Merge pull request #226307 from dlepow/patch-173

v-stsavell · web-flow · commit c2cf5f1b3820 · 2023-02-08T16:31:37.000-06:00
Update api-management-debug-policies.md
diff --git a/articles/api-management/api-management-debug-policies.md b/articles/api-management/api-management-debug-policies.md
@@ -30,7 +30,11 @@ This article describes how to debug API Management policies using the [Azure API
 
 ## Restrictions and limitations
 
-This feature is only available in the Developer tier of API Management. Each API Management instance supports only one concurrent debugging session.
+* This feature is only available in the **Developer** tier of API Management. Each API Management instance supports only one concurrent debugging session.
+
+* This feature uses the built-in (service-level) all-access subscription for debugging. The [**Allow tracing**](api-management-howto-api-inspector.md#verify-allow-tracing-setting) setting must be enabled in this subscription.
+
+[!INCLUDE [api-management-tracing-alert](../../includes/api-management-tracing-alert.md)]
 
 ## Initiate a debugging session
 
diff --git a/articles/api-management/trace-policy.md b/articles/api-management/trace-policy.md
@@ -18,6 +18,8 @@ The `trace` policy adds a custom trace into the request tracing output in the te
 -   The policy adds a property in the log entry when [resource logs](./api-management-howto-use-azure-monitor.md#resource-logs) are enabled and the severity level specified in the policy is at or higher than the verbosity level specified in the diagnostic setting.
 -   The policy is not affected by Application Insights sampling. All invocations of the policy will be logged.
 
+[!INCLUDE [api-management-tracing-alert](../../includes/api-management-tracing-alert.md)]
+
 [!INCLUDE [api-management-policy-generic-alert](../../includes/api-management-policy-generic-alert.md)]
 
 ## Policy statement
diff --git a/includes/api-management-tracing-alert.md b/includes/api-management-tracing-alert.md
@@ -6,5 +6,6 @@ ms.date: 08/03/2022
 ms.author: danlep
 ---
 > [!WARNING]
-> Only allow tracing on subscriptions intended for debugging purposes. Sharing subscription keys with tracing allowed with unauthorized users could lead to disclosure of sensitive information contained in tracing logs such as keys, access tokens, passwords, internal hostnames, and IP addresses.
+> * Only allow tracing on subscriptions intended for debugging purposes. Sharing subscription keys with tracing allowed with unauthorized users could lead to disclosure of sensitive information contained in tracing logs such as keys, access tokens, passwords, internal hostnames, and IP addresses.
+> * API Management automatically disables tracing 1 hour after it's enabled on a subscription.
 
