted-devices.png)
+The "remember multi-factor authentication on trusted device" feature sets a persistent cookie on the browser when a user selects the "Don't ask again for X days" option at sign-in. The user isn't prompted again for MFA from that browser until the cookie expires. If the user opens a different browser on the same device or clears the cookies, they're prompted again to verify.
 
 For more information, see [Configure Azure AD Multi-Factor Authentication settings](../authentication/howto-mfa-mfasettings.md).
 
-
-## Logic 
-
-This recommendation shows up, if you have set the remember multi-factor authentication feature to less than 30 days.
-
+This recommendation shows up if you have set the **remember multi-factor authentication** feature to less than 30 days.
 
 ## Value 
 
 This recommendation improves your user's productivity and minimizes the sign-in time with fewer MFA prompts. Ensure that your most sensitive resources can have the tightest controls, while your least sensitive resources can be more freely accessible.
 
 ## Action plan
 
-1. Review [configure Azure AD Multi-Factor Authentication settings](../authentication/howto-mfa-mfasettings.md).  
+1. Review the [How to configure Azure AD Multi-Factor Authentication settings](../authentication/howto-mfa-mfasettings.md) article.  
+1. Go to **Azure AD** > **Multifactor authentication** > select the **Additional cloud-based multifactor authentication settings** link.
+
+    ![Screenshot of the configuration settings link in Azure AD multifactor authentication section.](media/recommendation-mfa-from-known-devices/mfa-configuration-settings.png)
+
+1. Adjust the number of days in the **remember multi-factor authentication on trusted device** section to 90 days.
+
+    ![Remember MFA on trusted devices](./media/recommendation-mfa-from-known-devices\remember-mfa-on-trusted-devices.png)
 
-2. Set the remember multi-factor authentication feature to 90 days.
- 
 
 ## Next steps