Updates.

roygara · roygara · commit 9d29431dc307 · 2024-08-15T11:20:30.000-07:00
diff --git a/articles/virtual-machines/includes/disks-sas-change.md b/articles/virtual-machines/includes/disks-sas-change.md
@@ -11,7 +11,7 @@
 > [!IMPORTANT]
 > On February 15th, 2025, the Shared Access Signature (SAS) access time for disks and snapshots will be limited to a maximum of 60 days. Trying to generate a SAS with an expiration longer than 60 days results in an error. Any existing disk or snapshot SAS created with an expiration longer than 60 days may stop working 60 days after the date of creation and will result in a 403 error during authorization.
 
-Review all your calls that generate a managed disk or snapshot SAS to ensure that they're requesting access for 60 days (5,184,000 seconds) or less. If a SAS's access is longer than 60 days, revoke its access and generate a new SAS that requests access for 60 days (5,184,000 seconds) or less. use shared access signatures (SAS) with smaller expiration dates to guard against risks such as a SAS leaking, which can let anyone who obtains it access to your disks. You should make these changes prior to February 15, 2025 to prevent service interruption. The following links can be used to find, revoke, and request a new SAS.
+If a managed disk or snapshot SAS's expiration is longer than 60 (5,184,000 seconds) days, revoke its access and generate a new SAS that requests access for 60 days (5,184,000 seconds) or less. Use shared access signatures (SAS) with shorter expiration dates to improve your deployment's overall security. You should make these changes prior to February 15, 2025 to prevent service interruption. The following links can be used to find, revoke, and request a new SAS.
 
 - To check if a disk has an active SAS, you can either use the [REST API](/rest/api/compute/disks/get?view=rest-compute-2024-03-01&tabs=HTTP#diskstate), the [Azure CLI](/cli/azure/disk?view=azure-cli-latest#az-disk-show), or the [Azure PowerShell module](/powershell/module/az.compute/get-azdisk?view=azps-12.0.0), and examine the **DiskState** property.
 - To revoke a SAS, you can use either the [REST API](/rest/api/compute/disks/revoke-access?view=rest-compute-2024-03-01&tabs=HTTP), the [Azure CLI](/cli/azure/disk?view=azure-cli-latest#az-disk-revoke-access), or the [Azure PowerShell module](/powershell/module/az.compute/revoke-azdiskaccess?view=azps-12.0.0).
