removed resource forest references

Justinha · Justinha · commit b8758df35d17 · 2023-03-23T14:56:02.000-07:00
diff --git a/articles/active-directory-domain-services/tutorial-configure-password-hash-sync.md b/articles/active-directory-domain-services/tutorial-configure-password-hash-sync.md
@@ -8,7 +8,7 @@ ms.service: active-directory
 ms.subservice: domain-services
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 01/29/2023
+ms.date: 03/23/2023
 ms.author: justinha
 
 #Customer intent: As an server administrator, I want to learn how to enable password hash synchronization with Azure AD Connect to create a hybrid environment using an on-premises AD DS domain.
@@ -20,7 +20,7 @@ For hybrid environments, an Azure Active Directory (Azure AD) tenant can be conf
 
 To use Azure AD DS with accounts synchronized from an on-premises AD DS environment, you need to configure Azure AD Connect to synchronize those password hashes required for NTLM and Kerberos authentication. After Azure AD Connect is configured, an on-premises account creation or password change event also then synchronizes the legacy password hashes to Azure AD.
 
-You don't need to perform these steps if you use cloud-only accounts with no on-premises AD DS environment, or if you use a *resource forest*. For managed domains that use a resource forest, on-premises password hashes are never synchronized. Authentication for on-premises accounts use the forest trust(s) back to your own AD DS domain controllers.
+You don't need to perform these steps if you use cloud-only accounts with no on-premises AD DS environment.
 
 In this tutorial, you learn:
 
diff --git a/articles/active-directory-domain-services/tutorial-create-instance-advanced.md b/articles/active-directory-domain-services/tutorial-create-instance-advanced.md
@@ -8,7 +8,7 @@ ms.service: active-directory
 ms.subservice: domain-services
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 01/29/2023
+ms.date: 03/23/2023
 ms.author: justinha
 
 #Customer intent: As an identity administrator, I want to create an Azure Active Directory Domain Services managed domain and define advanced configuration options so that I can synchronize identity information with my Azure Active Directory tenant and provide Domain Services connectivity to virtual machines and applications in Azure.
@@ -96,11 +96,7 @@ Complete the fields in the *Basics* window of the Azure portal to create a manag
 1. The **SKU** determines the performance and backup frequency. You can change the SKU after the managed domain has been created if your business demands or requirements change. For more information, see [Azure AD DS SKU concepts][concepts-sku].
 
     For this tutorial, select the *Standard* SKU.
-1. A *forest* is a logical construct used by Active Directory Domain Services to group one or more domains. By default, a managed domain is created as a *User* forest. This type of forest synchronizes all objects from Azure AD, including any user accounts created in an on-premises AD DS environment.
-
-    A *Resource* forest only synchronizes users and groups created directly in Azure AD. Password hashes for on-premises users are never synchronized into a managed domain when you create a resource forest. For more information on *Resource* forests, including why you may use one and how to create forest trusts with on-premises AD DS domains, see [Azure AD DS resource forests overview][resource-forests].
-
-    For this tutorial, choose to create a *User* forest.
+1. A *forest* is a logical construct used by Active Directory Domain Services to group one or more domains. 
 
     ![Configure basic settings for an Azure AD Domain Services managed domain](./media/tutorial-create-instance-advanced/basics-window.png)
 
diff --git a/articles/active-directory-domain-services/tutorial-create-instance.md b/articles/active-directory-domain-services/tutorial-create-instance.md
@@ -96,11 +96,7 @@ Complete the fields in the *Basics* window of the Azure portal to create a manag
 1. The **SKU** determines the performance and backup frequency. You can change the SKU after the managed domain has been created if your business demands or requirements change. For more information, see [Azure AD DS SKU concepts][concepts-sku].
 
     For this tutorial, select the *Standard* SKU.
-1. A *forest* is a logical construct used by Active Directory Domain Services to group one or more domains. By default, a managed domain is created as a *User* forest. This type of forest synchronizes all objects from Azure AD, including any user accounts created in an on-premises AD DS environment.
-
-    A *Resource* forest only synchronizes users and groups created directly in Azure AD. For more information on *Resource* forests, including why you may use one and how to create forest trusts with on-premises AD DS domains, see [Azure AD DS resource forests overview][resource-forests].
-
-    For this tutorial, choose to create a *User* forest.
+1. A *forest* is a logical construct used by Active Directory Domain Services to group one or more domains. 
 
     ![Configure basic settings for an Azure AD Domain Services managed domain](./media/tutorial-create-instance/basics-window.png)
 
