Merge pull request #200485 from MicrosoftDocs/repo_sync_working_branch

huypub · web-flow · commit af6bf1377af4 · 2022-06-06T10:03:31.000-07:00
Confirm merge from repo_sync_working_branch to main to sync with https://github.com/MicrosoftDocs/azure-docs (branch main)
diff --git a/articles/active-directory/cloud-infrastructure-entitlement-management/faqs.md b/articles/active-directory/cloud-infrastructure-entitlement-management/faqs.md
@@ -1,6 +1,6 @@
 ---
-title: Frequently asked questions (FAQs) about CloudKnox Permissions Management
-description: Frequently asked questions (FAQs) about CloudKnox Permissions Management.
+title: Frequently asked questions (FAQs) about Permissions Management
+description: Frequently asked questions (FAQs) about Permissions Management.
 services: active-directory
 author: kenwith
 manager: rkarlin
@@ -15,146 +15,144 @@ ms.author: kenwith
 # Frequently asked questions (FAQs)
 
 > [!IMPORTANT]
-> CloudKnox Permissions Management (CloudKnox) is currently in PREVIEW.
+> Entra Permissions Management is currently in PREVIEW.
 > Some information relates to a prerelease product that may be substantially modified before it's released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
 
 > [!NOTE]
-> The CloudKnox Permissions Management (CloudKnox) PREVIEW is currently not available for tenants hosted in the European Union (EU).
+> The Permissions Management PREVIEW is currently not available for tenants hosted in the European Union (EU).
 
 
-This article answers frequently asked questions (FAQs) about CloudKnox Permissions Management (CloudKnox).
+This article answers frequently asked questions (FAQs) about Permissions Management.
 
-## What's CloudKnox Permissions Management?
+## What's Permissions Management?
 
-CloudKnox is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities. For example, over-privileged workload and user identities, actions, and resources across multi-cloud infrastructures in Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). CloudKnox detects, automatically right-sizes, and continuously monitors unused and excessive permissions. It deepens the Zero Trust security strategy by augmenting the least privilege access principle.
+Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities. For example, over-privileged workload and user identities, actions, and resources across multi-cloud infrastructures in Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Permissions Management detects, automatically right-sizes, and continuously monitors unused and excessive permissions. It deepens the Zero Trust security strategy by augmenting the least privilege access principle.
 
 
-## What are the prerequisites to use CloudKnox?
+## What are the prerequisites to use Permissions Management?
 
-CloudKnox supports data collection from AWS, GCP, and/or Microsoft Azure. For data collection and analysis, customers are required to have an Azure Active Directory (Azure AD) account to use CloudKnox.
+Permissions Management supports data collection from AWS, GCP, and/or Microsoft Azure. For data collection and analysis, customers are required to have an Azure Active Directory (Azure AD) account to use Permissions Management.
 
-## Can a customer use CloudKnox if they have other identities with access to their IaaS platform that aren't yet in Azure AD (for example, if part of their business has Okta or AWS Identity & Access Management (IAM))?
+## Can a customer use Permissions Management if they have other identities with access to their IaaS platform that aren't yet in Azure AD (for example, if part of their business has Okta or AWS Identity & Access Management (IAM))?
 
 Yes, a customer can detect, mitigate, and monitor the risk of 'backdoor' accounts that are local to AWS IAM, GCP, or from other identity providers such as Okta or AWS IAM.
 
-## Where can customers access CloudKnox?
+## Where can customers access Permissions Management?
 
-Customers can access the CloudKnox interface with a link from the Azure AD extension in the Azure portal.
+Customers can access the Permissions Management interface with a link from the Azure AD extension in the Azure portal.
 
-## Can non-cloud customers use CloudKnox on-premises?
+## Can non-cloud customers use Permissions Management on-premises?
 
-No, CloudKnox is a hosted cloud offering.
+No, Permissions Management is a hosted cloud offering.
 
-## Can non-Azure customers use CloudKnox?
+## Can non-Azure customers use Permissions Management?
 
-Yes, non-Azure customers can use our solution. CloudKnox is a multi-cloud solution so even customers who have no subscription to Azure can benefit from it.
+Yes, non-Azure customers can use our solution. Permissions Management is a multi-cloud solution so even customers who have no subscription to Azure can benefit from it.
 
-## Is CloudKnox available for tenants hosted in the European Union (EU)?
+## Is Permissions Management available for tenants hosted in the European Union (EU)?
 
-No, the CloudKnox Permissions Management (CloudKnox) PREVIEW is currently not available for tenants hosted in the European Union (EU).
+No, the Permissions Management Permissions Management PREVIEW is currently not available for tenants hosted in the European Union (EU).
 
-## If I'm already using Azure AD  Privileged Identity Management (PIM) for Azure, what value does CloudKnox provide?
+## If I'm already using Azure AD  Privileged Identity Management (PIM) for Azure, what value does Permissions Management provide?
 
-CloudKnox complements Azure AD PIM. Azure AD PIM provides just-in-time access for admin roles in Azure (as well as Microsoft Online Services and apps that use groups), while CloudKnox allows multi-cloud discovery, remediation, and monitoring of privileged access across Azure, AWS, and GCP.
+Permissions Management complements Azure AD PIM. Azure AD PIM provides just-in-time access for admin roles in Azure (as well as Microsoft Online Services and apps that use groups), while Permissions Management allows multi-cloud discovery, remediation, and monitoring of privileged access across Azure, AWS, and GCP.
 
-## What languages does CloudKnox support?
+## What languages does Permissions Management support?
 
-CloudKnox currently supports English.
+Permissions Management currently supports English.
 
-## What public cloud infrastructures are supported by CloudKnox?
+## What public cloud infrastructures are supported by Permissions Management?
 
-CloudKnox currently supports the three major public clouds: Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure.
+Permissions Management currently supports the three major public clouds: Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure.
 
-## Does CloudKnox support hybrid environments?
+## Does Permissions Management support hybrid environments?
 
-CloudKnox currently doesn't support hybrid environments.
+Permissions Management currently doesn't support hybrid environments.
 
-## What types of identities are supported by CloudKnox?
+## What types of identities are supported by Permissions Management?
 
-CloudKnox supports user identities (for example, employees, customers, external partners) and workload identities (for example, virtual machines, containers, web apps, serverless functions).
+Permissions Management supports user identities (for example, employees, customers, external partners) and workload identities (for example, virtual machines, containers, web apps, serverless functions).
 
-<!---## Is CloudKnox General Data Protection Regulation (GDPR) compliant?
+<!---## Is Permissions Management General Data Protection Regulation (GDPR) compliant?
 
-CloudKnox is currently not GDPR compliant.--->
+Permissions Management is currently not GDPR compliant.--->
 
-## Is CloudKnox available in Government Cloud?
+## Is Permissions Management available in Government Cloud?
 
-No, CloudKnox is currently not available in Government clouds.
+No, Permissions Management is currently not available in Government clouds.
 
-## Is CloudKnox available for sovereign clouds?
+## Is Permissions Management available for sovereign clouds?
 
-No, CloudKnox is currently not available in sovereign Clouds.
+No, Permissions Management is currently not available in sovereign Clouds.
 
-## How does CloudKnox collect insights about permissions usage?
+## How does Permissions Management collect insights about permissions usage?
 
-CloudKnox has a data collector that collects access permissions assigned to various identities, activity logs, and resources metadata. This gathers full visibility into permissions granted to all identities to access the resources and details on usage of granted permissions.
+Permissions Management has a data collector that collects access permissions assigned to various identities, activity logs, and resources metadata. This gathers full visibility into permissions granted to all identities to access the resources and details on usage of granted permissions.
 
-## How does CloudKnox evaluate cloud permissions risk?
+## How does Permissions Management evaluate cloud permissions risk?
 
-CloudKnox offers granular visibility into all identities and their permissions granted versus used, across cloud infrastructures to uncover any action performed by any identity on any resource. This isn't limited to just user identities, but also workload identities such as virtual machines, access keys, containers, and scripts. The dashboard gives an overview of permission profile to locate the riskiest identities and resources.
+Permissions Management offers granular visibility into all identities and their permissions granted versus used, across cloud infrastructures to uncover any action performed by any identity on any resource. This isn't limited to just user identities, but also workload identities such as virtual machines, access keys, containers, and scripts. The dashboard gives an overview of permission profile to locate the riskiest identities and resources.
 
 ## What is the Permissions Creep Index?
 
 The Permissions Creep Index (PCI) is a quantitative measure of risk associated with an identity or role determined by comparing permissions granted versus permissions exercised. It allows users to instantly evaluate the level of risk associated with the number of unused or over-provisioned permissions across identities and resources. It measures how much damage identities can cause based on the permissions they have.
 
-## How can customers use CloudKnox to delete unused or excessive permissions?
+## How can customers use Permissions Management to delete unused or excessive permissions?
 
-CloudKnox allows users to right-size excessive permissions and automate least privilege policy enforcement with just a few clicks. The solution continuously analyzes historical permission usage data for each identity and gives customers the ability to right-size permissions of that identity to only the permissions that are being used for day-to-day operations. All unused and other risky permissions can be automatically removed.
+Permissions Management allows users to right-size excessive permissions and automate least privilege policy enforcement with just a few clicks. The solution continuously analyzes historical permission usage data for each identity and gives customers the ability to right-size permissions of that identity to only the permissions that are being used for day-to-day operations. All unused and other risky permissions can be automatically removed.
 
-## How can customers grant permissions on-demand with CloudKnox?
+## How can customers grant permissions on-demand with Permissions Management?
 
 For any break-glass or one-off scenarios where an identity needs to perform a specific set of actions on a set of specific resources, the identity can request those permissions on-demand for a limited period with a self-service workflow. Customers can either use the built-in workflow engine or their IT service management (ITSM) tool. The user experience is the same for any identity type, identity source (local, enterprise directory, or federated) and cloud.
 
 ## What is the difference between permissions on-demand and just-in-time access?
 
 Just-in-time (JIT) access is a method used to enforce the principle of least privilege to ensure identities are given the minimum level of permissions to perform the task at hand. Permissions on-demand are a type of JIT access that allows the temporary elevation of permissions, enabling identities to access resources on a by-request, timed basis.
 
-## How can customers monitor permissions usage with CloudKnox?
+## How can customers monitor permissions usage with Permissions Management?
 
-Customers only need to track the evolution of their Permission Creep Index to monitor permissions usage. They can do this in the "Analytics" tab in their CloudKnox dashboard where they can see how the PCI of each identity or resource is evolving over time.
+Customers only need to track the evolution of their Permission Creep Index to monitor permissions usage. They can do this in the "Analytics" tab in their Permissions Management dashboard where they can see how the PCI of each identity or resource is evolving over time.
 
 ## Can customers generate permissions usage reports?
 
-Yes, CloudKnox has various types of system report available that capture specific data sets. These reports allow customers to:
+Yes, Permissions Management has various types of system report available that capture specific data sets. These reports allow customers to:
 - Make timely decisions.
 - Analyze usage trends and system/user performance.
 - Identify high-risk areas.
 
 For information about permissions usage reports, see [Generate and download the Permissions analytics report](product-permissions-analytics-reports.md).
 
-## Does CloudKnox integrate with third-party ITSM (Information Technology Security Management) tools?
+## Does Permissions Management integrate with third-party ITSM (Information Technology Security Management) tools?
 
-CloudKnox integrates with ServiceNow.
+Permissions Management integrates with ServiceNow.
 
+## How is Permissions Management being deployed?
 
-## How is CloudKnox being deployed?
+Customers with Global Admin role have first to onboard Permissions Management on their Azure AD tenant, and then onboard their AWS accounts, GCP projects, and Azure subscriptions. More details about onboarding can be found in our product documentation.
 
-Customers with Global Admin role have first to onboard CloudKnox on their Azure AD tenant, and then onboard their AWS accounts, GCP projects, and Azure subscriptions. More details about onboarding can be found in our product documentation.
-
-## How long does it take to deploy CloudKnox?
+## How long does it take to deploy Permissions Management?
 
 It depends on each customer and how many AWS accounts, GCP projects, and Azure subscriptions they have.
 
-## Once CloudKnox is deployed, how fast can I get permissions insights?
+## Once Permissions Management is deployed, how fast can I get permissions insights?
 
 Once fully onboarded with data collection set up, customers can access permissions usage insights within hours. Our machine-learning engine refreshes the Permission Creep Index every hour so that customers can start their risk assessment right away.
 
-## Is CloudKnox collecting and storing sensitive personal data?
+## Is Permissions Management collecting and storing sensitive personal data?
 
-No, CloudKnox doesn't have access to sensitive personal data.
+No, Permissions Management doesn't have access to sensitive personal data.
 
-## Where can I find more information about CloudKnox?
+## Where can I find more information about Permissions Management?
 
 You can read our blog and visit our web page. You can also get in touch with your Microsoft point of contact to schedule a demo.
 
 ## Resources
 
 - [Public Preview announcement blog](https://www.aka.ms/CloudKnox-Public-Preview-Blog)
-- [CloudKnox Permissions Management web page](https://microsoft.com/security/business/identity-access-management/permissions-management)
-
+- [Permissions Management web page](https://microsoft.com/security/business/identity-access-management/permissions-management)
 
 
 ## Next steps
 
-- For an overview of CloudKnox, see [What's CloudKnox Permissions Management?](overview.md).
-- For information on how to onboard CloudKnox in your organization, see [Enable CloudKnox in your organization](onboard-enable-tenant.md).
+- For an overview of Permissions Management, see [What's Permissions Management Permissions Management?](overview.md).
+- For information on how to onboard Permissions Management in your organization, see [Enable Permissions Management in your organization](onboard-enable-tenant.md).
diff --git a/articles/active-directory/develop/scenario-desktop-acquire-token.md b/articles/active-directory/develop/scenario-desktop-acquire-token.md
@@ -175,7 +175,7 @@ let accounts = await msalTokenCache.getAllAccounts();
 
             const tokenRequest = {
                 code: response["authorization_code"],
-                codeVerifier: verifier // PKCE Code Verifier 
+                codeVerifier: verifier, // PKCE Code Verifier 
                 redirectUri: "your_redirect_uri",
                 scopes: ["User.Read"],
             };
diff --git a/articles/container-registry/tasks-agent-pools.md b/articles/container-registry/tasks-agent-pools.md
@@ -65,6 +65,7 @@ Create an agent pool by using the [az acr agentpool create][az-acr-agentpool-cre
 
 ```azurecli
 az acr agentpool create \
+    --registry MyRegistry \
     --name myagentpool \
     --tier S2
 ```
@@ -78,6 +79,7 @@ Scale the pool size up or down with the [az acr agentpool update][az-acr-agentpo
 
 ```azurecli
 az acr agentpool update \
+    --registry MyRegistry \
     --name myagentpool \
     --count 2
 ```
@@ -112,6 +114,7 @@ subnetId=$(az network vnet subnet show \
         --query id --output tsv)
 
 az acr agentpool create \
+    --registry MyRegistry \
     --name myagentpool \
     --tier S2 \
     --subnet-id $subnetId
@@ -131,6 +134,7 @@ Queue a quick task on the agent pool by using the [az acr build][az-acr-build] c
 
 ```azurecli
 az acr build \
+    --registry MyRegistry \
     --agent-pool myagentpool \
     --image myimage:mytag \
     --file Dockerfile \
@@ -143,6 +147,7 @@ For example, create a scheduled task on the agent pool with [az acr task create]
 
 ```azurecli
 az acr task create \
+    --registry MyRegistry \
     --name mytask \
     --agent-pool myagentpool \
     --image myimage:mytag \
@@ -156,6 +161,7 @@ To verify task setup, run [az acr task run][az-acr-task-run]:
 
 ```azurecli
 az acr task run \
+    --registry MyRegistry \
     --name mytask
 ```
 
@@ -165,6 +171,7 @@ To find the number of runs currently scheduled on the agent pool, run [az acr ag
 
 ```azurecli
 az acr agentpool show \
+    --registry MyRegistry \
     --name myagentpool \
     --queue-count
 ```
diff --git a/articles/virtual-desktop/TOC.yml b/articles/virtual-desktop/TOC.yml
@@ -380,6 +380,6 @@
   - name: Azure Virtual Desktop roadmap
     href: https://aka.ms/avdroadmap
   - name: Azure Resource Manager templates
-    href: https://github.com/Azure/RDS-Templates/tree/master/wvd-templates
+    href: https://github.com/Azure/RDS-Templates/tree/master/ARM-wvd-templates
   - name: Azure compliance offerings
-    href: https://azure.microsoft.com/resources/microsoft-azure-compliance-offerings/
+    href: https://azure.microsoft.com/resources/microsoft-azure-compliance-offerings/
diff --git a/articles/virtual-machines/linux/n-series-driver-setup.md b/articles/virtual-machines/linux/n-series-driver-setup.md
@@ -97,7 +97,7 @@ sudo reboot
 
 2. Install the latest [Linux Integration Services for Hyper-V and Azure](https://www.microsoft.com/download/details.aspx?id=55106). Check if LIS is required by verifying the results of lspci. If all GPU devices are listed as expected (and documented above), installing LIS is not required.
 
-   Please note that LIS is applicable to Red Hat Enterprise Linux, CentOS, and the Oracle Linux Red Hat Compatible Kernel 5.2-5.11, 6.0-6.10, and 7.0-7.7. Please refer to the [Linux Integration Services documentation] (https://www.microsoft.com/en-us/download/details.aspx?id=55106) for more details. 
+   Please note that LIS is applicable to Red Hat Enterprise Linux, CentOS, and the Oracle Linux Red Hat Compatible Kernel 5.2-5.11, 6.0-6.10, and 7.0-7.7. Please refer to the [Linux Integration Services documentation](https://www.microsoft.com/en-us/download/details.aspx?id=55106) for more details. 
    Skip this step if you plan to use CentOS/RHEL 7.8 (or higher versions) as LIS is no longer required for these versions.
 
       ```bash
diff --git a/articles/virtual-machines/workloads/sap/sap-hana-scale-out-standby-netapp-files-suse.md b/articles/virtual-machines/workloads/sap/sap-hana-scale-out-standby-netapp-files-suse.md
