acrolinx-link-fixing

shlipsey3 · shlipsey3 · commit a8c22020ed3b · 2023-07-26T14:13:52.000-07:00
diff --git a/articles/active-directory/reports-monitoring/concept-activity-logs-azure-monitor.md b/articles/active-directory/reports-monitoring/concept-activity-logs-azure-monitor.md
@@ -39,7 +39,7 @@ To help choose the right method for integrating Azure AD activity logs for stora
 
 ### Troubleshooting
 
-If you're performing troubleshooting tasks but you don't need to retain the logs for more than 30 days, we recommend using the Azure Portal or Microsoft Graph to access activity logs. You can filter the logs for your scenario and export or download them as needed.
+If you're performing troubleshooting tasks but you don't need to retain the logs for more than 30 days, we recommend using the Azure portal or Microsoft Graph to access activity logs. You can filter the logs for your scenario and export or download them as needed.
 
 If you're performing troubleshooting tasks *and* you need to retain the logs for more than 30 days, take a look at the long-term storage options.
 
@@ -51,19 +51,19 @@ If you need to query the data that you're retaining for more than 30 days, take
 
 ### Analysis and monitoring
 
-If your scenario requires that you retain data for more than 30 days *and* you plan on querying that data on a regular basis, you've got a few options to integrate your data with SIEM tools for analysis and monitoring.
+If your scenario requires that you retain data for more than 30 days *and* you plan on querying that data regularly, you've got a few options to integrate your data with SIEM tools for analysis and monitoring.
 
-If you have a 3rd party SIEM tool, we recommend setting up an Event Hub namespace and event hub that you can stream your data through. With an event hub, you can stream logs to one of the supported SIEM tools.
+If you have a third party SIEM tool, we recommend setting up an Event Hubs namespace and event hub that you can stream your data through. With an event hub, you can stream logs to one of the supported SIEM tools.
 
 If you don't plan on using a third-party SIEM tool, we recommend sending your Azure AD activity logs to Azure Monitor logs. With this integration, you can query your activity logs with Log Analytics. In Addition to Azure Monitor logs, Microsoft Sentinel provides near real-time security detection and threat hunting. If you decide to integrate with SIEM tools later, you can stream your Azure AD activity logs along with your other Azure data through an event hub. 
 
 ## Cost considerations
 
-There is a cost for sending data to a Log Analytics workspace, archiving data in a storage account, or streaming logs to an event hub. The amount of data and the cost incurred can vary significantly depending on the tenant size, the amount of policies in use, and even the time of day.
+There's a cost for sending data to a Log Analytics workspace, archiving data in a storage account, or streaming logs to an event hub. The amount of data and the cost incurred can vary significantly depending on the tenant size, the number of policies in use, and even the time of day.
 
-Because the size and cost for sending logs to and endpoint is difficult to predict, the most accurate way to determine your expected costs is to route your logs to and endpoint for day or two. With this snapshot you can get an accurate prediction for your expected costs.
+Because the size and cost for sending logs to and endpoint is difficult to predict, the most accurate way to determine your expected costs is to route your logs to and endpoint for day or two. With this snapshot, you can get an accurate prediction for your expected costs.
 
-Additional considerations for sending Azure AD logs to Azure Monitor are covered in the the following Azure Monitor cost details articles:
+Other considerations for sending Azure AD logs to Azure Monitor are covered in the following Azure Monitor cost details articles:
 
 - [Azure Monitor Logs cost calculations and options](../../azure-monitor/logs/cost-logs.md)
 - [Azure Monitor cost and usage](../../azure-monitor/usage-estimated-costs.md)
@@ -73,7 +73,7 @@ Azure Monitor provides the option to exclude whole events, fields, or parts of f
 
 ## Estimate your costs
 
-To estimate the costs for your organization you can estimate either the daily log size or the daily cost for integrating your logs with an endpoint.
+To estimate the costs for your organization, you can estimate either the daily log size or the daily cost for integrating your logs with an endpoint.
 
 The following factors could affect costs for your organization:
 
@@ -98,13 +98,13 @@ With the data sample captured, multiply accordingly to find out how large the fi
 
 ### Estimate the daily cost
 
-To get an idea of how much a log integration could cost for your organization, you can enable an integration for a day or two. With the new cost incurred from those sample days you can then use the [Azure pricing calculator](https://azure.microsoft.com/pricing/calculator/) to estimate your costs. Use this option if your budget allows for the temporary increase. 
+To get an idea of how much a log integration could cost for your organization, you can enable an integration for a day or two. With the new cost incurred from those sample days, you can then use the [Azure pricing calculator](https://azure.microsoft.com/pricing/calculator/) to estimate your costs. Use this option if your budget allows for the temporary increase. 
 
-To enable a log integration, follow the steps in the [Integrate activity logs with Azure Monitor logs](howto-integrate-activity-logs-with-log-analytics.md#send-logs-to-azure-monitor) article. 
+To enable a log integration, follow the steps in the [Integrate activity logs with Azure Monitor logs](howto-integrate-activity-logs-with-log-analytics.md) article. 
 
 ## Calculate estimated costs
 
-From the [Azure pricing calculator](https://azure.microsoft.com/pricing/calculator/) landing page you can estimate the costs for a variety of products.
+From the [Azure pricing calculator](https://azure.microsoft.com/pricing/calculator/) landing page, you can estimate the costs for various products.
 
 - [Azure Monitor](https://azure.microsoft.com/pricing/details/monitor/)
 - [Azure storage](https://azure.microsoft.com/pricing/details/storage/blobs/)
diff --git a/articles/active-directory/reports-monitoring/howto-access-activity-logs.md b/articles/active-directory/reports-monitoring/howto-access-activity-logs.md
@@ -59,7 +59,7 @@ The SIEM tools you can integrate with your event hub can provide analysis and mo
 ### Quick steps
 
 1. Navigate to the [Azure portal](https://portal.azure.com) using one of the required roles.
-1. Create an Event Hub namespace and event hub.
+1. Create an Event Hubs namespace and event hub.
 1. Go to **Azure AD** > **Diagnostic settings**.
 1. Choose the logs you want to stream, select the **Stream to an event hub** option, and complete the fields.
     - [Set up an Event Hubs namespace and an event hub](../../event-hubs/event-hubs-create.md)
@@ -69,7 +69,7 @@ The SIEM tools you can integrate with your event hub can provide analysis and mo
 
 ## Access logs with Microsoft Graph API
 
-The Microsoft Graph API provides a unified programmability model that you can use to access data for your Azure AD Premium tenants. It doesn't require an administrator or developer to set up additional infrastructure to support your script or app. The Microsoft Graph API is **not** designed for pulling large amounts of activity data. Pulling large amounts of activity data using the API leads to issues with pagination and performance. 
+The Microsoft Graph API provides a unified programmability model that you can use to access data for your Azure AD Premium tenants. It doesn't require an administrator or developer to set up extra infrastructure to support your script or app. The Microsoft Graph API is **not** designed for pulling large amounts of activity data. Pulling large amounts of activity data using the API leads to issues with pagination and performance. 
 
 ### Recommended uses
 
@@ -91,7 +91,7 @@ Using Microsoft Graph explorer, you can run queries to help you with the followi
  
 ## Integrate logs with Azure Monitor logs
 
-With the Azure Monitor logs integration you can enable rich visualizations, monitoring, and alerting on the connected data. Log Analytics provides enhanced query and analysis capabilities for Azure AD activity logs. To integrate Azure AD activity logs with Azure Monitor logs, you need a Log Analytics workspace. From there you can run queries through Log Analytics.
+With the Azure Monitor logs integration, you can enable rich visualizations, monitoring, and alerting on the connected data. Log Analytics provides enhanced query and analysis capabilities for Azure AD activity logs. To integrate Azure AD activity logs with Azure Monitor logs, you need a Log Analytics workspace. From there, you can run queries through Log Analytics.
 
 ### Recommended uses
 
@@ -142,11 +142,11 @@ The data captured in the Azure AD activity logs are used in many reports and ser
 
 ### Recommended uses
 
-The reports available in the Azure portal provide a wide range of capabilities to monitor activities and usage in your tenant. The following list of uses and scenarios is not exhaustive, so explore the reports for your needs.
+The reports available in the Azure portal provide a wide range of capabilities to monitor activities and usage in your tenant. The following list of uses and scenarios isn't exhaustive, so explore the reports for your needs.
 
 - Sign-in logs are helpful when researching a user's sign-in activity or to track an application's usage. 
 - With audit logs you can review details around group name changes, device registration, password resets, and more.
-- Use the Identity Protection reports to monitor at risk users, risky workload identities, and risky sign-ins.
+- Use the Identity Protection reports for monitoring at risk users, risky workload identities, and risky sign-ins.
 - To ensure that your users can access the applications in use in your tenant, you can review the sign-in success rate in the Azure AD application activity (preview) report from Usage and insights.
 - Compare the different authentication methods your users prefer with the Authentication methods report from Usage and insights.
 
@@ -186,7 +186,7 @@ The right solution for your long-term storage depends on your budget and what yo
 
 If you plan to query the logs often to run reports or perform analysis on the stored logs, you should integrate your data with Azure Monitor. Azure Monitor provides you with built-in reporting and alerting capabilities. To utilize this integration, you need to set up a Log Analytics workspace. Once you have the integration set up, you can use Log Analytics to query your logs. 
 
-If your budget is tight, and you need a cheap method to create a long-term backup of your activity logs, you can [manually download your logs](howto-download-logs.md). The user interface of the activity logs in the portal provides you with an option to download the data as **JSON** or **CSV**. One trade off of the manual download is that it requires a lot of manual interaction. If you are looking for a more professional solution, use either Azure Storage or Azure Monitor.
+If your budget is tight, and you need a cheap method to create a long-term backup of your activity logs, you can [manually download your logs](howto-download-logs.md). The user interface of the activity logs in the portal provides you with an option to download the data as **JSON** or **CSV**. One trade off of the manual download is that it requires more manual interaction. If you're looking for a more professional solution, use either Azure Storage or Azure Monitor.
 
 ### Recommended uses
 
@@ -203,7 +203,7 @@ Use the following basic steps to archive or download your activity logs.
 ### Archive activity logs to a storage account
 
 1. Navigate to the [Azure portal](https://portal.azure.com) using one of the required roles.
-1. Create an storage account.
+1. Create a storage account.
 1. Go to **Azure AD** > **Diagnostic settings**.
 1. Choose the logs you want to stream, select the **Archive to a storage account** option, and complete the fields.
     - [Review the data retention policies](reference-reports-data-retention.md)
diff --git a/articles/active-directory/reports-monitoring/howto-analyze-activity-logs-log-analytics.md b/articles/active-directory/reports-monitoring/howto-analyze-activity-logs-log-analytics.md
@@ -88,7 +88,7 @@ You can also set up alerts on a query. After running a query, the **+ New alert
     
     ![Screenshot of the "+ New alert rule" button in Log Analytics.](media/howto-analyze-activity-logs-log-analytics/log-analytics-new-alert.png)
 
-1. On the **Actions** tab, select the **Action Group** that will be alerted when the signal occurs.
+1. On the **Actions** tab, select the **Action Group** that will receive the alert when the signal occurs.
     - You can choose to notify your team via email or text message, or you could automate the action using webhooks, Azure functions or logic apps.
     - Learn more about [creating and managing alert groups in the Azure portal](../../azure-monitor/alerts/action-groups.md).
 
@@ -100,7 +100,7 @@ You can also set up alerts on a query. After running a query, the **+ New alert
 
 Azure AD workbooks provide several reports related to common scenarios involving audit, sign-in, and provisioning events. *You can also alert on any of the data provided in the reports, using the steps described in the previous section.*
 
-* **Provisioning analysis:** This workbook shows reports related to auditing provisioning activity. Activities can include the number of new users provisioned, provisioning failures, number of users updated, update failures, the number of users de-provisioned, and corresponding failures. For more information, see [Understand how provisioning integrates with Azure Monitor logs](../app-provisioning/application-provisioning-log-analytics.md).
+* **Provisioning analysis:** This workbook shows reports related to auditing provisioning activity. Activities can include the number of new users provisioned, provisioning failures, number of users updated, update failures, the number of users deprovisioned, and corresponding failures. For more information, see [Understand how provisioning integrates with Azure Monitor logs](../app-provisioning/application-provisioning-log-analytics.md).
 
 * **Sign-ins Events**: This workbook shows the most relevant reports related to monitoring sign-in activity, such as sign-ins by application, user, device, and a summary view tracking the number of sign-ins over time.
 
