Merge branch 'main' of https://github.com/MicrosoftDocs/azure-docs-pr into appgw

Harikrishnan-M-B · Harikrishnan-M-B · commit 711bc98ca6c0 · 2025-02-06T22:56:44.000+05:30
diff --git a/articles/azure-netapp-files/tools-reference.md b/articles/azure-netapp-files/tools-reference.md
@@ -5,7 +5,7 @@ services: azure-netapp-files
 author: b-ahibbard
 ms.service: azure-netapp-files
 ms.topic: conceptual
-ms.date: 08/20/2024
+ms.date: 02/06/2025
 ms.author: anfdocs
 ---
 
@@ -44,3 +44,19 @@ Azure NetApp Files offers [multiple tools](https://aka.ms/anftools) to estimate
 * [**ANFHealthCheck**](https://github.com/seanluce/ANFHealthCheck)
 
     ANFHeathCheck is a PowerShell runbook that generates artful HTML reports of your entire Azure NetApp Files landscape. Optionally, it can automatically reduce over-sized volumes and capacity pools to reduce your TCO.
+
+* [Azure Verified Module (AVM) Terraform Module for Azure NetApp File](https://registry.terraform.io/modules/Azure/avm-res-netapp-netappaccount/azurerm/latest)
+
+    Use the Azure Verified Module (AVM) if you would like to deploy Azure NetApp Files through infrastructure as code using Terraform.
+
+* [Azure Verified Module (AVM) Bicep Module for Azure NetApp Files](https://github.com/Azure/bicep-registry-modules/tree/main/avm/res/net-app/net-app-account)
+
+    Use the Azure Verified Module (AVM) if you would like to deploy Azure NetApp Files through infrastructure as code using Bicep.
+
+* [Azure Monitoring Baseline Alerts for Azure NetApp Files](https://azure.github.io/azure-monitor-baseline-alerts/services/NetApp/netAppAccounts/)
+
+    Use this tool to deploy alerts that should be configured in Azure NetApp Files as a baseline for monitoring.
+
+* [Azure Proactive Resilience Library for Azure NetApp Files](https://azure.github.io/Azure-Proactive-Resiliency-Library-v2/azure-resources/NetApp/netAppAccounts/)
+
+    Learn about recommendations related to resiliency for Azure NetApp Files.
diff --git a/articles/network-watcher/required-rbac-permissions.md b/articles/network-watcher/required-rbac-permissions.md
@@ -6,17 +6,21 @@ author: halkazwini
 ms.author: halkazwini
 ms.service: azure-network-watcher
 ms.topic: concept-article
-ms.date: 09/23/2024
+ms.date: 02/06/2025
 
 #CustomerIntent: As an Azure administrator, I want to know the required Azure role-based access control (Azure RBAC) permissions to use each of the Network Watcher capabilities, so I can assign them correctly to users using any of those capabilities.
 ---
 
 # Azure role-based access control permissions required to use Network Watcher capabilities
 
-Azure role-based access control (Azure RBAC) enables you to assign only the specific actions to members of your organization that they require to complete their assigned responsibilities. To use Azure Network Watcher capabilities, the account you log into Azure with, must be assigned to the [Owner](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#owner), [Contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#contributor), or [Network contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#network-contributor) built-in roles, or assigned to a [custom role](../role-based-access-control/custom-roles.md?toc=/azure/network-watcher/toc.json) that is assigned the actions listed for each Network Watcher capability in the sections that follow. To learn how to check roles assigned to a user for a subscription, see [List Azure role assignments using the Azure portal](../role-based-access-control/role-assignments-list-portal.yml?toc=/azure/network-watcher/toc.json). If you can't see the role assignments, contact the respective subscription admin. To learn more about Network Watcher's capabilities, see [What is Network Watcher?](network-watcher-monitoring-overview.md)
+Azure role-based access control (Azure RBAC) enables you to assign only the specific actions to members of your organization that they require to complete their assigned responsibilities.
+
+To use Azure Network Watcher capabilities, the account you log into Azure with, must be assigned to the [Owner](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#owner), [Contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#contributor), or [Network contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#network-contributor) built-in roles, or assigned to a [custom role](../role-based-access-control/custom-roles.md?toc=/azure/network-watcher/toc.json) that is assigned the actions listed for each Network Watcher capability in the sections that follow.
+
+To learn how to check roles assigned to a user for a subscription, see [List Azure role assignments using the Azure portal](../role-based-access-control/role-assignments-list-portal.yml?toc=/azure/network-watcher/toc.json). If you can't see the role assignments, contact the respective subscription admin.
 
 > [!IMPORTANT]
-> [Network contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#network-contributor) does not cover the following actions:
+> [Network contributor](../role-based-access-control/built-in-roles.md?toc=/azure/network-watcher/toc.json#network-contributor) doesn't cover the following actions:
 > - Microsoft.Storage/* actions listed in [Additional actions](#additional-actions) or [Flow logs](#flow-logs) section.
 > - Microsoft.Compute/* actions listed in [Additional actions](#additional-actions) section.
 > - Microsoft.OperationalInsights/workspaces/\*, Microsoft.Insights/dataCollectionRules/* or Microsoft.Insights/dataCollectionEndpoints/* actions listed in [Traffic analytics](#traffic-analytics) section.
@@ -85,6 +89,9 @@ Since traffic analytics is enabled as part of the flow log resource, the followi
 > [!CAUTION]
 > Data collection rule and data collection endpoint resources are created and managed by traffic analytics. If you perform any operation on these resources, traffic analytics may not function as expected.
 
+> [!IMPORTANT]
+> [Management group](../governance/management-groups/overview.md?toc=/azure/network-watcher/toc.json) inherited permissions are currently not supported for enabling traffic analytics.
+
 ## Connection troubleshoot
 
 | Action                                                              | Description                                                    |
@@ -132,15 +139,14 @@ Since traffic analytics is enabled as part of the flow log resource, the followi
 > | Action                                                              | Description                                                    |
 > | ------------------------------------------------------------------- | -------------------------------------------------------------- |
 > | Microsoft.Network/networkWatchers/topology/action                   | Get topology                                                   |
-> | Microsoft.Network/networkWatchers/topology/read                     | Same as above                                                  |
+> | Microsoft.Network/networkWatchers/topology/read                     | Get topology                                                   |
 
 ## Reachability report
 
 | Action                                                              | Description                                                    |
 | ------------------------------------------------------------------- | -------------------------------------------------------------- |
 | Microsoft.Network/networkWatchers/azureReachabilityReport/action    | Get an Azure reachability report                               |
 
-
 ## Additional actions
 
 Network Watcher capabilities also require the following actions:
@@ -158,3 +164,9 @@ Network Watcher capabilities also require the following actions:
 > | Microsoft.Compute/virtualMachineScaleSets/extensions/Read, </br> Microsoft.Compute/virtualMachineScaleSets/extensions/Write| Check if Network Watcher extension is present, and install if necessary |
 > | Microsoft.Insights/alertRules/*                                     | Set up metric alerts                                          |
 > | Microsoft.Support/*                                                 | Create and update support tickets from Network Watcher        |
+
+## Related content
+
+- [What is Network Watcher?](network-watcher-overview.md)
+
+- [Network Watcher frequently asked questions (FAQ)](frequently-asked-questions.yml)
