update

cherylmc · cherylmc · commit 91480091ef7f · 2022-11-22T13:21:16.000-08:00
diff --git a/articles/vpn-gateway/azure-vpn-client-optional-configurations.md b/articles/vpn-gateway/azure-vpn-client-optional-configurations.md
@@ -159,6 +159,11 @@ You block (exclude) routes. Modify the downloaded profile XML file and add the *
 </azvpnprofile>
 ```
 
+> [!NOTE]
+> - The default status for clientconfig tag is <clientconfig i:nil="true" />, which can be modified based on the requirement.
+> - Duplicate clientconfig tag is not supported on macOS, so make sure the clientconfig tag is not duplicated in the XML file.
+>
+
 ## Next steps
 
 For more information about P2S VPN, see the following articles:
diff --git a/articles/vpn-gateway/openvpn-azure-ad-client-mac.md b/articles/vpn-gateway/openvpn-azure-ad-client-mac.md
@@ -11,7 +11,7 @@ ms.date: 11/22/2022
 ms.author: cherylmc
 
 ---
-# Configure an Azure VPN Client - Azure AD authentication - macOS
+# Configure the Azure VPN Client - Azure AD authentication - macOS
 
 This article helps you configure a VPN client for a computer running macOS 10.15 and later to connect to a virtual network using Point-to-Site VPN and Azure Active Directory authentication. Before you can connect and authenticate using Azure AD, you must first configure your Azure AD tenant. For more information, see [Configure an Azure AD tenant](openvpn-azure-ad-tenant.md). For more information about Point-to-Site connections, see [About Point-to-Site connections](point-to-site-about.md).
 
@@ -21,7 +21,7 @@ This article helps you configure a VPN client for a computer running macOS 10.15
 >
 
 For every computer that you want to connect to a VNet using a Point-to-Site VPN connection, you need to do the following:
- 
+
 * Download the Azure VPN Client to the computer.
 * Configure a client profile that contains the VPN settings. 
 
@@ -31,14 +31,18 @@ If you want to configure multiple computers, you can create a client profile on
 
 Before you can connect and authenticate using Azure AD, you must first configure your Azure AD tenant. For more information, see [Configure an Azure AD tenant](openvpn-azure-ad-tenant.md).
 
-## <a name="download"></a>To download the Azure VPN client
+## Download the Azure VPN Client
 
 1. Download the [Azure VPN Client](https://apps.apple.com/us/app/azure-vpn-client/id1553936137) from the Apple Store.
 1. Install the client on your computer.
 
-## <a name="import"></a>To import a connection profile
+## Generate VPN client profile configuration files
+
+1. To generate the VPN client profile configuration package, see [Working with P2S VPN client profile files](about-vpn-profile-download.md).
+1. Download and extract the VPN client profile configuration files.
+
+## Import VPN client profile configuration files
 
-1. Download and extract the profile files. For steps, see [Working with VPN client profile files](about-vpn-profile-download.md).
 1. On the Azure VPN Client page, select **Import**.
 
    :::image type="content" source="media/openvpn-azure-ad-client-mac/import-1.png" alt-text="Screenshot of Azure VPN Client import selection.":::
@@ -55,7 +59,7 @@ Before you can connect and authenticate using Azure AD, you must first configure
 
    :::image type="content" source="media/openvpn-azure-ad-client-mac/import-5.png" alt-text="Screenshot of Azure VPN Client connected status and disconnect button.":::
 
-## <a name="manual"></a>To create a connection manually
+## To create a connection manually
 
 1. Open the Azure VPN Client. Select **Add** to create a new connection.
 
@@ -87,9 +91,9 @@ Before you can connect and authenticate using Azure AD, you must first configure
 
    :::image type="content" source="media/openvpn-azure-ad-client-mac/add-5.png" alt-text="Screenshot of Azure VPN Client connected and disconnect button.":::
 
-## <a name="remove"></a>To remove a connection profile
+## To remove a VPN connection profile
 
-You can remove the VPN connection profile from your computer. 
+You can remove the VPN connection profile from your computer.
 
 1. Navigate to the Azure VPN Client.
 1. Select the VPN connection that you want to remove, click the dropdown, and select **Remove**.
@@ -102,29 +106,6 @@ You can remove the VPN connection profile from your computer.
 
 You can configure the Azure VPN Client with optional configuration settings such as additional DNS servers, custom DNS, forced tunneling, custom routes, and other additional settings. For a description of the available optional settings and configuration steps, see [Azure VPN Client optional settings](azure-vpn-client-optional-configurations.md).
 
-### How do I block (exclude) routes from the VPN client?
-
-You can modify the downloaded profile XML file and add the **\<excluderoutes>\<route>\<destination>\<mask> \</destination>\</mask>\</route>\</excluderoutes>** tags.
-
-```
-<azvpnprofile>
-<clientconfig>
-
-	<excluderoutes>
-		<route>
-			<destination>x.x.x.x</destination><mask>24</mask>
-		</route>
-	</excluderoutes>
-    
-</clientconfig>
-</azvpnprofile>
-```
-
-> [!NOTE]
-> - The default status for clientconfig tag is <clientconfig i:nil="true" />, which can be modified based on the requirement.
-> - Duplicate clientconfig tag is not supported on macOS, so make sure the clientconfig tag is not duplicated in the XML file.
->
-
 ## Next steps
 
 For more information, see [Create an Azure AD tenant for P2S Open VPN connections that use Azure AD authentication](openvpn-azure-ad-tenant.md).
diff --git a/articles/vpn-gateway/openvpn-azure-ad-client.md b/articles/vpn-gateway/openvpn-azure-ad-client.md
@@ -9,32 +9,32 @@ ms.date: 11/22/2022
 ms.author: cherylmc
 
 ---
-# Configure an Azure VPN Client - Azure AD authentication - Windows
+# Configure the Azure VPN Client - Azure AD authentication - Windows
 
-This article helps you configure the Azure VPN Client on a Windows computer to connect to a virtual network using a VPN Gateway point-to-site VPN and Azure Active Directory authentication. Before you can connect and authenticate using Azure AD, you must first configure your Azure AD tenant. For more information, see [Configure an Azure AD tenant](openvpn-azure-ad-tenant.md). For more information about point-to-site, see [About point-to-site VPN](point-to-site-about.md). The Azure VPN Client supported with Windows FIPS mode with the [KB4577063](https://support.microsoft.com/help/4577063/windows-10-update-kb4577063) hotfix.
+This article helps you configure the Azure VPN Client on a Windows computer to connect to a virtual network using a VPN Gateway point-to-site (P2S) VPN and Azure Active Directory authentication. Before you can connect and authenticate using Azure AD, you must first configure your Azure AD tenant. For more information, see [Configure an Azure AD tenant](openvpn-azure-ad-tenant.md). For more information about point-to-site, see [About point-to-site VPN](point-to-site-about.md). The Azure VPN Client supported with Windows FIPS mode with the [KB4577063](https://support.microsoft.com/help/4577063/windows-10-update-kb4577063) hotfix.
 
 [!INCLUDE [OpenVPN note](../../includes/vpn-gateway-openvpn-auth-include.md)]
 
 ## <a name="workflow"></a>Workflow
 
-After your Azure VPN Gateway point-to-site configuration is complete, your next steps are as follows:
+After your Azure VPN Gateway P2S configuration is complete, your next steps are as follows:
 
 1. Download and install the Azure VPN Client.
 1. Generate the VPN client profile configuration package.
 1. Import the client profile settings to the VPN client.
 1. Create a connection.
 1. Optional - export the profile settings from the client and import to other client computers.
 
-
 ## <a name="download"></a>Download the Azure VPN Client
 
 [!INCLUDE [Download Azure VPN Client](../../includes/vpn-gateway-download-vpn-client.md)]
 
-## <a name="generate"></a>Generate the VPN client profile configuration package
+## <a name="generate"></a>Generate VPN client profile configuration files
 
-To generate the VPN client profile configuration package, see [Working with P2S VPN client profile files](about-vpn-profile-download.md). After you generate the package, follow the steps to extract the profile configuration files.
+1. To generate the VPN client profile configuration package, see [Working with P2S VPN client profile files](about-vpn-profile-download.md).
+1. Download and extract the VPN client profile configuration files.
 
-## <a name="import"></a>Import the profile file
+## <a name="import"></a>Import VPN client profile configuration files
 
 For Azure AD authentication configurations, the **azurevpnconfig.xml** is used. The file is located in the **AzureVPN** folder of the VPN client profile configuration package.
 
