Merge branch 'master' into hdimeta

Author: JasonWHowell

.openpublishing.redirection.json

@@ -2741,6 +2741,16 @@
             "redirect_url": "/azure/logic-apps/logic-apps-create-deploy-template",
             "redirect_document_id": true
         },
+        {
+            "source_path": "articles/connectors/connectors-create-api-sharepointserver.md",
+            "redirect_url": "/azure/connectors/connectors-create-api-sharepoint",
+            "redirect_document_id": true
+        },
+        {
+            "source_path": "articles/connectors/connectors-create-api-sharepointonline.md",
+            "redirect_url": "/azure/connectors/connectors-create-api-sharepoint",
+            "redirect_document_id": false
+        },
         {
             "source_path": "articles/logic-apps/custom-connector-build-web-api-app-tutorial.md",
             "redirect_url": "https://docs.microsoft.com/connectors/custom-connectors/create-web-api-connector",

articles/active-directory/connect/active-directory-aadconnect-faq.md

@@ -185,7 +185,7 @@ If you need help upgrading to a newer version of Azure AD Connect, open a suppor
 ## Troubleshooting
 **Q: How can I get help with Azure AD Connect?**
 
-[Search the Microsoft Knowledge Base (KB)](https://www.microsoft.com/Search/result.aspx?q=azure%20active%20directory%20connect&form=mssupport)
+[Search the Microsoft Knowledge Base (KB)](https://www.microsoft.com/en-us/search/result.aspx?q=azure+active+directory+connect)
 
 * Search the KB for technical solutions to common break-fix issues about support for Azure AD Connect.
 

articles/active-directory/privileged-identity-management/media/pim-how-to-activate-role/pim-application-access.png

@@ -11,7 +11,7 @@ ms.service: active-directory
 ms.topic: conceptual
 ms.workload: identity
 ms.component: pim
-ms.date: 02/14/2017
+ms.date: 08/21/2018
 ms.author: rolyon
 ms.custom: pim
 ---
@@ -26,25 +26,48 @@ This article is for admins who need to activate their role in Azure AD Privilege
 Use the Azure AD Privileged Identity Management application in the [Azure portal](https://portal.azure.com/) to request a role activation, even if you're going to operate in another portal or PowerShell. If you don't have the Azure AD Privileged Identity Management application on your Azure portal, follow these steps to get started.
 
 1. Sign in to the [Azure portal](https://portal.azure.com/).
-2. Select your username in the upper right-hand corner of the Azure portal, and select the directory where you will you be operating.
-3. Select **All services** and use the Filter textbox to search for **Azure AD Privileged Identity Management**.
-4. Check **Pin to dashboard** and then click **Create**. The Privileged Identity Management application opens.
+
+1. Select your username in the upper right-hand corner of the Azure portal, and select the directory where you will you be operating.
+
+1. Select **All services** and use the Filter textbox to search for **Azure AD Privileged Identity Management**.
+
+1. Check **Pin to dashboard** and then click **Create**. The Privileged Identity Management application opens.
 
 ## Activate a role
 When you need to take on a role, you can request activation by selecting the **My Roles** navigation option in the Azure AD Privileged Identity Management application's left navigation column.
 
 1. Sign in to the [Azure portal](https://portal.azure.com/) and select the Azure AD Privileged Identity Management tile.
-2. Select **My Roles**. A list of your assigned eligible roles appear in the grouping at the top of the page.
-3. Select a role to activate.
-4. Select **Activate**. The **Request role activation** blade appears.
-5. Some roles require Multi-Factor Authentication (MFA) before you can activate the role. You only have to authenticate once per session.
-   
+
+1. Select **My Roles**. A list of your assigned eligible roles appear in the grouping at the top of the page.
+
+1. Select a role to activate.
+
+1. Select **Activate**. The **Request role activation** blade appears.
+
+1. Some roles require Multi-Factor Authentication (MFA) before you can activate the role. You only have to authenticate once per session.
+
     ![Verify with MFA before role activation - screenshot](./media/pim-how-to-activate-role/PIM_activation_MFA.png)
-6. Enter the reason for the activation request in the text field.  Some roles require you to supply a trouble ticket number.
-7. Select **OK**.  If the role does not require approval, it is now activated, and the role appears in the list of active roles (directly below the list of eligible role assignments). If the [role requires approval](./azure-ad-pim-approval-workflow.md) to activate, a toast notification will briefly appear in the upper right-hand corner of your browser informing you the request is pending approval.
+
+1. Enter the reason for the activation request in the text field.  Some roles require you to supply a trouble ticket number.
+
+1. Select **OK**.  If the role does not require approval, it is now activated, and the role appears in the list of active roles (directly below the list of eligible role assignments). If the [role requires approval](./azure-ad-pim-approval-workflow.md) to activate, a toast notification will briefly appear in the upper right-hand corner of your browser informing you the request is pending approval.
 
     ![Request pending notification - screenshot](./media/pim-how-to-activate-role/PIM_Request_Pending_Toast2.png)
 
+## Use a role immediately after activation
+
+Because of caching, activations do not occur immediately in the Azure portal without a refresh. If you need to reduce the possibility of delays after activating a role, you can use the **Application access** page in the portal. Applications accessed from this page check for new role assignments immediately.
+
+1. Open Azure AD Privileged Identity Management.
+
+1. Click the **Application access** page.
+
+    ![PIM Application access - screenshot](./media/pim-how-to-activate-role/pim-application-access.png)
+
+1. Click **Azure Active Directory** to reopen the portal on the **All Users** page.
+
+    When you click this link, you force a refresh and there is a check for new Azure AD role assignments.
+
 ## Deactivate a role
 Once a role has been activated, it automatically deactivates when its time limit (eligible duration) is reached.
 
@@ -54,10 +77,14 @@ If you complete your admin tasks early, you can also deactivate a role manually
 In the event you do not require activation of a role that requires approval, you may cancel a pending request at any time. Simply select the **My Roles** navigation option in the Azure AD Privileged Identity Management application's left navigation column.
 
 1. Sign in to the [Azure portal](https://portal.azure.com/) and select the Azure AD Privileged Identity Management tile.
-2. Select **My Roles**. A list of your assigned eligible roles appear in the grouping at the top of the page.
-3. Select a role.
-4. Select the **Activation is pending approval** banner on the role activation details blade.
-5. Select **Cancel** at the top of the **Pending approval** blade.
+
+1. Select **My Roles**. A list of your assigned eligible roles appear in the grouping at the top of the page.
+
+1. Select a role.
+
+1. Select the **Activation is pending approval** banner on the role activation details blade.
+
+1. Select **Cancel** at the top of the **Pending approval** blade.
 
    ![Cancel pending request screenshot](./media/pim-how-to-activate-role/PIM_Request_Pending_Banner_Cancel.png)
 

articles/active-directory/privileged-identity-management/media/pim-resource-roles-activate-your-roles/pim-application-access.png

@@ -11,15 +11,15 @@ ms.topic: conceptual
 ms.tgt_pltfrm: na
 ms.workload: identity
 ms.component: pim
-ms.date: 04/02/2018
+ms.date: 08/21/2018
 ms.author: rolyon
 ms.custom: pim
 ---
 
 # Activate roles for Azure resources by using Privileged Identity Management
 Privileged Identity Management (PIM) introduces a new experience in activating roles for Azure resources. Eligible role members can schedule activation for a future date and time. They can also select a specific activation duration within the maximum (configured by administrators). For more information, see [How to activate or deactivate roles in Azure AD Privileged Identity Management](pim-how-to-activate-role.md).
 
-## Activate roles
+## Activate a role
 Browse to the **My roles** section in the left pane. Select **Activate** for the role that you want to activate.
 
 !["Eligible roles" tab in the "My roles" pane.](media/azure-pim-resource-rbac/rbac-roles.png)
@@ -34,6 +34,19 @@ If the activation is scheduled for a future date and time, the pending request a
 
 ![List of pending requests with "Cancel" buttons](media/azure-pim-resource-rbac/rbac-activate-pending.png)
 
+## Use a role immediately after activation
+
+Because of caching, activations do not occur immediately in the Azure portal without a refresh. If you need to reduce the possibility of delays after activating a role, you can use the **Application access** page in the portal. Applications accessed from this page check for new role assignments immediately.
+
+1. Open Azure AD Privileged Identity Management.
+
+1. Click the **Application access** page.
+
+    ![PIM Application access - screenshot](./media/pim-resource-roles-activate-your-roles/pim-application-access.png)
+
+1. Click **Azure resources** to reopen the portal on the **All resources** page.
+
+    When you click this link, you force a refresh and there is a check for new Azure resource role assignments.
 
 ## Apply Just Enough Administration practices
 

articles/active-directory/privileged-identity-management/pim-how-to-activate-role.md

@@ -22,7 +22,7 @@ Learn how to discover and manage Azure resources when you use Privileged Identit
 When you first set up PIM for Azure resources, you need to discover and select resources to protect with PIM. There's no limit to the number of resources that you can manage with PIM. However, we recommend starting with your most critical (production) resources.
 
 > [!NOTE]
-> You can only search for and select subscription resources to manage by using PIM. When you manage a subscription in PIM, you can also manage child resources in the subscription.
+> You can only search for and select management group or subscription resources to manage using PIM. When you manage a management group or a subscription in PIM, you can also manage its child resources.
 
 ## Discover resources
 

articles/active-directory/privileged-identity-management/pim-resource-roles-activate-your-roles.md

@@ -174,7 +174,7 @@ POST https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/
 where:
 
 * `subscriptionId` - id of the subscription containing the API Management service you are restoring a backup into
-* `resourceGroupName` - a string in the form of 'Api-Default-{service-region}' where `service-region` identifies the Azure region where the API Management service you are restoring a backup into is hosted, for example, `North-Central-US`
+* `resourceGroupName` - name of the resource group containing the Azure API Management service you are restoring a backup into
 * `serviceName` - the name of the API Management service being restored into specified at the time of its creation
 * `api-version` - replace  with `2018-06-01-preview`
 

articles/active-directory/privileged-identity-management/pim-resource-roles-discover-resources.md

@@ -36,7 +36,7 @@ In the tutorial, you will deploy an application that includes:
 In this tutorial, you will use the following tools. Since it’s not comprehensive discussion on tools, I’m going to stick to the end-to-end scenario and just give you a brief intro to each, and where you can find more information on it. 
 
 ### Azure Resource Manager templates (JSON)
-Every time you create a web app in Azure App Service, for example, Azure Resource Manager uses a JSON template to create the entire resource group with the component resources. A complex template from the [Azure Marketplace](/marketplace) like the [Scalable WordPress](/marketplace/partners/wordpress/scalablewordpress/) app can include the MySQL database, storage accounts, the App Service plan, the web app itself, alert rules, app settings, autoscale settings, and more, and all these templates are available to you through PowerShell. For information on how to download and use these templates, see [Using Azure PowerShell with Azure Resource Manager](../powershell-azure-resource-manager.md).
+Every time you create a web app in Azure App Service, for example, Azure Resource Manager uses a JSON template to create the entire resource group with the component resources. A complex template from the [Azure Marketplace](/azure/marketplace) can include the database, storage accounts, the App Service plan, the web app itself, alert rules, app settings, autoscale settings, and more, and all these templates are available to you through PowerShell. For information on how to download and use these templates, see [Using Azure PowerShell with Azure Resource Manager](../powershell-azure-resource-manager.md).
 
 For more information on the Azure Resource Manager templates, see [Authoring Azure Resource Manager Templates](../azure-resource-manager/resource-group-authoring-templates.md)
 

articles/api-management/api-management-howto-disaster-recovery-backup-restore.md

@@ -90,7 +90,7 @@ The following table shows how to the versions of Windows and of the language run
 | Python version | At `https://<appname>.scm.azurewebsites.net/DebugConsole`, run the following command in the command prompt: <br> `python --version` |  
 
 > [!NOTE]  
-> Access to registry location `HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\Packages`, where information on ["KB" patches]((https://docs.microsoft.com/security-updates/SecurityBulletins/securitybulletins)) is stored, is locked down.
+> Access to registry location `HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\Packages`, where information on ["KB" patches](https://docs.microsoft.com/security-updates/SecurityBulletins/securitybulletins) is stored, is locked down.
 >
 >