Merge pull request #192376 from MicrosoftDocs/repo_sync_working_branch

Confirm merge from repo_sync_working_branch to main to sync with https://github.com/MicrosoftDocs/azure-docs (branch main)

Author: huypub

articles/active-directory/managed-identities-azure-resources/managed-identity-best-practice-recommendations.md

@@ -106,6 +106,12 @@ will be displayed with “Identity not found” when viewed in the portal. [Read
 
 :::image type="content" source="media/managed-identity-best-practice-recommendations/identity-not-found.png" alt-text="Identity not found for role assignment.":::
 
+Role assignments which are no longer associated with a user or service principal will appear with an `ObjectType` value of `Unknown`. In order to remove them, you can pipe several Azure PowerShell commands together to first get all the role assignments, filter to only those with an `ObjectType` value of `Unknown` and then remove those role assignments from Azure.
+
+```azurepowershell
+Get-AzRoleAssignment | Where-Object {$_.ObjectType -eq "Unknown"} | Remove-AzRoleAssignment 
+```
+
 ## Limitation of using managed identities for authorization
 
 Using Azure AD **groups** for granting access to services is a great way to simplify the authorization process. The idea is simple – grant permissions to a group and add identities to the group so that they inherit the same permissions. This is a well-established pattern from various on-premises systems and works well when the identities represent users. Another option to control authorization in Azure AD is by using [App Roles](../develop/howto-add-app-roles-in-azure-ad-apps.md), which allows you to declare **roles** that are specific to an app (rather than groups, which are a global concept in the directory). You can then [assign app roles to managed identities](how-to-assign-app-role-managed-identity-powershell.md) (as well as users or groups).

articles/azure-app-configuration/quickstart-feature-flag-aspnet-core.md

@@ -138,15 +138,27 @@ dotnet new mvc --no-https --output TestFeatureFlags
     }
     ```
     #### [.NET Core 3.x](#tab/core3x)
-
+    
+    Add the following code:
     ```csharp    
     public void ConfigureServices(IServiceCollection services)
     {
         services.AddControllersWithViews();
+        services.AddAzureAppConfiguration();
         services.AddFeatureManagement();
     }
     ```
 
+    And then add below:
+
+    ```csharp    
+    public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
+    {
+        // ...
+        app.UseAzureAppConfiguration();
+    }
+    ```
+    
     #### [.NET Core 2.x](#tab/core2x)
 
     ```csharp

articles/azure-monitor/app/api-custom-events-metrics.md

@@ -2,16 +2,16 @@
 title: Application Insights API for custom events and metrics | Microsoft Docs
 description: Insert a few lines of code in your device or desktop app, webpage, or service, to track usage and diagnose issues.
 ms.topic: conceptual
-ms.date: 05/11/2020 
+ms.date: 05/11/2020
 ms.devlang: csharp, java, javascript, vb
 ms.custom: "devx-track-js, devx-track-csharp"
 ---
 
 # Application Insights API for custom events and metrics
 
-Insert a few lines of code in your application to find out what users are doing with it, or to help diagnose issues. You can send telemetry from device and desktop apps, web clients, and web servers. Use the [Azure Application Insights](./app-insights-overview.md) core telemetry API to send custom events and metrics, and your own versions of standard telemetry. This API is the same API that the standard Application Insights data collectors use.    
+Insert a few lines of code in your application to find out what users are doing with it, or to help diagnose issues. You can send telemetry from device and desktop apps, web clients, and web servers. Use the [Azure Application Insights](./app-insights-overview.md) core telemetry API to send custom events and metrics, and your own versions of standard telemetry. This API is the same API that the standard Application Insights data collectors use.
 
-[!INCLUDE [azure-monitor-log-analytics-rebrand](../../../includes/azure-monitor-instrumentation-key-deprecation.md)]       
+[!INCLUDE [azure-monitor-log-analytics-rebrand](../../../includes/azure-monitor-instrumentation-key-deprecation.md)]
 
 ## API summary
 
@@ -156,8 +156,7 @@ To learn how to effectively use the GetMetric() call to capture locally pre-aggr
 ## TrackMetric
 
 > [!NOTE]
-> Microsoft.ApplicationInsights.TelemetryClient.TrackMetric is not the preferred method for sending metrics. Metrics should always be pre-aggregated across a time period before being sent. Use one of the GetMetric(..) overloads to get a metric object for accessing SDK pre-aggregation capabilities. If you are implementing your own pre-aggregation logic, you can 
-use the TrackMetric() method to send the resulting aggregates. If your application requires sending a separate telemetry item at every occasion without aggregation across time, you likely have a use case for event telemetry; see TelemetryClient.TrackEvent 
+> Microsoft.ApplicationInsights.TelemetryClient.TrackMetric is not the preferred method for sending metrics. Metrics should always be pre-aggregated across a time period before being sent. Use one of the GetMetric(..) overloads to get a metric object for accessing SDK pre-aggregation capabilities. If you are implementing your own pre-aggregation logic, you can use the TrackMetric() method to send the resulting aggregates. If your application requires sending a separate telemetry item at every occasion without aggregation across time, you likely have a use case for event telemetry; see TelemetryClient.TrackEvent
 (Microsoft.ApplicationInsights.DataContracts.EventTelemetry).
 
 Application Insights can chart metrics that are not attached to particular events. For example, you could monitor a queue length at regular intervals. With metrics, the individual measurements are of less interest than the variations and trends, and so statistical charts are useful.
@@ -296,7 +295,7 @@ To associate page views to AJAX calls, join with dependencies:
 
 ```kusto
 pageViews
-| join (dependencies) on operation_Id 
+| join (dependencies) on operation_Id
 ```
 
 ## TrackRequest
@@ -486,8 +485,8 @@ telemetry.trackTrace({
 
 ```javascript
 trackTrace({
-    message: string, 
-    properties?: {[string]:string}, 
+    message: string,
+    properties?: {[string]:string},
     severityLevel?: SeverityLevel
 })
 ```
@@ -549,7 +548,7 @@ try
 {
     success = dependency.Call();
 }
-catch(Exception ex) 
+catch(Exception ex)
 {
     success = false;
     telemetry.TrackException(ex);
@@ -667,7 +666,7 @@ telemetry.flush();
 The function is asynchronous for the [server telemetry channel](https://www.nuget.org/packages/Microsoft.ApplicationInsights.WindowsServer.TelemetryChannel/).
 
 > [!NOTE]
-> The Java and Javascript SDKs automatically flush on application shutdown.
+> The Java and JavaScript SDKs automatically flush on application shutdown.
 
 ## Authenticated users
 
@@ -1066,7 +1065,7 @@ In webpages, you might want to set it from the web server's state, rather than c
 // Standard Application Insights webpage script:
 var appInsights = window.appInsights || function(config){ ...
 // Modify this part:
-}({instrumentationKey:  
+}({instrumentationKey:
     // Generate from server property:
     @Microsoft.ApplicationInsights.Extensibility.
         TelemetryConfiguration.Active.InstrumentationKey;

articles/communication-services/quickstarts/includes/manage-teams-identity-net.md

@@ -115,7 +115,7 @@ var client = new CommunicationIdentityClient(connectionString);
 Use the `GetTokenForTeamsUser` method to issue an access token for the Teams user that can be used with the Azure Communication Services SDKs.
 
 ```csharp
-var accessToken = await client.GetTokenForTeamsUser(teamsUserAadToken.AccessToken);
+var accessToken = await client.GetTokenForTeamsUserAsync(teamsUserAadToken.AccessToken);
 Console.WriteLine($"Token: {accessToken.Value.Token}");
 ```
 

articles/cost-management-billing/reservations/synapse-analytics-pre-purchase-plan.md

@@ -18,7 +18,7 @@ Any Azure Synapse Analytics use deducts from the prepurchased SCUs automatically
 
 ## Determine the right size to buy
 
-A synapse prepurchase applies to all Synapse workloads and tiers. You can think of the Pre-Purchase Plan as a pool of prepaid Synapse commit units. Usage is deducted from the pool, regardless of the workload or tier. Other charges such as compute, storage, and networking are charged separately.
+A synapse prepurchase applies to all Synapse workloads and tiers. You can think of the Pre-Purchase Plan as a pool of prepaid Synapse commit units. Usage is deducted from the pool, regardless of the workload or tier. Integrated services such as VMs for SHIR, Azure Storage accounts, and networking components are charged separately.
 
 The Synapse prepurchase discount applies to usage from the following products:
 
@@ -74,4 +74,4 @@ To learn more about Azure Reservations, see the following articles:
 - [Manage Azure Reservations](manage-reserved-vm-instance.md)
 - [Understand Azure Reservations discount](understand-reservation-charges.md)
 - [Understand reservation usage for your Pay-As-You-Go subscription](understand-reserved-instance-usage.md)
-- [Understand reservation usage for your Enterprise enrollment](understand-reserved-instance-usage-ea.md)
+- [Understand reservation usage for your Enterprise enrollment](understand-reserved-instance-usage-ea.md)

articles/data-lake-analytics/data-lake-analytics-manage-use-python-sdk.md

@@ -39,6 +39,7 @@ This document was written using `pip version 9.0.1`.
 Use the following `pip` commands to install the modules from the commandline:
 
 ```console
+pip install azure-identity
 pip install azure-mgmt-resource
 pip install azure-datalake-store
 pip install azure-mgmt-datalake-store
@@ -56,6 +57,9 @@ Paste the following code into the script:
 # Use this only for Azure AD end-user authentication
 #from azure.common.credentials import UserPassCredentials
 
+# Required for Azure Identity
+from azure.identity import DefaultAzureCredential
+
 # Required for Azure Resource Manager
 from azure.mgmt.resource.resources import ResourceManagementClient
 from azure.mgmt.resource.resources.models import ResourceGroup
@@ -78,6 +82,9 @@ from azure.mgmt.datalake.analytics.job.models import JobInformation, JobState, U
 # Required for Azure Data Lake Analytics catalog management
 from azure.mgmt.datalake.analytics.catalog import DataLakeAnalyticsCatalogManagementClient
 
+# Required for Azure Data Lake Analytics Model
+from azure.mgmt.datalake.analytics.account.models import CreateOrUpdateComputePolicyParameters
+
 # Use these as needed for your application
 import logging
 import getpass
@@ -106,8 +113,12 @@ credentials = UserPassCredentials(user, password)
 ### Noninteractive authentication with SPI and a secret
 
 ```python
-credentials = ServicePrincipalCredentials(
-    client_id='FILL-IN-HERE', secret='FILL-IN-HERE', tenant='FILL-IN-HERE')
+# Acquire a credential object for the app identity. When running in the cloud,
+# DefaultAzureCredential uses the app's managed identity (MSI) or user-assigned service principal.
+# When run locally, DefaultAzureCredential relies on environment variables named
+# AZURE_CLIENT_ID, AZURE_CLIENT_SECRET, and AZURE_TENANT_ID.
+
+credentials = DefaultAzureCredential()
 ```
 
 ### Noninteractive authentication with API and a certificate
@@ -147,7 +158,7 @@ armGroupResult = resourceClient.resource_groups.create_or_update(
 First create a store account.
 
 ```python
-adlsAcctResult = adlsAcctClient.account.create(
+adlsAcctResult = adlsAcctClient.account.begin_create(
 	rg,
 	adls,
 	DataLakeStoreAccount(
@@ -232,10 +243,10 @@ The DataLakeAnalyticsAccountManagementClient object provides methods for managin
 The following code retrieves a list of compute policies for a Data Lake Analytics account.
 
 ```python
-policies = adlaAccountClient.computePolicies.listByAccount(rg, adla)
+policies = adlaAcctClient.compute_policies.list_by_account(rg, adla)
 for p in policies:
-    print('Name: ' + p.name + 'Type: ' + p.objectType + 'Max AUs / job: ' +
-          p.maxDegreeOfParallelismPerJob + 'Min priority / job: ' + p.minPriorityPerJob)
+    print('Name: ' + p.name + 'Type: ' + p.object_type + 'Max AUs / job: ' +
+          p.max_degree_of_parallelism_per_job + 'Min priority / job: ' + p.min_priority_per_job)
 ```
 
 ### Create a new compute policy
@@ -244,9 +255,9 @@ The following code creates a new compute policy for a Data Lake Analytics accoun
 
 ```python
 userAadObjectId = "3b097601-4912-4d41-b9d2-78672fc2acde"
-newPolicyParams = ComputePolicyCreateOrUpdateParameters(
+newPolicyParams = CreateOrUpdateComputePolicyParameters(
     userAadObjectId, "User", 50, 250)
-adlaAccountClient.computePolicies.createOrUpdate(
+adlaAcctClient.compute_policies.create_or_update(
     rg, adla, "GaryMcDaniel", newPolicyParams)
 ```
 

includes/api-management-service-limits.md

@@ -35,6 +35,7 @@ ms.custom: Include file
 | Maximum size of API schema used by [validation policy](../articles/api-management/validation-policies.md)<sup>10</sup> | 4 MB |
 | Maximum size of request or response body in [validate-content policy](../articles/api-management/validation-policies.md#validate-content)<sup>10</sup> | 100 KB |
 | Maximum number of self-hosted gateways<sup>11</sup> | 25 |
+| Maximum number of active WebSocket connections per unit | 200 |
 
 <sup>1</sup> Scaling limits depend on the pricing tier. For details on the pricing tiers and their scaling limits, see [API Management pricing](https://azure.microsoft.com/pricing/details/api-management/).<br/>
 <sup>2</sup> Per unit cache size depends on the pricing tier. To see the pricing tiers and their scaling limits, see [API Management pricing](https://azure.microsoft.com/pricing/details/api-management/).<br/>

includes/notification-hubs-backend-service-sample-app-reactnative.md

@@ -32,7 +32,7 @@
     > [!NOTE]
     > React Native has a built-in command line interface. Rather than install and manage a specific version of the CLI globally, we recommend you access the current version at runtime using `npx`, which ships with Node.js. With `npx react-native <command>`, the current stable version of the CLI will be downloaded and executed at the time the command is run.
 
-1. Navigate to your projects folder where you want to create the new application. Use the Typescript-based template by specifying the `--template` parameter:
+1. Navigate to your projects folder where you want to create the new application. Use the TypeScript-based template by specifying the `--template` parameter:
 
     ```bash
     # init new project with npx