Address feedback

zhenlan · zhenlan · commit 9f0401909f1a · 2024-10-07T23:00:55.000-07:00
diff --git a/articles/azure-app-configuration/concept-enable-rbac.md b/articles/azure-app-configuration/concept-enable-rbac.md
@@ -36,15 +36,15 @@ All requests for [control plane](../azure-resource-manager/management/control-pl
 > [!NOTE]
 > After a role assignment is made for an identity, allow up to 15 minutes for the permission to propagate before accessing data stored in App Configuration using this identity.
 
-## Authentication with Token Credentials
+## Authentication with token credentials
 
 To enable your application to authenticate with Microsoft Entra ID, the Azure Identity library supports various token credentials for Microsoft Entra ID authentication. For example, you might choose Visual Studio Credential when developing your application in Visual Studio, Workload Identity Credential when your application runs on Kubernetes, or Managed Identity Credential when your application is deployed in Azure services like Azure Functions.
 
 ### Use DefaultAzureCredential
 
 The `DefaultAzureCredential` is a preconfigured [chain of token credentials](/dotnet/azure/sdk/authentication/credential-chains#defaultazurecredential-overview) that automatically attempts an ordered sequence of the most common authentication methods. Using the `DefaultAzureCredential` allows you to keep the same code in both local development and Azure environments. However, it's important to know which credential is being used in each environment, as you need to grant the appropriate roles for authorization to work. For example, authorize your own account when you expect the `DefaultAzureCredential` to fall back to your user identity during local development. Similarly, enable managed identity in Azure Functions and assign it the necessary role when you expect the `DefaultAzureCredential` to fall back to the `ManagedIdentityCredential` when your Function App runs in Azure.
 
-### Assign App Configuration Data Roles
+### Assign App Configuration data roles
 
 Regardless of which credential you use, you must assign it the appropriate roles before it can access your App Configuration store. If your application only needs to read data from your App Configuration store, assign it the *App Configuration Data Reader* role. If your application also needs to write data to your App Configuration store, assign it the *App Configuration Data Owner* role.
 
diff --git a/articles/azure-app-configuration/quickstart-dotnet-core-app.md b/articles/azure-app-configuration/quickstart-dotnet-core-app.md
@@ -47,7 +47,7 @@ You can connect to your App Configuration store using Microsoft Entra ID (recomm
 
 1. Add NuGet package references by running the following command:
 
-    ### [Microsoft Entra ID](#tab/entra-id)
+    ### [Microsoft Entra ID (recommended)](#tab/entra-id)
     ```dotnetcli
     dotnet add package Microsoft.Extensions.Configuration.AzureAppConfiguration
     dotnet add package Azure.Identity
@@ -68,7 +68,7 @@ You can connect to your App Configuration store using Microsoft Entra ID (recomm
 1. Open the *Program.cs* file, and add the following namespaces:
 
 
-    ### [Microsoft Entra ID](#tab/entra-id)
+    ### [Microsoft Entra ID (recommended)](#tab/entra-id)
     ```csharp
     using Microsoft.Extensions.Configuration;
     using Microsoft.Extensions.Configuration.AzureAppConfiguration;
@@ -84,7 +84,7 @@ You can connect to your App Configuration store using Microsoft Entra ID (recomm
 
 1. Connect to your App Configuration store by calling the `AddAzureAppConfiguration` method in the `Program.cs` file.
 
-    ### [Microsoft Entra ID](#tab/entra-id)
+    ### [Microsoft Entra ID (recommended)](#tab/entra-id)
     You use the `DefaultAzureCredential` to authenticate to your App Configuration store. Follow the [instructions](./concept-enable-rbac.md#authentication-with-token-credentials) to assign your credential the **App Configuration Data Reader** role. Be sure to allow sufficient time for the permission to propagate before running your application.
 
     ```csharp
@@ -113,7 +113,7 @@ You can connect to your App Configuration store using Microsoft Entra ID (recomm
 
 1. Set an environment variable.
 
-    ### [Microsoft Entra ID](#tab/entra-id)
+    ### [Microsoft Entra ID (recommended)](#tab/entra-id)
     Set the environment variable named **Endpoint** to the endpoint of your App Configuration store found under the *Overview* of your store in the Azure portal.
 
     If you use the Windows command prompt, run the following command and restart the command prompt to allow the change to take effect:
@@ -168,7 +168,7 @@ You can connect to your App Configuration store using Microsoft Entra ID (recomm
     dotnet run
     ```
 
-    ![Quickstart app launch local](./media/quickstarts/dotnet-core-app-run.png)
+    :::image type="content" source="./media/quickstarts/dotnet-core-app-run.png" alt-text="Screenshot of a terminal window showing the app running locally.":::
 
 ## Clean up resources
 
