MicrosoftDocs
diff --git a/‎articles/storage/blobs/TOC.yml
Lines changed: 0 additions & 2 deletions b/‎articles/storage/blobs/TOC.yml
Lines changed: 0 additions & 2 deletions
diff --git a/‎articles/storage/blobs/data-lake-storage-acl-azure-portal.md
Lines changed: 1 addition & 1 deletion b/‎articles/storage/blobs/data-lake-storage-acl-azure-portal.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/storage/blobs/data-lake-storage-acl-cli.md
Lines changed: 2 additions & 4 deletions b/‎articles/storage/blobs/data-lake-storage-acl-cli.md
Lines changed: 2 additions & 4 deletions
diff --git a/‎articles/storage/blobs/data-lake-storage-acl-powershell.md
Lines changed: 13 additions & 34 deletions b/‎articles/storage/blobs/data-lake-storage-acl-powershell.md
Lines changed: 13 additions & 34 deletions
diff --git a/‎articles/storage/blobs/data-lake-storage-directory-file-acl-cli.md
Lines changed: 18 additions & 17 deletions b/‎articles/storage/blobs/data-lake-storage-directory-file-acl-cli.md
Lines changed: 18 additions & 17 deletions
@@ -1387,8 +1387,6 @@ items:
       href: data-lake-storage-events.md
     - name: Use with other Azure services
       href: data-lake-storage-integrate-with-services-tutorials.md
-    - name: Use with Azure services
-      href: data-lake-storage-integrate-with-services-tutorials.md
 - name: Reference
   items:
   - name: Blob Storage APIs
 
@@ -6,7 +6,7 @@ author: normesta
 
 ms.service: azure-data-lake-storage
 ms.topic: how-to
-ms.date: 03/09/2023
+ms.date: 11/18/2024
 ms.author: normesta
 ---
 
 
@@ -7,7 +7,7 @@ author: normesta
 
 ms.service: azure-data-lake-storage
 ms.topic: how-to
-ms.date: 06/09/2023
+ms.date: 11/18/2024
 ms.author: normesta
 ms.reviewer: prishet
 ms.devlang: azurecli
@@ -36,8 +36,6 @@ ACL inheritance is already available for new child items that are created under
 
   - Owning user of the target container or directory to which you plan to apply ACL settings. To set ACLs recursively, this includes all child items in the target container or directory.
 
-  - Storage account key.
-
 ## Ensure that you have the correct version of Azure CLI installed
 
 1. Open the [Azure Cloud Shell](../../cloud-shell/overview.md), or if you've [installed](/cli/azure/install-azure-cli) the Azure CLI locally, open a command console application such as Windows PowerShell.
@@ -64,7 +62,7 @@ ACL inheritance is already available for new child items that are created under
 
    To learn more about different authentication methods, see [Authorize access to blob or queue data with Azure CLI](./authorize-data-operations-cli.md).
 
-2. If your identity is associated with more than one subscription, then set your active subscription to subscription of the storage account that will host your static website.
+2. If your identity is associated with more than one subscription, and you are not prompted to select the subscription, then set your active subscription to subscription of the storage account that you want operate upon. In this example, replace the `<subscription-id>` placeholder value with the ID of your subscription.
 
    ```azurecli
    az account set --subscription <subscription-id>
 
@@ -6,7 +6,7 @@ author: normesta
 
 ms.service: azure-data-lake-storage
 ms.topic: how-to
-ms.date: 02/17/2021
+ms.date: 11/18/2024
 ms.author: normesta
 ms.reviewer: prishet
 ms.devlang: powershell
@@ -35,8 +35,6 @@ ACL inheritance is already available for new child items that are created under
 
   - Owning user of the target container or directory to which you plan to apply ACL settings. To set ACLs recursively, this includes all child items in the target container or directory.
 
-  - Storage account key.
-
 ## Install the PowerShell module
 
 1. Verify that the version of PowerShell that have installed is `5.1` or higher by using the following command.
@@ -57,24 +55,13 @@ ACL inheritance is already available for new child items that are created under
 
 ## Connect to the account
 
-Choose how you want your commands to obtain authorization to the storage account.
-
-<a name='option-1-obtain-authorization-by-using-azure-active-directory-ad'></a>
-
-### Option 1: Obtain authorization by using Microsoft Entra ID
-
-> [!NOTE]
-> If you're using Microsoft Entra ID to authorize access, then make sure that your security principal has been assigned the [Storage Blob Data Owner role](../../role-based-access-control/built-in-roles.md#storage-blob-data-owner). To learn more about how ACL permissions are applied and the effects of changing them, see [Access control model in Azure Data Lake Storage](./data-lake-storage-access-control-model.md).
-
-With this approach, the system ensures that your user account has the appropriate Azure role-based access control (Azure RBAC) assignments and ACL permissions.
-
-1. Open a Windows PowerShell command window, and then sign in to your Azure subscription with the `Connect-AzAccount` command and follow the on-screen directions.
+1. Open a Windows PowerShell command window, and then sign in to your Azure subscription with the [Connect-AzAccount](/powershell/module/az.accounts/connect-azaccount) command and follow the on-screen directions.
 
    ```powershell
    Connect-AzAccount
    ```
 
-2. If your identity is associated with more than one subscription, then set your active subscription to subscription of the storage account that you want create and manage directories in. In this example, replace the `<subscription-id>` placeholder value with the ID of your subscription.
+2. If your identity is associated with more than one subscription, and you are not prompted to select the subscription, then set your active subscription to subscription of the storage account that you want operate upon. In this example, replace the `<subscription-id>` placeholder value with the ID of your subscription.
 
    ```powershell
    Select-AzSubscription -SubscriptionId <subscription-id>
@@ -86,17 +73,9 @@ With this approach, the system ensures that your user account has the appropriat
    $ctx = New-AzStorageContext -StorageAccountName '<storage-account-name>' -UseConnectedAccount
    ```
 
-### Option 2: Obtain authorization by using the storage account key
-
-With this approach, the system doesn't check Azure RBAC or ACL permissions. Get the storage account context by using an account key.
-
-```powershell
-$ctx = New-AzStorageContext -StorageAccountName '<storage-account-name>' -StorageAccountKey '<storage-account-key>'
-```
-
 ## Get ACLs
 
-Get the ACL of a directory or file by using the `Get-AzDataLakeGen2Item`cmdlet.
+Get the ACL of a directory or file by using the [Get-AzDataLakeGen2Item](/powershell/module/az.storage/get-azdatalakegen2item) cmdlet.
 
 This example gets the ACL of the root directory of a **container** and then prints the ACL to the console.
 
@@ -142,7 +121,7 @@ This section shows you how to:
 
 ### Set an ACL
 
-Use the `Set-AzDataLakeGen2ItemAclObject` cmdlet to create an ACL for the owning user, owning group, or other users. Then, use the `Update-AzDataLakeGen2Item` cmdlet to commit the ACL.
+Use the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject) cmdlet to create an ACL for the owning user, owning group, or other users. Then, use the[Update-AzDataLakeGen2Item](/powershell/module/az.storage/update-azdatalakegen2item) cmdlet to commit the ACL.
 
 This example sets the ACL on the root directory of a **container** for the owning user, owning group, or other users, and then prints the ACL to the console.
 
@@ -170,7 +149,7 @@ $dir.ACL
 ```
 
 > [!NOTE]
-> If you want to set a **default** ACL entry, use the **-DefaultScope** parameter when you run the **Set-AzDataLakeGen2ItemAclObject** command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope`.
+> If you want to set a **default** ACL entry, use the **-DefaultScope** parameter when you run the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject) command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope`.
 
 This example sets the ACL on a **file** for the owning user, owning group, or other users, and then prints the ACL to the console.
 
@@ -196,7 +175,7 @@ In this example, the owning user and owning group have only read and write permi
 
 ### Set ACLs recursively
 
-Set ACLs recursively by using the **Set-AzDataLakeGen2AclRecursive** cmdlet.
+Set ACLs recursively by using the [Set-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/set-azdatalakegen2aclrecursive) cmdlet.
 
 This example sets the ACL of a directory named `my-parent-directory`. These entries give the owning user read, write, and execute permissions, gives the owning group only read and execute permissions, and gives all others no access. The last ACL entry in this example gives a specific user with the object ID "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" read and execute permissions.
 
@@ -215,7 +194,7 @@ Set-AzDataLakeGen2AclRecursive -Context $ctx -FileSystem $filesystemName -Path $
 ```
 
 > [!NOTE]
-> If you want to set a **default** ACL entry, use the **-DefaultScope** parameter when you run the **Set-AzDataLakeGen2ItemAclObject** command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope`.
+> If you want to set a **default** ACL entry, use the **-DefaultScope** parameter when you run the [Set-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/set-azdatalakegen2aclrecursive) command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -Permission rwx -DefaultScope`.
 
 To see an example that sets ACLs recursively in batches by specifying a batch size, see the [Set-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/set-azdatalakegen2aclrecursive) reference article.
 
@@ -230,7 +209,7 @@ This section shows you how to:
 
 ### Update an ACL
 
-First, get the ACL. Then, use the `Set-AzDataLakeGen2ItemAclObject` cmdlet to add or update an ACL entry. Use the `Update-AzDataLakeGen2Item` cmdlet to commit the ACL.
+First, get the ACL. Then, use the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject) cmdlet to add or update an ACL entry. Use the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject)` cmdlet to commit the ACL.
 
 This example creates or updates the ACL on a **directory** for a user.
 
@@ -243,11 +222,11 @@ Update-AzDataLakeGen2Item -Context $ctx -FileSystem $filesystemName -Path $dirna
 ```
 
 > [!NOTE]
-> If you want to update a **default** ACL entry, use the **-DefaultScope** parameter when you run the **Set-AzDataLakeGen2ItemAclObject** command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityID xxxxxxxx-xxxx-xxxxxxxxxxx -Permission r-x -DefaultScope`.
+> If you want to update a **default** ACL entry, use the **-DefaultScope** parameter when you run the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject)* command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityID xxxxxxxx-xxxx-xxxxxxxxxxx -Permission r-x -DefaultScope`.
 
 ### Update ACLs recursively
 
-Update ACLs recursively by using the **Update-AzDataLakeGen2AclRecursive** cmdlet.
+Update ACLs recursively by using the [Update-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/update-azdatalakegen2aclrecursive) cmdlet.
 
 This example updates an ACL entry with write permission.
 
@@ -299,7 +278,7 @@ Update-AzDataLakeGen2Item -Context $ctx -FileSystem $filesystemName -Path $dirna
 
 You can remove one or more ACL entries recursively. To remove an ACL entry, create a new ACL object for ACL entry to be removed, and then use that object in remove ACL operation. Do not get the existing ACL, just provide the ACL entries to be removed.
 
-Remove ACL entries by using the **Remove-AzDataLakeGen2AclRecursive** cmdlet.
+Remove ACL entries by using the [Remove-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/remove-azdatalakegen2aclrecursive) cmdlet.
 
 This example removes an ACL entry from the root directory of the container.
 
@@ -313,7 +292,7 @@ Remove-AzDataLakeGen2AclRecursive -Context $ctx -FileSystem $filesystemName  -Ac
 ```
 
 > [!NOTE]
-> If you want to remove a **default** ACL entry, use the **-DefaultScope** parameter when you run the **Set-AzDataLakeGen2ItemAclObject** command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $userID -Permission "---" -DefaultScope`.
+> If you want to remove a **default** ACL entry, use the **-DefaultScope** parameter when you run the [Set-AzDataLakeGen2ItemAclObject](/powershell/module/az.storage/set-azdatalakegen2itemaclobject) command. For example: `$acl = Set-AzDataLakeGen2ItemAclObject -AccessControlType user -EntityId $userID -Permission "---" -DefaultScope`.
 
 To see an example that removes ACLs recursively in batches by specifying a batch size, see the [Remove-AzDataLakeGen2AclRecursive](/powershell/module/az.storage/remove-azdatalakegen2aclrecursive) reference article.
 
 
@@ -7,7 +7,7 @@ author: normesta
 
 ms.service: azure-data-lake-storage
 ms.topic: how-to
-ms.date: 02/17/2021
+ms.date: 11/18/2024
 ms.author: normesta
 ms.reviewer: prishet
 ms.devlang: azurecli
@@ -56,20 +56,21 @@ To learn about how to get, set, and update the access control lists (ACL) of dir
 
    To learn more about different authentication methods, see [Authorize access to blob or queue data with Azure CLI](./authorize-data-operations-cli.md).
 
-2. If your identity is associated with more than one subscription, then set your active subscription to subscription of the storage account that will host your static website.
+2. If your identity is associated with more than one subscription, and you are not prompted to select the subscription, then set your active subscription to subscription of the storage account that you want operate upon. In this example, replace the `<subscription-id>` placeholder value with the ID of your subscription.
 
    ```azurecli
    az account set --subscription <subscription-id>
    ```
 
    Replace the `<subscription-id>` placeholder value with the ID of your subscription.
+   Replace the `<subscription-id>` placeholder value with the ID of your subscription.
 
 > [!NOTE]
 > The example presented in this article show Microsoft Entra authorization. To learn more about authorization methods, see [Authorize access to blob or queue data with Azure CLI](./authorize-data-operations-cli.md).
 
 ## Create a container
 
-A container acts as a file system for your files. You can create one by using the `az storage fs create` command.
+A container acts as a file system for your files. You can create one by using the [az storage fs create](/cli/azure/storage/fs#az-storage-fs-create) command.
 
 This example creates a container named `my-file-system`.
 
@@ -79,15 +80,15 @@ az storage fs create -n my-file-system --account-name mystorageaccount --auth-mo
 
 ## Show container properties
 
-You can print the properties of a container to the console by using the `az storage fs show` command.
+You can print the properties of a container to the console by using the [az storage fs show](/cli/azure/storage/fs#az-storage-fs-show) command.
 
 ```azurecli
 az storage fs show -n my-file-system --account-name mystorageaccount --auth-mode login
 ```
 
 ## List container contents
 
-List the contents of a directory by using the `az storage fs file list` command.
+List the contents of a directory by using the [az storage fs file list](/cli/azure/storage/fs/file#az-storage-fs-file-list) command.
 
 This example lists the contents of a container named `my-file-system`.
 
@@ -97,7 +98,7 @@ az storage fs file list -f my-file-system --account-name mystorageaccount --auth
 
 ## Delete a container
 
-Delete a container by using the `az storage fs delete` command.
+Delete a container by using the [az storage fs delete](/cli/azure/storage/fs#az-storage-fs-delete) command.
 
 This example deletes a container named `my-file-system`.
 
@@ -107,7 +108,7 @@ az storage fs delete -n my-file-system --account-name mystorageaccount --auth-mo
 
 ## Create a directory
 
-Create a directory reference by using the `az storage fs directory create` command.
+Create a directory reference by using the [az storage fs directory create](/cli/azure/storage/fs/directory#az-storage-fs-directory-create) command.
 
 This example adds a directory named `my-directory` to a container named `my-file-system` that is located in an account named `mystorageaccount`.
 
@@ -117,15 +118,15 @@ az storage fs directory create -n my-directory -f my-file-system --account-name
 
 ## Show directory properties
 
-You can print the properties of a directory to the console by using the `az storage fs directory show` command.
+You can print the properties of a directory to the console by using the [az storage fs directory show](/cli/azure/storage/fs/directory#az-storage-fs-directory-show) command.
 
 ```azurecli
 az storage fs directory show -n my-directory -f my-file-system --account-name mystorageaccount --auth-mode login
 ```
 
 ## Rename or move a directory
 
-Rename or move a directory by using the `az storage fs directory move` command.
+Rename or move a directory by using the [az storage fs directory move](/cli/azure/storage/fs/directory#az-storage-fs-directory-move) command.
 
 This example renames a directory from the name `my-directory` to the name `my-new-directory` in the same container.
 
@@ -141,7 +142,7 @@ az storage fs directory move -n my-directory -f my-file-system --new-directory "
 
 ## Delete a directory
 
-Delete a directory by using the `az storage fs directory delete` command.
+Delete a directory by using the [az storage fs directory delete](/cli/azure/storage/fs/directory#az-storage-fs-directory-delete) command.
 
 This example deletes a directory named `my-directory`.
 
@@ -151,7 +152,7 @@ az storage fs directory delete -n my-directory -f my-file-system  --account-name
 
 ## Check if a directory exists
 
-Determine if a specific directory exists in the container by using the `az storage fs directory exists` command.
+Determine if a specific directory exists in the container by using the [az storage fs directory exists](/cli/azure/storage/fs/directory#az-storage-fs-directory-exists) command.
 
 This example reveals whether a directory named `my-directory` exists in the `my-file-system` container.
 
@@ -161,7 +162,7 @@ az storage fs directory exists -n my-directory -f my-file-system --account-name
 
 ## Download from a directory
 
-Download a file from a directory by using the `az storage fs file download` command.
+Download a file from a directory by using the [az storage fs file download](/cli/azure/storage/fs/file#az-storage-fs-file-download) command.
 
 This example downloads a file named `upload.txt` from a directory named `my-directory`.
 
@@ -171,7 +172,7 @@ az storage fs file download -p my-directory/upload.txt -f my-file-system -d "C:\
 
 ## List directory contents
 
-List the contents of a directory by using the `az storage fs file list` command.
+List the contents of a directory by using the [az storage fs file list](/cli/azure/storage/fs/file#az-storage-fs-file-list) command.
 
 This example lists the contents of a directory named `my-directory` that is located in the `my-file-system` container of a storage account named `mystorageaccount`.
 
@@ -181,7 +182,7 @@ az storage fs file list -f my-file-system --path my-directory --account-name mys
 
 ## Upload a file to a directory
 
-Upload a file to a directory by using the `az storage fs file upload` command.
+Upload a file to a directory by using the [az storage fs file upload](/cli/azure/storage/fs/file#az-storage-fs-file-upload) command.
 
 This example uploads a file named `upload.txt` to a directory named `my-directory`.
 
@@ -191,15 +192,15 @@ az storage fs file upload -s "C:\myFolder\upload.txt" -p my-directory/upload.txt
 
 ## Show file properties
 
-You can print the properties of a file to the console by using the `az storage fs file show` command.
+You can print the properties of a file to the console by using the [az storage fs file show](/cli/azure/storage/fs/file#az-storage-fs-file-show) command.
 
 ```azurecli
 az storage fs file show -p my-file.txt -f my-file-system --account-name mystorageaccount --auth-mode login
 ```
 
 ## Rename or move a file
 
-Rename or move a file by using the `az storage fs file move` command.
+Rename or move a file by using the [az storage fs file move](/cli/azure/storage/fs/file#az-storage-fs-file-move) command.
 
 This example renames a file from the name `my-file.txt` to the name `my-file-renamed.txt`.
 
@@ -209,7 +210,7 @@ az storage fs file move -p my-file.txt -f my-file-system --new-path my-file-syst
 
 ## Delete a file
 
-Delete a file by using the `az storage fs file delete` command.
+Delete a file by using the [az storage fs file delete](/cli/azure/storage/fs/file#az-storage-fs-file-delete) command.
 
 This example deletes a file named `my-file.txt`