Merge pull request #224936 from GennadNY/gennadyk897

prmerger-automator[bot] · web-flow · commit 76354783901a · 2023-01-24T23:29:39.000Z
Gennadyk897
diff --git a/articles/postgresql/flexible-server/concepts-compare-single-server-flexible-server.md b/articles/postgresql/flexible-server/concepts-compare-single-server-flexible-server.md
@@ -114,8 +114,8 @@ The following table provides a list of high-level features and capabilities comp
 | PgCron, lo, pglogical | No | Yes |
 | pgAudit | Preview | Yes |
 | **Security** | | |
-| Azure Active Directory Support(AAD) | Yes | Preview |
-| Customer managed encryption key(BYOK) | Yes | Preview |
+| Azure Active Directory Support(AAD) | Yes | Yes |
+| Customer managed encryption key(BYOK) | Yes | Yes |
 | SCRAM Authentication (SHA-256) | No | Yes |
 | Secure Sockets Layer support (SSL) | Yes | Yes |
 | **Other features** | | |
diff --git a/articles/postgresql/flexible-server/concepts-data-encryption.md b/articles/postgresql/flexible-server/concepts-data-encryption.md
@@ -103,7 +103,7 @@ When you're using data encryption by using a customer-managed key, here are reco
     :::image type="content" source="media/concepts-data-encryption/key-vault-trusted-service.png" alt-text="Screenshot of an image of networking screen with trusted-service-with-AKV setting." lightbox="media/concepts-data-encryption/key-vault-trusted-service.png":::
 
 > [!NOTE]
->Important to note, that after choosing **disable public access** option in Azure Key Vault networking and allowing only *trusted Microsoft* services you may see error similar to following : *You have enabled the network access control. Only allowed networks will have access to this key vault* while attempting to administer Azure Key Vault via portal through public access, since portal is not considered to be trusted service.
+>Important to note, that after choosing **disable public access** option in Azure Key Vault networking and allowing only *trusted Microsoft* services you may see error similar to following : *You have enabled the network access control. Only allowed networks will have access to this key vault* while attempting to administer Azure Key Vault via portal through public access. This doesn't preclude ability to provide key during CMK setup or fetch keys from Azure Key Vault during server operations. 
 
 Here are recommendations for configuring a customer-managed key:
 
