Removed all the (newly) broken links

memildin · memildin · commit c15a9f840c0d · 2020-04-02T12:16:12.000+03:00
diff --git a/articles/security-center/TOC.yml b/articles/security-center/TOC.yml
@@ -155,6 +155,8 @@
       href: security-center-sql-service-recommendations.md
     - name: Protect identity and access
       href: security-center-identity-access.md  
+    - name: Manage investigation user data
+      href: security-center-investigation-user-data.md
   - name: Apply cloud defenses
     items:
     - name: Manage just-in-time access
@@ -165,11 +167,6 @@
       href: security-center-file-integrity-monitoring.md
     - name: Adaptive network hardening
       href: security-center-adaptive-network-hardening.md
-      
-  - name: Archive
-    items:
-    - name: Manage investigation user data
-      href: security-center-investigation-user-data.md
 
 - name: Reference
   items:
diff --git a/articles/security-center/azure-container-registry-integration.md b/articles/security-center/azure-container-registry-integration.md
@@ -45,4 +45,4 @@ To learn more about Security Center's container security features, see:
 
 * [Integration with Azure Kubernetes Service](azure-kubernetes-service-integration.md)
 
-* [Virtual Machine protection](security-center-virtual-machine-protection.md) - Describes Security Center's recommendations
+* [Virtual Machine protection](security-center-virtual-machine-protection.md) - Describes Security Center's recommendations
diff --git a/articles/security-center/security-center-features-retirement-july2019.md b/articles/security-center/security-center-features-retirement-july2019.md
@@ -93,7 +93,7 @@ All the features of the **Identity & Access** dashboard in Log Analytics can be
 
 ## Security events map<a name="menu_securityeventsmap"></a>
 
-Security Center provides you with a [security alerts map](https://docs.microsoft.com/azure/security-center/security-center-threat-intel) to help identify security threats. The **Go to security events map** button in that map opens a dashboard that allows you to view raw security events on the selected workspace.
+Security Center provides you with a security alerts map to help identify security threats. The **Go to security events map** button in that map opens a dashboard that allows you to view raw security events on the selected workspace.
 
 We removed the **Go to security events map** button and the per-workspace dashboard.
 
@@ -132,7 +132,7 @@ For more information on custom alerts retirement, see [Custom Alert Rules in Azu
 
 ## Security alerts investigation<a name="menu_investigate"></a>
 
-[The Investigation feature](https://docs.microsoft.com/azure/security-center/security-center-investigation) in Security Center helps you triage a potential security incident. The feature allows you to understand the scope of an incident and track down its root cause. We removed this feature from Security Center because it's been replaced with an improved experience in [Azure Sentinel](https://azure.microsoft.com/services/azure-sentinel/).
+The Investigation feature in Security Center helps you triage a potential security incident. The feature allows you to understand the scope of an incident and track down its root cause. We removed this feature from Security Center because it's been replaced with an improved experience in [Azure Sentinel](https://azure.microsoft.com/services/azure-sentinel/).
 
 ![Security incident][14]
 
diff --git a/articles/security-center/security-center-investigation-user-data.md b/articles/security-center/security-center-investigation-user-data.md
@@ -22,7 +22,7 @@ This article provides information on how to manage the user data found in Azure
 [!INCLUDE [gdpr-intro-sentence.md](../../includes/gdpr-intro-sentence.md)]
 
 ## Searching for and identifying personal data
-In the Azure portal, you can use Security Center's [investigation feature](../security-center/security-center-investigation.md) to search for personal data. The investigation feature is available under **Security Alerts**.
+In the Azure portal, you can use Security Center's investigation feature to search for personal data. The investigation feature is available under **Security Alerts**.
 
 The investigation feature shows all entities, user information, and data under the **Entities** tab.
 
diff --git a/articles/security-center/security-center-planning-and-operations-guide.md b/articles/security-center/security-center-planning-and-operations-guide.md
@@ -177,7 +177,7 @@ Once you address all recommendations, the **Prevention** section should be green
 
 The **Detection** section is more reactive, these are alerts regarding issues that are either taking place now, or occurred in the past and were detected by Security Center controls and 3rd party systems. The Security Alerts tile will show bar graphs that represent the number of alerts that were found in each day, and their distribution among the different severity categories (low, medium, high). For more information about Security Alerts, read [Managing and responding to security alerts in Azure Security Center](security-center-managing-and-responding-alerts.md).
 
-Plan to visit the [threat intelligence](https://docs.microsoft.com/azure/security-center/security-center-threat-intel) option as part of your daily security operations. There you can identify security threats against the environment, such as identify if a particular computer is part of a botnet.
+Plan to visit the threat intelligence option as part of your daily security operations. There you can identify security threats against the environment, such as identify if a particular computer is part of a botnet.
 
 ### Monitoring for new or changed resources
 Most Azure environments are dynamic, with resources regularly being created, spun up or down, reconfigured, and changed. Security Center helps ensure that you have visibility into the security state of these new resources.
@@ -231,7 +231,7 @@ The following example shows a suspicious RDP activity taking place:
 
 This page shows the details regarding the time that the attack took place, the source hostname, the target VM and also gives recommendation steps. In some circumstances, the source information of the attack may be empty. Read [Missing Source Information in Azure Security Center Alerts](https://blogs.msdn.microsoft.com/azuresecurity/2016/03/25/missing-source-information-in-azure-security-center-alerts/) for more information about this type of behavior.
 
-From this page, you can also start an [investigation](https://docs.microsoft.com/azure/security-center/security-center-investigation) to better understand the timeline of the attack, how the attack took place, which systems were potentially compromised, which credentials were used, and see a graphical representation of the entire attack chain.
+From this page, you can also start an investigation to better understand the timeline of the attack, how the attack took place, which systems were potentially compromised, which credentials were used, and see a graphical representation of the entire attack chain.
 
 Once you identify the compromised system, you can run a [Workflow Automation](workflow-automation.md) that was previously created. These are a collection of procedures that can be executed from Security Center once triggered by an alert.
 
diff --git a/articles/security-center/security-center-privacy.md b/articles/security-center/security-center-privacy.md
@@ -93,7 +93,4 @@ A Security Center user can choose to opt out by deleting their [security contact
 [Alert data](security-center-managing-and-responding-alerts.md) is considered security data and is retained for a period of two years.
 
 ## Auditing and reporting
-Audit logs of security contact, just-in-time, and alert updates are maintained in [Azure Activity Logs](../azure-monitor/platform/platform-logs-overview.md).
-
-## Next steps
-For more information about managing user data, see [Manage user data found in an Azure Security Center investigation](security-center-investigation-user-data.md).
+Audit logs of security contact, just-in-time, and alert updates are maintained in [Azure Activity Logs](../azure-monitor/platform/platform-logs-overview.md).
diff --git a/articles/security-center/security-center-troubleshooting-guide.md b/articles/security-center/security-center-troubleshooting-guide.md
@@ -144,7 +144,6 @@ In this document, you learned how to configure security policies in Azure Securi
 * [Alerts Validation in Azure Security Center](security-center-alert-validation.md)
 * [Email Notifications in Azure Security Center](security-center-provide-security-contact-details.md)
 * [Handling Security Incidents in Azure Security Center](security-center-incident.md)
-* [Investigate Incidents and Alerts in Azure Security Center](security-center-investigation.md)
 * [Azure Security Center detection capabilities](security-center-detection-capabilities.md)
 * [Monitoring partner solutions with Azure Security Center](security-center-partner-solutions.md) — Learn how to monitor the health status of your partner solutions.
 * [Azure Security Center FAQ](faq-general.md) — Find frequently asked questions about using the service
diff --git a/articles/security-center/tutorial-security-incident.md b/articles/security-center/tutorial-security-incident.md
@@ -24,10 +24,10 @@ Security Center continuously analyzes your hybrid cloud workloads using advanced
 > * Investigate further to determine the root cause and scope of a security incident
 > * Search security data to aid in investigation
 
-If you don’t have an Azure subscription, create a [free account](https://azure.microsoft.com/free/) before you begin.
+If you don't have an Azure subscription, create a [free account](https://azure.microsoft.com/free/) before you begin.
 
 ## Prerequisites
-To step through the features covered in this tutorial, you must be on Security Center’s Standard pricing tier. You can try Security Center Standard at no cost. To learn more, see the [pricing page](https://azure.microsoft.com/pricing/details/security-center/). The quickstart [Onboard your Azure subscription to Security Center Standard](security-center-get-started.md) walks you through how to upgrade to Standard.
+To step through the features covered in this tutorial, you must be on Security Center's Standard pricing tier. You can try Security Center Standard at no cost. To learn more, see the [pricing page](https://azure.microsoft.com/pricing/details/security-center/). The quickstart [Onboard your Azure subscription to Security Center Standard](security-center-get-started.md) walks you through how to upgrade to Standard.
 
 ## Scenario
 Contoso recently migrated some of their on-premises resources to Azure, including some virtual machine-based line-of-business workloads and SQL databases. Currently, Contoso's Core Computer Security Incident Response Team (CSIRT) has a problem investigating security issues because of security intelligence not being integrated with their current incident response tools. This lack of integration introduces a problem during the Detect stage (too many false positives), as well as during the Assess and Diagnose stages. As part of this migration, they decided to opt in for Security Center to help them address this problem.
@@ -82,7 +82,7 @@ Security Center provides a unified view of all security alerts. Security alerts
 
    ![Investigation](./media/tutorial-security-incident/tutorial-security-incident-fig5.png)
 
-   The investigation map is a graphical representation of the entities that are connected to this security alert or incident. By clicking on an entity in the map, the information about that entity will show new entities, and the map expands. The entity that is selected in the map has its properties highlighted in the pane on the right side of the page. The information available on each tab will vary according to the selected entity. During the investigation process, review all relevant information to better understand the attacker’s movement.
+   The investigation map is a graphical representation of the entities that are connected to this security alert or incident. By clicking on an entity in the map, the information about that entity will show new entities, and the map expands. The entity that is selected in the map has its properties highlighted in the pane on the right side of the page. The information available on each tab will vary according to the selected entity. During the investigation process, review all relevant information to better understand the attacker's movement.
 
 2. If you need more evidence, or must further investigate entities that were found during the investigation, proceed to the next step.
 
@@ -118,9 +118,4 @@ In this tutorial, you learned about Security Center features to be used when res
 > [!div class="checklist"]
 > * Security incident which is an aggregation of related alerts for a resource
 > * Investigation map which is a graphical representation of the entities connected to a security alert or incident
-> * Search capabilities to find more evidence of compromised systems
-
-To learn more about Security Center's investigation feature see:
-
-> [!div class="nextstepaction"]
-> [Investigate incidents and alerts](security-center-investigation.md)
+> * Search capabilities to find more evidence of compromised systems

Original file line number	Diff line number	Diff line change
`@@ -45,4 +45,4 @@ To learn more about Security Center's container security features, see:`
`45`	`45`
`46`	`46`	`* [Integration with Azure Kubernetes Service](azure-kubernetes-service-integration.md)`
`47`	`47`
`48`		`-* [Virtual Machine protection](security-center-virtual-machine-protection.md) - Describes Security Center's recommendations`
	`48`	`+* [Virtual Machine protection](security-center-virtual-machine-protection.md) - Describes Security Center's recommendations`