Merge pull request #178423 from stevevi/steveviAzureGov7

remove Feedback from Next steps

Author: GitHubber17

articles/azure-government/connect-with-azure-pipelines.md

@@ -1,25 +1,18 @@
 ---
-title: Deploy an app in Azure Government with Azure Pipelines | Microsoft Docs
+title: Deploy an app in Azure Government with Azure Pipelines
 description: Information on configuring continuous deployment to your applications hosted with a subscription in Azure Government by connecting from Azure Pipelines.
-services: azure-government
-cloud: gov
-documentationcenter: ''
-
 ms.service: azure-government
-ms.devlang: na
 ms.topic: article
-ms.tgt_pltfrm: na
-ms.workload: azure-government
-ms.date: 10/25/2018 
 ms.custom: devx-track-azurepowershell
+ms.date: 11/02/2021 
 ---
 
 # Deploy an app in Azure Government with Azure Pipelines
 
 This article helps you use Azure Pipelines to set up continuous integration (CI) and continuous deployment (CD) of your web app running in Azure Government. CI/CD automates the build of your code from a repo along with the deployment (release) of the built code artifacts to a service or set of services in Azure Government. In this tutorial, you will build a web app and deploy it to an Azure Governments app service. This build and release process is triggered by a change to a code file in the repo.
 
 > [!NOTE]
-> Azure Pipelines is not available as part of Azure Government. While this tutorial shows how to configure the CI/CD capabilities of Azure Pipelines in order to deploy an app to a service inside Azure Government, be aware that Azure Pipelines runs its pipelines outside of Azure Government. Research your organization's security and service policies before using it as part of your deployment tools. 
+> For special considerations when deploying apps to Azure Government, see **[Deploy apps to Azure Government Cloud](/azure/devops/pipelines/library/government-cloud).**
 
 [Azure Pipelines](/azure/devops/pipelines/get-started/) is used by teams to configure continuous deployment for applications hosted in Azure subscriptions. We can use this service for applications running in Azure Government by defining [service connections](/azure/devops/pipelines/library/service-endpoints) for Azure Government. 
 
@@ -31,7 +24,7 @@ Before starting this tutorial, you must have the following:
 
 + [Create an organization in Azure DevOps](/azure/devops/organizations/accounts/create-organization)
 + [Create and add a project to the Azure DevOps organization](/azure/devops/organizations/projects/create-project?;bc=%2fazure%2fdevops%2fuser-guide%2fbreadcrumb%2ftoc.json&tabs=new-nav&toc=%2fazure%2fdevops%2fuser-guide%2ftoc.json)
-+ Install and set up [Azure Powershell](/powershell/azure/install-az-ps)
++ Install and set up [Azure PowerShell](/powershell/azure/install-az-ps)
 
 If you don't have an active Azure Government subscription, create a [free account](https://azure.microsoft.com/overview/clouds/government/) before you begin.
 
@@ -50,12 +43,12 @@ Follow through one of the quickstarts below to set up a Build for your specific
 
 ## Generate a service principal 
 
-1. Download or copy and paste the [service principal creation](https://github.com/yujhongmicrosoft/spncreationn/blob/master/spncreation.ps1) powershell script into an IDE or editor.
+1. Download or copy and paste the [service principal creation](https://github.com/yujhongmicrosoft/spncreationn/blob/master/spncreation.ps1) PowerShell script into an IDE or editor.
 
 2. Open up the file and navigate to the `param` parameter. Replace the `$environmentName` variable with 
 AzureUSGovernment." This sets the service principal to be created in Azure Government.
 
-3. Open your Powershell window and run the following command. This command sets a policy that enables running local files.
+3. Open your PowerShell window and run the following command. This command sets a policy that enables running local files.
 
    `Set-ExecutionPolicy -Scope Process -ExecutionPolicy Bypass`
 
@@ -92,13 +85,13 @@ Follow [Deploy a web app to Azure App Services](/azure/devops/pipelines/apps/cd/
 
 ## Q&A
 
-Q: Do I need a build agent?<br/>
-A: You need at least one [agent](/azure/devops/pipelines/agents/agents) to run your deployments. By default, the build and deployment processes are configured to use the [hosted agents](/azure/devops/pipelines/agents/agents#microsoft-hosted-agents). Configuring a private agent would limit data sharing outside of Azure Government.
+**Do I need a build agent?** <br/>
+You need at least one [agent](/azure/devops/pipelines/agents/agents) to run your deployments. By default, the build and deployment processes are configured to use the [hosted agents](/azure/devops/pipelines/agents/agents#microsoft-hosted-agents). Configuring a private agent would limit data sharing outside of Azure Government.
 
-Q: I use Team Foundation Server on-premises. Can I configure CD on my server to target Azure Government?<br/>
-A: Currently, Team Foundation Server cannot be used to deploy to an Azure Government Cloud.
+**I use Team Foundation Server on-premises. Can I configure CD on my server to target Azure Government?** <br/>
+Currently, Team Foundation Server cannot be used to deploy to an Azure Government Cloud.
 
 ## Next steps
-* Subscribe to the [Azure Government blog](https://blogs.msdn.microsoft.com/azuregov/)
-* Get help on Stack Overflow by using the "[azure-gov](https://stackoverflow.com/questions/tagged/azure-gov)" tag
-* Give us feedback or request new features via the [Azure Government feedback forum](https://feedback.azure.com/d365community/)
+
+- Subscribe to the [Azure Government blog](https://blogs.msdn.microsoft.com/azuregov/)
+- Get help on Stack Overflow by using the "[azure-gov](https://stackoverflow.com/questions/tagged/azure-gov)" tag

articles/azure-government/documentation-government-aad-auth-qs.md

@@ -1,110 +1,108 @@
----
-title: Azure Government Integrate Azure AD Authentication | Microsoft Docs
-description: This article demonstrates how to integrating Azure AD Authentication on Azure Government.
-services: azure-government
-cloud: gov
-documentationcenter: ''
-
-ms.service: azure-government
-ms.devlang: na
-ms.topic: article
-ms.tgt_pltfrm: na
-ms.workload: azure-government
-ms.date: 11/2/2017
-
----
-# Integrate Azure AD Authentication with Web Apps on Azure Government
-The following quickstart helps you get started integrating Azure AD Authentication with applications on Azure Government. Azure Active Directory (Azure AD) Authentication on Azure Government is similar to the Azure commercial platform, with a [few exceptions](./compare-azure-government-global-azure.md).
-
-Learn more about [Azure Active Directory Authentication Scenarios](../active-directory/develop/authentication-vs-authorization.md). 
-
-## Integrate Azure AD login into a web application using OpenID Connect
-This section shows how to integrate Azure AD using the OpenID Connect protocol for signing in users into a web app. 
-
-### Prerequisites 
-- An Azure AD tenant in Azure Government. You must have an [Azure Government subscription](https://azure.microsoft.com/overview/clouds/government/request/) in order to have an Azure AD tenant in Azure Government. For more information on how to get an Azure AD tenant, see [How to get an Azure AD tenant](../active-directory/develop/quickstart-create-new-tenant.md) 
-- A user account in your Azure AD tenant. This sample does not work with a Microsoft account, so if you signed in to the Azure Government portal with a Microsoft account and have never created a user account in your directory before, you need to do that now.
-- Have an [ASP.NET Core application deployed and running in Azure Government](documentation-government-howto-deploy-webandmobile.md)
-
-### Step 1: Register your web application with your Azure AD Tenant 
-
-1. Sign in to the [Azure Government portal](https://portal.azure.us).
-2. On the top bar, click on your account and under the **Directory** list, choose the Active Directory tenant where you wish to register your application.
-3. Click on **All Services** in the left-hand nav, and choose **Azure Active Directory**.
-4. Click on **App registrations** and choose **Add**.
-5. Enter the name for your application, and select 'Web Application and/or Web API' as the Application Type. For the sign-on URL, enter the base URL for your application, which is your Azure App URL + "/signin-oidc." 
-
-    >[!Note] 
-    > If you have not deployed your application and want to run it locally, your App URL would be your local host address.
-    >
-    >
-
-    Click on **Create** to create the application.
-6. While still in the Azure portal, choose your application, click on **Settings**, and choose **Properties**.
-7. Find the Application ID value and copy it to the clipboard.
-8. For the App ID URI, enter https://\<your_tenant_name\>/\<name_of_your_app\>, replacing \<your_tenant_name\> with the name of your Azure AD tenant and \<name_of_your_app\> with the name of your application.
-
-### Step 2:  Configure your app to use your Azure AD tenant
-#### Azure Government Variations
-The only variation when setting up Azure AD Authorization on the Azure Government cloud is in the Azure AD Instance:
-- "https:\//login.microsoftonline.us"
-
-#### Configure the InventoryApp project
-1. Open your application in Visual Studio 2019.
-2. Open the `appsettings.json` file.
-3. Add an `Authentication` section and fill out the properties with your Azure AD tenant information.
-	
-    ```cs
-    //ClientId: Azure AD->  App registrations -> Application ID
-    //Domain: <tenantname>.onmicrosoft.com
-    //TenantId: Azure AD -> Properties -> Directory ID
-
-    "Authentication": {
-        "AzureAd": {
-
-        "Azure ADInstance": "https://login.microsoftonline.us/",
-        "CallbackPath": "/signin-oidc",
-        "ClientId": "<clientid>",
-        "Domain": "<domainname>",
-        "TenantId": "<tenantid>"
-        }
-    }
-    ```
-4. Fill out the `ClientId` property with the Client ID for your app from the Azure Government portal. You can find the Client ID by navigating to Azure AD -> App Registrations -> Your Application -> Application ID. 
-5. Fill out the `TenantId` property with the Tenant ID for your app from the Azure Government portal. You can find the Tenant ID by navigating to Azure AD -> Properties -> Directory ID. 
-6. Fill out the `Domain` property with `<tenantname>.onmicrosoft.com`.
-7. Open the `startup.cs` file.
-8. In your `ConfigureServices` method, add the following code:
-
-    ```cs
-        public void ConfigureServices(IServiceCollection services)
-        {      
-            //Add Azure AD authentication
-            services.AddAuthentication(options => {
-                options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
-                options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;
-            })
-            .AddCookie()
-            .AddOpenIdConnect(options => {
-                options.Authority = Configuration["Authentication:AzureAd:Azure ADInstance"] + Configuration["Authentication:AzureAd:TenantId"];
-                options.ClientId = Configuration["Authentication:AzureAd:ClientId"];
-                options.CallbackPath = Configuration["Authentication:AzureAd:CallbackPath"];
-            });
-        
-        }
-    ```
-
-    In the same file, add this one line of code to the `Configure` method:
-
-    ```csharp
-    app.UseAuthentication();
-    ```
-
-9. Navigate to your **Home** controller or whichever controller file is your home page, **where you want your users to log in**. Add the `[Authorize]` tag before the class definition.
-
-## Next steps
-
-* Navigate to the [Azure Government PaaS Sample](https://github.com/Azure-Samples/gov-paas-sample) to see Azure AD Authentication as well as other services being integrated in an Application running on Azure Government. 
-* Subscribe to the [Azure Government blog](https://blogs.msdn.microsoft.com/azuregov/)
-* Get help on Stack Overflow by using the "[azure-gov](https://stackoverflow.com/questions/tagged/azure-gov)" tag
-* Give feedback or request new features via the [Azure Government feedback forum](https://feedback.azure.com/d365community/)
+---
+title: Azure Government integrate Azure AD Authentication
+description: This article demonstrates how to integrating Azure AD authentication on Azure Government.
+ms.service: azure-government
+ms.topic: article
+ms.date: 11/02/2021 
+---
+
+# Integrate Azure AD authentication with Web Apps on Azure Government
+
+The following quickstart helps you get started integrating Azure AD Authentication with applications on Azure Government. Azure Active Directory (Azure AD) Authentication on Azure Government is similar to the Azure commercial platform, with a [few exceptions](./compare-azure-government-global-azure.md).
+
+Learn more about [Azure Active Directory Authentication Scenarios](../active-directory/develop/authentication-vs-authorization.md). 
+
+## Integrate Azure AD login into a web application using OpenID Connect
+
+This section shows how to integrate Azure AD using the OpenID Connect protocol for signing in users into a web app. 
+
+### Prerequisites 
+
+- An Azure AD tenant in Azure Government. You must have an [Azure Government subscription](https://azure.microsoft.com/overview/clouds/government/request/) in order to have an Azure AD tenant in Azure Government. For more information on how to get an Azure AD tenant, see [How to get an Azure AD tenant](../active-directory/develop/quickstart-create-new-tenant.md) 
+- A user account in your Azure AD tenant. This sample does not work with a Microsoft account, so if you signed in to the Azure Government portal with a Microsoft account and have never created a user account in your directory before, you need to do that now.
+- Have an [ASP.NET Core application deployed and running in Azure Government](documentation-government-howto-deploy-webandmobile.md)
+
+### Step 1: Register your web application with your Azure AD Tenant 
+
+1. Sign in to the [Azure Government portal](https://portal.azure.us).
+2. On the top bar, click on your account and under the **Directory** list, choose the Active Directory tenant where you wish to register your application.
+3. Click on **All Services** in the left-hand nav, and choose **Azure Active Directory**.
+4. Click on **App registrations** and choose **Add**.
+5. Enter the name for your application, and select 'Web Application and/or Web API' as the Application Type. For the sign-on URL, enter the base URL for your application, which is your Azure App URL + "/signin-oidc." 
+
+    >[!Note] 
+    > If you have not deployed your application and want to run it locally, your App URL would be your local host address.
+    >
+    >
+
+    Click on **Create** to create the application.
+6. While still in the Azure portal, choose your application, click on **Settings**, and choose **Properties**.
+7. Find the Application ID value and copy it to the clipboard.
+8. For the App ID URI, enter https://\<your_tenant_name\>/\<name_of_your_app\>, replacing \<your_tenant_name\> with the name of your Azure AD tenant and \<name_of_your_app\> with the name of your application.
+
+### Step 2:  Configure your app to use your Azure AD tenant
+
+#### Azure Government Variations
+
+The only variation when setting up Azure AD Authorization on the Azure Government cloud is in the Azure AD Instance:
+- "https:\//login.microsoftonline.us"
+
+#### Configure the InventoryApp project
+
+1. Open your application in Visual Studio 2019.
+2. Open the `appsettings.json` file.
+3. Add an `Authentication` section and fill out the properties with your Azure AD tenant information.
+	
+    ```cs
+    //ClientId: Azure AD->  App registrations -> Application ID
+    //Domain: <tenantname>.onmicrosoft.com
+    //TenantId: Azure AD -> Properties -> Directory ID
+
+    "Authentication": {
+        "AzureAd": {
+
+        "Azure ADInstance": "https://login.microsoftonline.us/",
+        "CallbackPath": "/signin-oidc",
+        "ClientId": "<clientid>",
+        "Domain": "<domainname>",
+        "TenantId": "<tenantid>"
+        }
+    }
+    ```
+4. Fill out the `ClientId` property with the Client ID for your app from the Azure Government portal. You can find the Client ID by navigating to Azure AD -> App Registrations -> Your Application -> Application ID. 
+5. Fill out the `TenantId` property with the Tenant ID for your app from the Azure Government portal. You can find the Tenant ID by navigating to Azure AD -> Properties -> Directory ID. 
+6. Fill out the `Domain` property with `<tenantname>.onmicrosoft.com`.
+7. Open the `startup.cs` file.
+8. In your `ConfigureServices` method, add the following code:
+
+    ```cs
+        public void ConfigureServices(IServiceCollection services)
+        {      
+            //Add Azure AD authentication
+            services.AddAuthentication(options => {
+                options.DefaultScheme = CookieAuthenticationDefaults.AuthenticationScheme;
+                options.DefaultChallengeScheme = OpenIdConnectDefaults.AuthenticationScheme;
+            })
+            .AddCookie()
+            .AddOpenIdConnect(options => {
+                options.Authority = Configuration["Authentication:AzureAd:Azure ADInstance"] + Configuration["Authentication:AzureAd:TenantId"];
+                options.ClientId = Configuration["Authentication:AzureAd:ClientId"];
+                options.CallbackPath = Configuration["Authentication:AzureAd:CallbackPath"];
+            });
+        
+        }
+    ```
+
+    In the same file, add this one line of code to the `Configure` method:
+
+    ```csharp
+    app.UseAuthentication();
+    ```
+
+9. Navigate to your **Home** controller or whichever controller file is your home page, **where you want your users to log in**. Add the `[Authorize]` tag before the class definition.
+
+## Next steps
+
+* Navigate to the [Azure Government PaaS Sample](https://github.com/Azure-Samples/gov-paas-sample) to see Azure AD Authentication as well as other services being integrated in an Application running on Azure Government. 
+* Subscribe to the [Azure Government blog](https://blogs.msdn.microsoft.com/azuregov/)
+* Get help on Stack Overflow by using the "[azure-gov](https://stackoverflow.com/questions/tagged/azure-gov)" tag