Updates

Author: msmbaldwin

articles/attestation/quickstart-powershell.md

@@ -17,7 +17,7 @@ Follow the below steps to create and configure an attestation provider using Azu
 
 > [!NOTE]
 > Az.Attestation module is now integrated into Az PowerShell module. Minimum version of Az module required to support attestation operations:
-  - Az PowerShell 6.5.0
+  - Az PowerShell module 6.5.0
 
 The PowerShell Gallery has deprecated Transport Layer Security (TLS) versions 1.0 and 1.1. TLS 1.2 or a later version is recommended. Hence you may receive the following errors:
 

articles/attestation/troubleshoot-guide.md

@@ -52,7 +52,7 @@ In order to manage policies, an Azure AD user requires the following permissions
 In order to read policies, an Azure AD user requires the following permission for "Actions":
 - Microsoft.Attestation/attestationProviders/attestation/read
 
-  To perform this action, an Azure AD user must have "Attestation Reader" role on the attestation provider. The read permissions can be also be inherited with roles such as "Reader" (wildcard permissions) on  the subscription/ resource group.  
+  To perform this action, an Azure AD user must have "Attestation Reader" role on the attestation provider. Read permissions are also part of roles such as "Reader" (wildcard permissions) on the subscription/ resource group.  
 
 To verify the roles in PowerShell, run the below steps:
 
@@ -215,6 +215,7 @@ InvalidOperation
 Invalid content provided (for example, upload policy/ unsigned policy when policy signing is required)
 
 ```
+
 Native operation failed with 74: ..\Shared\base64url.h(226)\(null)!: (caller: ) Exception(0) 83FF004A Bad message    Msg:[Unknown base64 character: 41 (')')]
 ..\Enclave\api.cpp(618)\(null)!: (caller: ) LogHr(0) 83FF004A Bad message    Msg:[Unhandled Enclave Exception: "Bad message"]
 At line:1 char:1
@@ -229,7 +230,7 @@ Ensure that the policy in Text format is UTF-8 encoded.
 
 If policy signing is required, attestation policy must be configured only in RFC7519 JSON Web Token (JWT) format. If policy signing is not required, policy can be configured in text or JWT format.
 
-To configure a policy in JWT format, use JWT with a claim named "AttestationPolicy". Value of the claim is Base64URL encoded version of the policy text. If the attestation provider is configured with policy signer certificates, the JWT must be signed with private key of any of the valid policy signer certificates associated with the provider. 
+To configure a policy in JWT format, use JWT with a claim named "AttestationPolicy". Value of the claim is Base64URL encoded version of the policy text. If the attestation provider is configured with policy signer certificates, the JWT must be signed with private key of any of the valid policy signer certificates associated with the provider.
 
 To configure a policy in text format, specify policy text directly.
 
@@ -239,12 +240,12 @@ See attestation [policy examples](./policy-examples.md) and [how to author an at
 
 ## 3. Az.Attestation installation issues in PowerShell
 
-Unable to install Az or Az.Attestation modules in PowerShell
+Unable to install Az Powershell or Az.Attestation PowerShell modules in PowerShell
 
 ### Error
 
 WARNING: Unable to resolve package source 'https://www.powershellgallery.com/api/v2' 
-PackageManagement\Install-Package : No match was found for the specified search criteria and module name
+PackageManagement\Install-Package: No match was found for the specified search criteria and module name
 
 ### Troubleshooting steps
 

articles/key-vault/general/network-security.md

@@ -23,7 +23,7 @@ This section will cover the different ways that an Azure Key Vault firewall can
 
 ### Key Vault Firewall Disabled (Default)
 
-By default, when you create a new key vault, the Azure Key Vault firewall is disabled. All applications and Azure services can access the key vault and send requests to the key vault. Note, this configuration doesn't mean that any user will be able to perform operations on your key vault. The key vault still restricts access to secrets, keys, and certificates stored in key vault by requiring Azure Active Directory authentication and access policy permissions. To understand key vault authentication in more detail, see [Authentication in Azure Key Vault](authentication.md). For more information, see [Access Azure Key Vault behind a firewall](access-behind-firewall.md).
+By default, when you create a new key vault, the Azure Key Vault firewall is disabled. All applications and Azure services can access the key vault and send requests to the key vault. This configuration doesn't mean that any user will be able to perform operations on your key vault. The key vault still restricts access to secrets, keys, and certificates stored in key vault by requiring Azure Active Directory authentication and access policy permissions. To understand key vault authentication in more detail, see [Authentication in Azure Key Vault](authentication.md). For more information, see [Access Azure Key Vault behind a firewall](access-behind-firewall.md).
 
 ### Key Vault Firewall Enabled (Trusted Services Only)
 
@@ -38,9 +38,9 @@ If you would like to authorize a particular service to access key vault through
 
 To allow an IP Address or range of an Azure resource, such as a Web App or Logic App, perform the following steps.
 
-1. Log in to the Azure portal.
+1. Sign in to the Azure portal.
 1. Select the resource (specific instance of the service).
-1. Click on the 'Properties' blade under 'Settings'.
+1. Select on the 'Properties' blade under 'Settings'.
 1. Look for the "IP Address" field.
 1. Copy this value or range and enter it into the key vault firewall allowlist.
 
@@ -52,7 +52,7 @@ If you are trying to allow an Azure resource such as a virtual machine through k
 
 In this case, you should create the resource within a virtual network, and then allow traffic from the specific virtual network and subnet to access your key vault. 
 
-1. Log in to the Azure portal
+1. Sign in to the Azure portal
 1. Select the key vault you wish to configure
 1. Select the 'Networking' blade
 1. Select '+ Add existing virtual network'

articles/key-vault/general/troubleshooting-access-issues.md

@@ -53,7 +53,7 @@ If you're creating an on-premises application, doing local development, or other
 
 Give the AD group permissions to your key vault using the Azure CLI `az keyvault set-policy` command, or the Azure PowerShell Set-AzKeyVaultAccessPolicy cmdlet. See [Assign an access policy - CLI](assign-access-policy-cli.md) and [Assign an access policy - PowerShell](assign-access-policy-powershell.md).
 
-The application also needs at least one Identity and Access Management (IAM) role assigned to the key vault. Otherwise it will not be able to login and will fail with insufficient rights to access the subscription. Azure AD Groups with Managed Identities may require up to eight hours to refresh tokens and become effective.
+The application also needs at least one Identity and Access Management (IAM) role assigned to the key vault. Otherwise it will not be able to log in and will fail with insufficient rights to access the subscription. Azure AD Groups with Managed Identities may require up to eight hours to refresh tokens and become effective.
 
 ### How can I redeploy Key Vault with ARM template without deleting existing access policies?
 

articles/key-vault/key-vault-insights-overview.md

@@ -74,7 +74,7 @@ These views are also accessible by selecting the resource name of a key vault fr
 
 ![Screenshot of view from a key vault resource](./media/key-vaults-insights-overview/key-vault-resource-view.png)
 
-On the **Overview** workbook for the key vault, it shows several performance metrics that help you quickly assess:
+On the **Overview** workbook for the key vault, it shows:
 
 - Interactive performance charts showing the most essential details related to key vault transactions, latency, and availability.
 
@@ -165,7 +165,7 @@ The time range will depend on the dashboard settings.
 
 ### What if I want to see other data or make my own visualizations? How can I make changes to the Key Vault Insights
 
-You can edit the existing workbookwith edit mode, and then save your work as a new workbook that will have all your new changes.
+You can edit the existing workbook with edit mode, and then save your work as a new workbook that will have all your new changes.
 
 ## Next steps
 

articles/key-vault/keys/about-keys-details.md

@@ -139,7 +139,7 @@ For more information on other possible attributes, see the [JSON Web Key (JWK)](
 
 You can specify more application-specific metadata in the form of tags. Key Vault supports up to 15 tags, each of which can have a 256 character name and a 256 character value.  
 
-> [!NOTE] 
+> [!NOTE]
 > Tags are readable by a caller if they have the *list* or *get* permission to that key.
 
 ##  Key access control