MicrosoftDocs
diff --git a/‎.openpublishing.redirection.json
Lines changed: 20 additions & 0 deletions b/‎.openpublishing.redirection.json
Lines changed: 20 additions & 0 deletions
diff --git a/‎articles/active-directory-domain-services/compare-identity-solutions.md
Lines changed: 2 additions & 2 deletions b/‎articles/active-directory-domain-services/compare-identity-solutions.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/active-directory/develop/v1-permissions-and-consent.md
100644100755
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/develop/v1-permissions-and-consent.md
100644100755
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/application-gateway/custom-waf-rules-overview.md
Lines changed: 3 additions & 0 deletions b/‎articles/application-gateway/custom-waf-rules-overview.md
Lines changed: 3 additions & 0 deletions
diff --git a/‎articles/azure-cache-for-redis/cache-troubleshoot-data-loss.md
Lines changed: 1 addition & 1 deletion b/‎articles/azure-cache-for-redis/cache-troubleshoot-data-loss.md
Lines changed: 1 addition & 1 deletion
@@ -16125,6 +16125,11 @@
       "redirect_url": "/azure/stream-analytics/stream-analytics-troubleshoot-input",
       "redirect_document_id": false
     },
+    {
+      "source_path": "articles/stream-analytics/powerbi-output-managed-identity.md",
+      "redirect_url": "/azure/stream-analytics/stream-analytics-define-outputs#power-bi",
+      "redirect_document_id": false
+    },
     {
       "source_path": "articles/stream-analytics/vs-code-how-to.md",
       "redirect_url": "/azure/stream-analytics/vscode-explore-jobs",
@@ -42618,6 +42623,21 @@
       "redirect_url": "/azure/cognitive-services/content-moderator",
       "redirect_document_id": false
     },
+    {
+      "source_path": "articles/cognitive-services/Content-Moderator/image-moderation-quickstart-dotnet.md",
+      "redirect_url": "/azure/cognitive-services/content-moderator/dotnet-sdk-quickstart",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "articles/cognitive-services/Content-Moderator/text-moderation-quickstart-dotnet.md",
+      "redirect_url": "/azure/cognitive-services/content-moderator/dotnet-sdk-quickstart",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "articles/cognitive-services/Content-Moderator/moderation-reviews-quickstart-dotnet.md",
+      "redirect_url": "/azure/cognitive-services/content-moderator/dotnet-sdk-quickstart",
+      "redirect_document_id": false
+    },
     {
       "source_path": "articles/dev-spaces/quickstart-cli-dockerfile.md",
       "redirect_url": "/azure/dev-spaces/quickstart-cli",
 
@@ -94,7 +94,7 @@ On an Azure AD-joined or registered device, user authentication happens using mo
 | Representation in the directory | Device objects in the Azure AD directory            | Computer objects in the Azure AD DS managed domain                        |
 | Authentication                  | OAuth / OpenID Connect based protocols              | Kerberos and NTLM protocols                                               |
 | Management                      | Mobile Device Management (MDM) software like Intune | Group Policy                                                              |
-| Networking                      | Works over the internet                             | Requires machines to be on the same virtual network as the managed domain |
+| Networking                      | Works over the internet                             | Must be connected to, or peered with, the virtual network where the managed domain is deployed |
 | Great for...                    | End-user mobile or desktop devices                  | Server VMs deployed in Azure                                              |
 
 ## Next steps
@@ -107,4 +107,4 @@ To get started with using Azure AD DS, [create an Azure AD DS managed domain usi
 [custom-ou]: create-ou.md
 [manage-gpos]: manage-group-policy.md
 [tutorial-ldaps]: tutorial-configure-ldaps.md
-[tutorial-create]: tutorial-create-instance.md
+[tutorial-create]: tutorial-create-instance.md
@@ -34,7 +34,7 @@ Azure Active Directory (Azure AD) makes extensive use of permissions for both OA
 Azure AD defines two kinds of permissions:
 
 * **Delegated permissions** - Are used by apps that have a signed-in user present. For these apps, either the user or an administrator consents to the permissions that the app requests and the app is delegated permission to act as the signed-in user when making calls to an API. Depending on the API, the user may not be able to consent to the API directly and would instead [require an administrator to provide "admin consent"](/azure/active-directory/develop/active-directory-devhowto-multi-tenant-overview).
-* **Application permissions** - Are used by apps that run without a signed-in user present; for example, apps that run as background services or daemons. Application permissions can only be [consented by an administrator](/azure/active-directory/develop/active-directory-v2-scopes#requesting-consent-for-an-entire-tenant) because they are typically powerful and allow access to data across user-boundaries, or data that would otherwise be restricted to administrators.
+* **Application permissions** - Are used by apps that run without a signed-in user present; for example, apps that run as background services or daemons. Application permissions can only be [consented to by administrators](/azure/active-directory/develop/active-directory-v2-scopes#requesting-consent-for-an-entire-tenant) because they are typically powerful and allow access to data across user-boundaries, or data that would otherwise be restricted to administrators. Users who are defined as owners of the resource application (i.e. the API which publishes the permissions) are also allowed to grant application permissions for the APIs they own.
 
 Effective permissions are the permissions that your app will have when making requests to an API. 
 
 
@@ -28,6 +28,9 @@ If you want to use *or* for two different conditions, the two conditions must be
 
 Regular expressions are also supported in custom rules, just as they are in the core rule sets. For examples of these rules, see "Example 3" and "Example 5" in [Create and use custom web application firewall rules](create-custom-waf-rules.md).
 
+> [!NOTE]
+> Custom rules are not available in the v1 SKU WAF.
+
 ## Allowing or blocking traffic
 
 Allowing or blocking traffic is simple with custom rules. For example, you can block all traffic that comes from a range of IP addresses. You can make another rule to allow traffic if the request comes from a certain browser.
 
@@ -98,7 +98,7 @@ If you find that most of or all keys have disappeared from your cache, you can c
 |---|---|
 | [Key flushing](#key-flushing) | Keys have been manually purged |
 | [Incorrect database selection](#incorrect-database-selection) | Redis is set to use a non-default database |
-| [Redis instance failure](#redis-instance-failure) | Keys are removed by explicit delete commands |
+| [Redis instance failure](#redis-instance-failure) | Redis server is unavailable |
 
 ### Key flushing