MicrosoftDocs
diff --git a/‎.openpublishing.publish.config.json
Lines changed: 6 additions & 0 deletions b/‎.openpublishing.publish.config.json
Lines changed: 6 additions & 0 deletions
diff --git a/‎.openpublishing.redirection.json
Lines changed: 5 additions & 0 deletions b/‎.openpublishing.redirection.json
Lines changed: 5 additions & 0 deletions
diff --git a/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-howto-view-role-policy.md
Lines changed: 16 additions & 16 deletions b/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-howto-view-role-policy.md
Lines changed: 16 additions & 16 deletions
diff --git a/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-onboard-enable-tenant.md
Lines changed: 2 additions & 2 deletions b/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-onboard-enable-tenant.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-product-data-sources.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-product-data-sources.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-ui-remediation.md
Lines changed: 45 additions & 45 deletions b/‎articles/active-directory/cloud-infrastructure-entitlement-management/cloudknox-ui-remediation.md
Lines changed: 45 additions & 45 deletions
diff --git a/‎articles/active-directory/develop/scenario-web-api-call-api-overview.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/develop/scenario-web-api-call-api-overview.md
Lines changed: 1 addition & 1 deletion
@@ -75,6 +75,12 @@
       "branch": "master",
       "branch_mapping": {}
     },
+    {
+      "path_to_root": "azure_storage-snippets",
+      "url": "https://github.com/Azure-Samples/AzureStorageSnippets",
+      "branch": "master",
+      "branch_mapping": {}
+    },
     {
       "path_to_root": "azure_cli_scripts",
       "url": "https://github.com/Azure-Samples/azure-cli-samples",
 
@@ -5938,6 +5938,11 @@
       "redirect_url": "/azure/azure-app-configuration/policy-reference",
       "redirect_document_id": false
     },
+    {
+      "source_path_from_root": "/articles/azure-functions/functions-test-a-function.md",
+      "redirect_url": "/azure/azure-functions/supported-languages",
+      "redirect_document_id": false
+    },    
     {
       "source_path_from_root": "/articles/azure-app-configuration/quickstart-azure-function-csharp.md",
       "redirect_url": "/azure/azure-app-configuration/quickstart-azure-functions-csharp",
 
@@ -32,8 +32,8 @@ The **Remediation** dashboard in CloudKnox Permissions Management (CloudKnox) en
 1. On the CloudKnox home page, select the **Remediation** tab, and then select the **Role/Policies** subtab.
 
     The **Role/Policies list** displays a list of existing roles/policies and the following information about each role/policy
-        - **Role/Policy name**: The name of the roles/policies available to you.
-        - **Role/Policy type**: **Custom**, **System**, or **CloudKnox only**
+        - **Role/Policy Name**: The name of the roles/policies available to you.
+        - **Role/Policy Type**: **Custom**, **System**, or **CloudKnox Only**
         - **Actions**: The type of action you can perform on the role/policy, **Clone**, **Modify**, or **Delete**
 
 
@@ -42,24 +42,24 @@ The **Remediation** dashboard in CloudKnox Permissions Management (CloudKnox) en
     The **Tasks** list appears, displaying:
     - A list of **Tasks**.
     - **For AWS:** 
-        - The **Users**, **Groups**, and **Roles** the task is **Directly assigned to**.
-        - The **Group members** and **Role identities** the task is **Indirectly assessable by**. 
+        - The **Users**, **Groups**, and **Roles** the task is **Directly Assigned To**.
+        - The **Group Members** and **Role Identities** the task is **Indirectly Accessible By**. 
 
     - **For Azure:** 
-        - The **Users**, **Groups**, **Enterprise applications** and **Managed identities** the task is **Directly assigned to**.
-        - The **Group members** the task is **Indirectly assessable by**.
+        - The **Users**, **Groups**, **Enterprise Applications** and **Managed Identities** the task is **Directly Assigned To**.
+        - The **Group Members** the task is **Indirectly Accessible By**.
 
     - **For GCP:** 
-        - The **Users**, **Groups**, and **Service accounts** the task is **Directly assigned to**.
-        - The **Group members** the task is **Indirectly assessable by**.
+        - The **Users**, **Groups**, and **Service Accounts** the task is **Directly Assigned To**.
+        - The **Group Members** the task is **Indirectly Accessible By**.
 
 1. To close the role/policy details, select the arrow to the left of the role/policy name.
 
 ## Export information about roles/policies
 
 - **Export CSV**: Select this option to export the displayed list of roles/policies as a comma-separated values (CSV) file. 
 
-    When the file is successfully exported, a message appears: **Exported successfully.**
+    When the file is successfully exported, a message appears: **Exported Successfully.**
 
     - Check your email for a message from the CloudKnox Customer Success Team. This email contains a link to: 
         - The **Role Policy Details** report in CSV format.
@@ -73,20 +73,20 @@ The **Remediation** dashboard in CloudKnox Permissions Management (CloudKnox) en
 1. On the CloudKnox home page, select the **Remediation** dashboard, and then select the **Role/Policies** tab.
 1. To filter the roles/policies, select from the following options:
 
-    - **Authorization system type**: Select **AWS**, **Azure**, or **GCP**.
-    - **Authorization system**: Select the accounts you want.
-    - **Role/Policy type**: Select from the following options:
+    - **Authorization System Type**: Select **AWS**, **Azure**, or **GCP**.
+    - **Authorization System**: Select the accounts you want.
+    - **Role/Policy Type**: Select from the following options:
 
          - **All**: All managed roles/policies.
          - **Custom**: A customer-managed role/policy. 
          - **System**: A cloud service provider-managed role/policy. 
-         - **CloudKnox only**: A role/policy created by CloudKnox.
+         - **CloudKnox Only**: A role/policy created by CloudKnox.
 
-    - **Role/Policy status**: Select **All**, **Assigned**, or **Unassigned**.
-    - **Role/Policy usage**: Select **All** or **Unused**.
+    - **Role/Policy Status**: Select **All**, **Assigned**, or **Unassigned**.
+    - **Role/Policy Usage**: Select **All** or **Unused**.
 1. Select **Apply**.
 
-    To discard your changes, select **Reset filter**.
+    To discard your changes, select **Reset Filter**.
 
 
 ## Next steps
 
@@ -66,7 +66,7 @@ To view a video on how to enable CloudKnox in your Azure AD tenant, select
 
         1. Copy the script on the **Welcome** screen:
 
-            `az ad ap create --id b46c3ac5-9da6-418f-a849-0a7a10b3c6c`
+            `az ad sp create --id b46c3ac5-9da6-418f-a849-0a07a10b3c6c`
 
         1. If you have an Azure subscription, return to the Azure AD portal and select **Cloud Shell** on the navigation bar.
             If you don't have an Azure subscription, open a command prompt on a Windows Server.
@@ -106,4 +106,4 @@ Use the **Data Collectors** dashboard in CloudKnox to configure data collection
 
 - For an overview of CloudKnox, see [What's CloudKnox Permissions Management?](cloudknox-overview.md)
 - For a list of frequently asked questions (FAQs) about CloudKnox, see [FAQs](cloudknox-faqs.md).
-- For information on how to start viewing information about your authorization system in CloudKnox, see [View key statistics and data about your authorization system](cloudknox-ui-dashboard.md).
+- For information on how to start viewing information about your authorization system in CloudKnox, see [View key statistics and data about your authorization system](cloudknox-ui-dashboard.md).
@@ -76,7 +76,7 @@ You can use the **Data Collectors** dashboard in CloudKnox Permissions Managemen
 1. Select the ellipses **(...)** at the end of the row in the table.
 1. Select **Delete Configuration**. 
 
-    The **M-CIEM Onboarding - Summary** box displays.
+    The **CloudKnox Onboarding - Summary** box displays.
 1. Select **Delete**.
 1. Check your email for a one time password (OTP) code, and enter it in **Enter OTP**. 
 
 
@@ -36,29 +36,29 @@ This article provides an overview of the components of the **Remediation** dashb
 
     - **Roles/Policies**: Use this subtab to perform Create Read Update Delete (CRUD) operations on roles/policies.
     - **Permissions**: Use this subtab to perform Read Update Delete (RUD) on granted permissions.
-    - **Role/Policy template**: Use this subtab to create a template for roles/policies template.
+    - **Role/Policy Template**: Use this subtab to create a template for roles/policies template.
     - **Requests**: Use this subtab to view approved, pending, and processed Permission on Demand (POD) requests.
-    - **My requests**: Use this tab to manage lifecycle of the POD request either created by you or needs your approval. 
-    - **Settings**: Use this subtab to select **Request role/policy filters**, **Request settings**, and **Auto-approve** settings.
+    - **My Requests**: Use this tab to manage lifecycle of the POD request either created by you or needs your approval. 
+    - **Settings**: Use this subtab to select **Request Role/Policy Filters**, **Request Settings**, and **Auto-Approve** settings.
 
 1. Use the dropdown to select the **Authorization System Type** and **Authorization System**, and then select **Apply**.
 
 ## View and create roles/policies 
 
 The **Role/Policies** subtab provides the following settings that you can use to view and create a role/policy.
 
-- **Authorization system type**: Displays a dropdown with authorization system types you can access, Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
-- **Authorization system**: Displays a list of authorization systems accounts you can access.
-- **Role/Policy type**: A dropdown with available role/policy types. You can select **All**, **Custom**, **System**, or **CloudKnox only**.
-- **Role/Policy status**: A dropdown with available role/policy statuses. You can select **All**, **Assigned**, or **Unassigned**.
-- **Role/Policy usage**: A dropdown with **All** or **Unused** roles/policies.
+- **Authorization System Type**: Displays a dropdown with authorization system types you can access, Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
+- **Authorization System**: Displays a list of authorization systems accounts you can access.
+- **Policy Type**: A dropdown with available role/policy types. You can select **All**, **Custom**, **System**, or **CloudKnox Only**.
+- **Policy Status**: A dropdown with available role/policy statuses. You can select **All**, **Assigned**, or **Unassigned**.
+- **Policy Usage**: A dropdown with **All** or **Unused** roles/policies.
 - **Apply**: Select this option to save the changes you've made.
 - **Reset Filter**: Select this option to discard the changes you've made.
 
-The **Role/Policies list** displays a list of existing roles/policies and the following information about each role/policy.
+The **Policy list** displays a list of existing roles/policies and the following information about each role/policy.
 
-- **Role/Policy name**: The name of the roles/policies available to you.
-- **Role/Policy type**: **Custom**, **System**, or **CloudKnox only**
+- **Policy Name**: The name of the roles/policies available to you.
+- **Policy Type**: **Custom**, **System**, or **CloudKnox Only**
 - **Actions** 
     - Select **Clone** to create a duplicate copy of the role/policy.
     - Select **Modify** to change the existing role/policy.
@@ -69,7 +69,7 @@ Other options available to you:
 - **Reload**: Select this option to refresh the displayed list of roles/policies.
 - **Export CSV**: Select this option to export the displayed list of roles/policies as a comma-separated values (CSV) file. 
 
-    When the file is successfully exported, a message appears: **Exported successfully.**
+    When the file is successfully exported, a message appears: **Exported Successfully.**
 
     - Check your email for a message from the CloudKnox Customer Success Team. This email contains a link to: 
         - The **Role Policy Details** report in CSV format.
@@ -81,19 +81,19 @@ Other options available to you:
 
 The **Permissions** subtab provides the following settings that you can use to add filters to your permissions.
 
-- **Authorization system type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
-- **Authorization system**: Displays a list of authorization systems accounts you can access.
-- **Search for**: A dropdown from which you can select **Group**, **User**, or **Role**.
-- **User status**: A dropdown from which you can select **Any**, **Active**, or **Inactive**.
-- **Privilege creep index** (PCI): A dropdown from which you can select a PCI rating of **Any**, **High**, **Medium**, or **Low**.
+- **Authorization System Type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
+- **Authorization System**: Displays a list of authorization systems accounts you can access.
+- **Search For**: A dropdown from which you can select **Group**, **User**, or **Role**.
+- **User Status**: A dropdown from which you can select **Any**, **Active**, or **Inactive**.
+- **Privilege Creep Index** (PCI): A dropdown from which you can select a PCI rating of **Any**, **High**, **Medium**, or **Low**.
 - **Task Usage**: A dropdown from which you can select **Any**, **Granted**, **Used**, or **Unused**.
-- **Enter a username**: A dropdown from which you can select a username.
+- **Enter a Username**: A dropdown from which you can select a username.
 - **Enter a Group Name**: A dropdown from which you can select a group name.
 - **Apply**: Select this option to save the changes you've made and run the filter.
 - **Reset Filter**: Select this option to discard the changes you've made.
 - **Export CSV**: Select this option to export the displayed list of roles/policies as a comma-separated values (CSV) file. 
 
-    When the file is successfully exported, a message appears: **Exported successfully.**
+    When the file is successfully exported, a message appears: **Exported Successfully.**
 
     - Check your email for a message from the CloudKnox Customer Success Team. This email contains a link to: 
         - The **Role Policy Details** report in CSV format.
@@ -102,17 +102,17 @@ The **Permissions** subtab provides the following settings that you can use to a
 
 ## Create templates for roles/policies
 
-Use the **Role/Policy template** subtab to create a template for roles/policies.
+Use the **Role/Policy Template** subtab to create a template for roles/policies.
 
 1. Select:
-    - **Authorization system type**: Displays a dropdown with authorization system types you can access, WS, Azure, and GCP.
-    - **Create template**: Select this option to create a template.
+    - **Authorization System Type**: Displays a dropdown with authorization system types you can access, WS, Azure, and GCP.
+    - **Create Template**: Select this option to create a template.
 
 1. In the **Details** page, make the required selections:
-    - **Authorization system type**: Select the authorization system types you want, **AWS**, **Azure**, or **GCP**.
-    - **Template name**: Enter a name for your template, and then select **Next**.
+    - **Authorization System Type**: Select the authorization system types you want, **AWS**, **Azure**, or **GCP**.
+    - **Template Name**: Enter a name for your template, and then select **Next**.
 
-1. In the **Statements** page,  complete the **Tasks**, **Resources**, **Request conditions** and **Effect** sections. Then select **Save** to save your role/policy template.
+1. In the **Statements** page,  complete the **Tasks**, **Resources**, **Request Conditions** and **Effect** sections. Then select **Save** to save your role/policy template.
 
 Other options available to you:
 - **Search**: Select this option to search for a specific role/policy.
@@ -123,22 +123,22 @@ Other options available to you:
 Use the **Requests** tab to view a list of **Pending**, **Approved**, and **Processed** requests for permissions your team members have made.
 
 - Select:
-    - **Authorization system type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
-    - **Authorization system**: Displays a list of authorization systems accounts you can access.
+    - **Authorization System Type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
+    - **Authorization System**: Displays a list of authorization systems accounts you can access.
 
 Other options available to you:
 
 - **Reload**: Select this option to refresh the displayed list of roles/policies.
 - **Search**: Select this option to search for a specific role/policy.
 - **Columns**: Select one or more of the following to view more information about the request:
-    - **Submitted by**
-    - **On behalf of**
-    - **Authorization system**
-    - **Tasks/scope/policies**
-    - **Request date**
+    - **Submitted By**
+    - **On Behalf Of**
+    - **Authorization System**
+    - **Tasks/Scope/Policies**
+    - **Request Date**
     - **Schedule**
     - **Submitted**
-    - **Reset to default**: Select this option to discard your settings.
+    - **Reset to Default**: Select this option to discard your settings.
 
 ### View pending requests
 
@@ -174,21 +174,21 @@ The **Processed** table displays information about the requests that have been p
 Use the **My Requests** subtab to view a list of **Pending**, **Approved**, and **Processed** requests for permissions your team members have made and you must approve or reject.
 
 - Select:
-    - **Authorization system type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
-    - **Authorization system**: Displays a list of authorization systems accounts you can access.
+    - **Authorization System Type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
+    - **Authorization System**: Displays a list of authorization systems accounts you can access.
 
 Other options available to you:
 
 - **Reload**: Select this option to refresh the displayed list of roles/policies.
 - **Search**: Select this option to search for a specific role/policy.
 - **Columns**: Select one or more of the following to view more information about the request:
-    - **On behalf of**
-    - **Authorization system**
-    - **Tasks/scope/policies**
-    - **Request date**
+    - **On Behalf Of**
+    - **Authorization System**
+    - **Tasks/Scope/Policies**
+    - **Request Date**
     - **Schedule**
-    - **Reset to default**: Select this option to discard your settings.
-- **New request**: Select this option to create a new request for permissions. For more information, see Create a request for permissions.
+    - **Reset to Default**: Select this option to discard your settings.
+- **New Request**: Select this option to create a new request for permissions. For more information, see Create a request for permissions.
 
 ### View pending requests
 
@@ -218,12 +218,12 @@ The **Processed** table displays information about the requests that have been p
 
 ## Make setting selections for requests and auto-approval
 
-The **Settings** subtab provides the following settings that you can use to make setting selections to **Request role/policy filters**, **Request settings**, and **Auto-approve** requests.
+The **Settings** subtab provides the following settings that you can use to make setting selections to **Request Role/Policy Filters**, **Request Settings**, and **Auto-Approve** requests.
 
-- **Authorization system type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
-- **Authorization system**: Displays a list of authorization systems accounts you can access.
+- **Authorization System Type**: Displays a dropdown with authorization system types you can access, AWS, Azure, and GCP.
+- **Authorization System**: Displays a list of authorization systems accounts you can access.
 - **Reload**: Select this option to refresh the displayed list of role/policy filters.
-- **Create filter**: Select this option to create a new filter.
+- **Create Filter**: Select this option to create a new filter.
 
 ## Next steps
 
 
@@ -32,7 +32,7 @@ This scenario, in which a protected web API calls other web APIs, builds on [Sce
 
 ## Specifics
 
-The app registration part that's related to API permissions is classical. The app configuration involves using the OAuth 2.0 On-Behalf-Of flow to exchange the JWT bearer token against a token for a downstream API. This token is added to the token cache, where it's available in the web API's controllers, and it can then acquire a token silently to call downstream APIs.
+The app registration part that's related to API permissions is classical. The app configuration involves using the OAuth 2.0 On-Behalf-Of flow to use the JWT bearer token for obtaining a second token for a downstream API. The second token in this case is added to the token cache, where it's available in the web API's controllers. This second token can be used to acquire an access token silently to call downstream APIs whenever required. 
 
 ## Next steps