Merging changes synced from https://github.com/MicrosoftDocs/azure-docs-pr (branch live)

Author: Banani-Rath

.openpublishing.publish.config.json

@@ -75,6 +75,12 @@
       "branch": "master",
       "branch_mapping": {}
     },
+    {
+      "path_to_root": "azure_storage-snippets",
+      "url": "https://github.com/Azure-Samples/AzureStorageSnippets",
+      "branch": "master",
+      "branch_mapping": {}
+    },
     {
       "path_to_root": "azure_cli_scripts",
       "url": "https://github.com/Azure-Samples/azure-cli-samples",

.openpublishing.redirection.json

@@ -5938,6 +5938,11 @@
       "redirect_url": "/azure/azure-app-configuration/policy-reference",
       "redirect_document_id": false
     },
+    {
+      "source_path_from_root": "/articles/azure-functions/functions-test-a-function.md",
+      "redirect_url": "/azure/azure-functions/supported-languages",
+      "redirect_document_id": false
+    },    
     {
       "source_path_from_root": "/articles/azure-app-configuration/quickstart-azure-function-csharp.md",
       "redirect_url": "/azure/azure-app-configuration/quickstart-azure-functions-csharp",

articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-onboard-enable-tenant.md

@@ -66,7 +66,7 @@ To view a video on how to enable CloudKnox in your Azure AD tenant, select
 
         1. Copy the script on the **Welcome** screen:
 
-            `az ad ap create --id b46c3ac5-9da6-418f-a849-0a7a10b3c6c`
+            `az ad sp create --id b46c3ac5-9da6-418f-a849-0a07a10b3c6c`
 
         1. If you have an Azure subscription, return to the Azure AD portal and select **Cloud Shell** on the navigation bar.
             If you don't have an Azure subscription, open a command prompt on a Windows Server.
@@ -106,4 +106,4 @@ Use the **Data Collectors** dashboard in CloudKnox to configure data collection
 
 - For an overview of CloudKnox, see [What's CloudKnox Permissions Management?](cloudknox-overview.md)
 - For a list of frequently asked questions (FAQs) about CloudKnox, see [FAQs](cloudknox-faqs.md).
-- For information on how to start viewing information about your authorization system in CloudKnox, see [View key statistics and data about your authorization system](cloudknox-ui-dashboard.md).
+- For information on how to start viewing information about your authorization system in CloudKnox, see [View key statistics and data about your authorization system](cloudknox-ui-dashboard.md).

articles/active-directory/develop/scenario-web-api-call-api-overview.md

@@ -32,7 +32,7 @@ This scenario, in which a protected web API calls other web APIs, builds on [Sce
 
 ## Specifics
 
-The app registration part that's related to API permissions is classical. The app configuration involves using the OAuth 2.0 On-Behalf-Of flow to exchange the JWT bearer token against a token for a downstream API. This token is added to the token cache, where it's available in the web API's controllers, and it can then acquire a token silently to call downstream APIs.
+The app registration part that's related to API permissions is classical. The app configuration involves using the OAuth 2.0 On-Behalf-Of flow to use the JWT bearer token for obtaining a second token for a downstream API. The second token in this case is added to the token cache, where it's available in the web API's controllers. This second token can be used to acquire an access token silently to call downstream APIs whenever required. 
 
 ## Next steps
 

articles/active-directory/fundamentals/whats-new.md

@@ -31,7 +31,168 @@ Azure AD receives improvements on an ongoing basis. To stay up to date with the
 
 This page is updated monthly, so revisit it regularly. If you're looking for items older than six months, you can find them in [Archive for What's new in Azure Active Directory](whats-new-archive.md).
 
+## February 2022
+ 
+
+---
+ 
+
+[1776632](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1776632&triage=true&fullScreen=false&_a=edit)
+
+### General Availability - France digital accessibility requirement
+
+**Type:** Plan for change  
+**Service category:** Other  
+**Product capability:** End User Experiences  
+ 
+
+This change provides users who are signing into Azure Active Directory on iOS, Android, and Web UI flavors information about the accessibility of Microsoft's online services via a link on the sign-in page. This ensures that the France digital accessibility compliance requirements are met. The change will only be available for French language experiences.[Learn more](https://www.microsoft.com/fr-fr/accessibility/accessibilite/accessibility-statement)
+ 
+
 ---
+ 
+
+[1424495](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1424495&triage=true&fullScreen=false&_a=edit)
+
+### General Availability - Downloadable access review history report
+
+**Type:** New feature  
+**Service category:** Access Reviews  
+**Product capability:** Identity Governance  
+ 
+
+With Azure Active Directory (Azure AD) Access Reviews, you can create a downloadable review history to help your organization gain more insight. The report pulls the decisions that were taken by reviewers when a report is created. These reports can be constructed to include specific access reviews, for a specific time frame, and can be filtered to include different review types and review results.[Learn more](../governance/access-reviews-downloadable-review-history.md)
+ 
+
+---
+
+
+---
+ 
+
+[1309010](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1309010&triage=true&fullScreen=false&_a=edit)
+
+### Public Preview of Identity Protection for Workload Identities
+
+**Type:** New feature  
+**Service category:** Identity Protection  
+**Product capability:** Identity Security & Protection  
+ 
+
+Azure AD Identity Protection is extending its core capabilities of detecting, investigating, and remediating identity-based risk to workload identities. This allows organizations to better protect their applications, service principals, and managed identities. We are also extending Conditional Access so you can block at-risk workload identities. [Learn more](../identity-protection/concept-workload-identity-risk.md)
+ 
+
+---
+ 
+
+[1213729](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1213729&triage=true&fullScreen=false&_a=edit)
+
+### Public Preview - Cross-tenant access settings for B2B collaboration
+
+**Type:** New feature  
+**Service category:** B2B  
+**Product capability:** Collaboration  
+**Clouds impacted:** China;Public (Microsoft 365, GCC);US Gov (GCC-H, DoD)
+ 
+
+Cross-tenant access settings enable you to control how users in your organization collaborate with members of external Azure AD organizations. Now you’ll have granular inbound and outbound access control settings that work on a per org, user, group, and application basis. These settings also make it possible for you to trust security claims from external Azure AD organizations like multifactor authentication (MFA), device compliance, and hybrid Azure AD joined devices. [Learn more](../external-identities/cross-tenant-access-overview.md)
+ 
+
+---
+ 
+
+[1424498](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1424498&triage=true&fullScreen=false&_a=edit)
+
+### Public preview - Create Azure AD access reviews with multiple stages of reviewers
+
+**Type:** New feature  
+**Service category:** Access Reviews  
+**Product capability:** Identity Governance  
+ 
+
+Use multi-stage reviews to create Azure AD access reviews in sequential stages, each with its own set of reviewers and configurations. Supports multiple stages of reviewers to satisfy scenarios such as: independent groups of reviewers reaching quorum, escalations to other reviewers, and reducing burden by allowing for later stage reviewers to see a filtered-down list. For public preview, multi-stage reviews are only supported on reviews of groups and applications. [Learn more](../governance/create-access-review.md)
+ 
+
+---
+ 
+
+[1775818](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1775818&triage=true&fullScreen=false&_a=edit)
+
+### New Federated Apps available in Azure AD Application gallery - February 2022
+
+**Type:** New feature  
+**Service category:** Enterprise Apps  
+**Product capability:** 3rd Party Integration  
+ 
+
+In February 2022 we added the following 20 new applications in our App gallery with Federation support
+
+[Embark](../saas-apps/embark-tutorial.md),  [FENCE-Mobile RemoteManager SSO](../saas-apps/fence-mobile-remotemanager-sso-tutorial.md), [カオナビ](../saas-apps/kao-navi-tutorial.md), [Adobe Identity Management (OIDC)](../saas-apps/adobe-identity-management-tutorial.md), [AppRemo](../saas-apps/appremo-tutorial.md), [Live Center](https://livecenter.norkon.net/Login), [Offishall](https://app.offishall.io/), [MoveWORK Flow](https://www.movework-flow.fm/login), [Cirros SL](https://www.cirros.net/cirros-sl/), [ePMX Procurement Software](https://azure.epmxweb.com/admin/index.php?), [Vanta O365](https://app.vanta.com/connections), [Hubble](../saas-apps/hubble-tutorial.md), [Medigold Gateway](https://gateway.medigoldcore.com), [クラウドログ](../saas-apps/crowd-log-tutorial.md),[Amazing People Schools](../saas-apps/amazing-people-schools-tutorial.md), [Salus](https://salus.com/login), [XplicitTrust Network Access](https://console.xplicittrust.com/#/dashboard), [Spike Email - Mail & Team Chat](https://spikenow.com/web/), [AltheaSuite](https://planmanager.altheasuite.com/), [Balsamiq Wireframes](../saas-apps/balsamiq-wireframes-tutorial.md).
+
+You can also find the documentation of all the applications from here: [https://aka.ms/AppsTutorial](https://aka.ms/AppsTutorial),
+
+For listing your application in the Azure AD app gallery, please read the details here: [https://aka.ms/AzureADAppRequest](https://aka.ms/AzureADAppRequest)
+
+
+ 
+
+---
+ 
+
+[1242804](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1242804&triage=true&fullScreen=false&_a=edit)
+
+### Two new MDA detections in Identity Protection
+
+**Type:** New feature  
+**Service category:** Identity Protection  
+**Product capability:** Identity Security & Protection  
+ 
+
+Identity Protection has added two new detections from Microsoft Defender for Cloud Apps, (formerly MCAS). The Mass Access to Sensitive Files detection detects anomalous user activity, and the Unusual Addition of Credentials to an OAuth app detects suspicious service principal activity.[Learn more](../identity-protection/concept-identity-protection-risks.md)
+ 
+
+---
+ 
+
+[1780796](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1780796&triage=true&fullScreen=false&_a=edit)
+
+### Public preview - New provisioning connectors in the Azure AD Application Gallery - February 2022
+
+**Type:** New feature  
+**Service category:** App Provisioning  
+**Product capability:** 3rd Party Integration  
+ 
+
+You can now automate creating, updating, and deleting user accounts for these newly integrated apps:
+
+[BullseyeTDP](../saas-apps/bullseyetdp-provisioning-tutorial.md)
+[GitHub Enterprise Managed User (OIDC)](../saas-apps/github-enterprise-managed-user-oidc-provisioning-tutorial.md)
+[Gong](../saas-apps/gong-provisioning-tutorial.md)
+[LanSchool Air](../saas-apps/lanschool-air-provisioning-tutorial.md)
+[ProdPad](../saas-apps/prodpad-provisioning-tutorial.md)
+For more information about how to better secure your organization by using automated user account provisioning, see [Automate user provisioning to SaaS applications with Azure AD](../app-provisioning/user-provisioning.md).
+ 
+
+---
+ 
+
+[1686037](https://identitydivision.visualstudio.com/IAM/IXR/_queries?id=1686037&triage=true&fullScreen=false&_a=edit)
+
+### General Availability - Privileged Identity Management (PIM) role activation for SharePoint Online enhancements
+
+**Type:** Changed feature  
+**Service category:** Privileged Identity Management  
+**Product capability:** Privileged Identity Management  
+ 
+
+We have improved the Privileged Identity management (PIM) time to role activation for SharePoint Online.  Now, when activating a role in PIM for SharePoint Online, you should be able to use your permissions right away in SharePoint Online.  This change will roll out in stages, so you might not yet see these improvements in your organization. [Learn more](../privileged-identity-management/pim-how-to-activate-role.md) 
+ 
+
+---
+
+ 
+ 
+
 
 ## January 2022
 

articles/active-directory/manage-apps/tutorial-manage-access-security.md

@@ -129,20 +129,20 @@ The My Apps portal enables administrators and users to manage the applications u
 
 You can keep the resources for future use, or if you're not going to continue to use the resources created in this tutorial, delete them with the following steps.
 
-## Delete the application
+### Delete the application
 
 1. In the left menu, select **Enterprise applications**. The **All applications** pane opens and displays a list of the applications in your Azure AD tenant. Search for and select the application that you want to delete.
 1. In the **Manage** section of the left menu, select **Properties**.
 1. At the top of the **Properties** pane, select **Delete**, and then select **Yes** to confirm you want to delete the application from your Azure AD tenant.
 
-## Delete the conditional access policy
+### Delete the conditional access policy
 
 1. Select **Enterprise applications**.
 1. Under **Security**, select **Conditional Access**.
 1. Search for and select **MFA Pilot**.
 1. Select **Delete** at the top of the pane.
 
-## Delete the group
+### Delete the group
 
 1. Select **Azure Active Directory**, and then select **Groups**.
 1. From the **Groups - All groups** page, search for and select the **MFA-Test-Group** group.