Bringing even with master.

Author: v-alje

.openpublishing.redirection.json

@@ -10014,6 +10014,11 @@
             "redirect_url": "/azure/log-analytics/log-analytics-data-security",
             "redirect_document_id": false
         },
+        {
+            "source_path": "articles/log-analytics/log-analytics-concept-hybrid.md",
+            "redirect_url": "/azure/log-analytics/log-analytics-agent-overview",
+            "redirect_document_id": false
+        },
         {
             "source_path": "articles/log-analytics/log-analytics-change-tracking.md",
             "redirect_url": "/azure/automation/automation-change-tracking",

articles/active-directory-b2c/active-directory-b2c-ui-customization-custom.md

@@ -94,17 +94,13 @@ To create a public container in Blob storage, do the following:
 
 Configure Blob storage for Cross-Origin Resource Sharing by doing the following:
 
->[!NOTE]
->Want to try out the UI customization feature by using our sample HTML and CSS content? We've provided [a simple helper tool](active-directory-b2c-reference-ui-customization-helper-tool.md) that uploads and configures our sample content on your Blob storage account. If you use the tool, skip ahead to [Modify your sign-up or sign-in custom policy](#modify-your-sign-up-or-sign-in-custom-policy).
-
-1. On the **Storage** blade, under **Settings**, open **CORS**.
-2. Click **Add**.
-3. For **Allowed origins**, type an asterisk (\*).
-4. In the **Allowed verbs** drop-down list, select both **GET** and **OPTIONS**.
-5. For **Allowed headers**, type an asterisk (\*).
-6. For **Exposed headers**, type an asterisk (\*).
-7. For **Maximum age (seconds)**, type **200**.
-8. Click **Add**.
+1. In the menu, select **CORS**.
+2. For **Allowed origins**, enter `your-tenant-name.b2clogin.com`. Replace `your-tenant-name` with the name of your Azure AD B2C tenant. For example, `fabrikam.b2clogin.com`.
+3. For **Allowed Methods**, select both `GET` and `OPTIONS`.
+4. For **Allowed Headers**, enter an asterisk (*).
+5. For **Exposed Headers**, enter an asterisk (*).
+6. For **Max age**, enter 200.
+7. Click **Save**.
 
 ## Test CORS
 

articles/active-directory-b2c/media/tutorial-customize-ui/enable-cors.PNG

@@ -8,7 +8,7 @@ manager: mtillman
 ms.service: active-directory
 ms.workload: identity
 ms.topic: conceptual
-ms.date: 10/30/2018
+ms.date: 11/12/2018
 ms.author: davidmu
 ms.component: B2C
 ---
@@ -60,9 +60,11 @@ Although you can store your files in many ways, for this tutorial, you store the
  Azure AD B2C code in a browser uses a modern and standard approach to load custom content from a URL that you specify in a policy. Cross-origin resource sharing (CORS) allows restricted resources on a web page to be requested from other domains.
 
 1. In the menu, select **CORS**.
-2. For **Allowed origins**, **Allowed headers**, and **Exposed headers**, enter `your-tenant-name.b2clogin.com`. Replace `your-tenant-name` with the name of your Azure AD B2C tenant. For example, `fabrikam.b2clogin.com`.
-3. For **Allowed verbs**, select both `GET` and `OPTIONS`.
-4. For **Max age**, enter 200.
+2. For **Allowed origins**, enter `your-tenant-name.b2clogin.com`. Replace `your-tenant-name` with the name of your Azure AD B2C tenant. For example, `fabrikam.b2clogin.com`.
+3. For **Allowed Methods**, select both `GET` and `OPTIONS`.
+4. For **Allowed Headers**, enter an asterisk (*).
+5. For **Exposed Headers**, enter an asterisk (*).
+6. For **Max age**, enter 200.
 
     ![Enable CORS](./media/tutorial-customize-ui/enable-cors.png)
 

articles/active-directory-b2c/tutorial-customize-ui.md

@@ -30,6 +30,8 @@ Add-MsolRoleMember -RoleObjectId 95e79109-95c0-4d8e-aee3-d01accf2d47b -RoleMembe
 
 ## Control who can invite
 
+Go to Azure Active Directory > User Settings > Manage External Collaboration Settings
+
 ![externalusers](https://user-images.githubusercontent.com/13383753/45905128-2c47f680-bda4-11e8-955d-6219c67935e0.PNG)
 
 With Azure AD B2B collaboration, a tenant admin can set the following invitation policies:

articles/active-directory/b2b/delegate-invitations.md

@@ -518,7 +518,7 @@ The following policy must be set to **All**: **Users may register their devices
 
 ### Configure on-premises federation service 
 
-Your on-premises federation service must support issuing the **authenticationmethod** and **wiaormultiauthn** claims when receiving an authentication request to the Azure AD relying party holding a resouce_params parameter with an encoded value as shown below:
+Your on-premises federation service must support issuing the **authenticationmethod** and **wiaormultiauthn** claims when receiving an authentication request to the Azure AD relying party holding a resource_params parameter with an encoded value as shown below:
 
     eyJQcm9wZXJ0aWVzIjpbeyJLZXkiOiJhY3IiLCJWYWx1ZSI6IndpYW9ybXVsdGlhdXRobiJ9XX0
 

articles/active-directory/develop/v2-oauth2-client-creds-grant-flow.md

@@ -43,7 +43,7 @@ For AD FS in contoso.com to be able to authenticate users in fabrikam.com, a two
 
 The default issuer set for a single domain federated to AD FS is "http://ADFSServiceFQDN/adfs/services/trust", for example, "http://fs.contoso.com/adfs/services/trust". Azure Active Directory requires unique issuer for each federated domain. Since the same AD FS is going to federate two domains, the issuer value needs to be modified so that it is unique for each domain AD FS federates with Azure Active Directory. 
 
-On the AD FS server, open Azure AD PowerShell and perform the following steps:
+On the AD FS server, open Azure AD PowerShell (ensure that the MSOnline module is installed) and perform the following steps:
 
 Connect to the Azure Active Directory that contains the domain contoso.com
     Connect-MsolService

articles/active-directory/devices/hybrid-azuread-join-manual-steps.md

@@ -26,7 +26,7 @@ By default, Office 365 resources for your users are located in the same geo as y
 By setting the attribute **preferredDataLocation**, you can define a user's geo. You can have the user's Office 365 resources, such as the mailbox and OneDrive, in the same geo as the user, and still have one tenant for your entire organization.
 
 > [!IMPORTANT]
-> Multi-Geo is currently available to customers with a minimum of 2,500 Office 365 Services subscriptions. Please talk to your Microsoft representative for details.
+> Multi-Geo is currently available to customers with a minimum of 5000 Office 365 Services subscriptions. Please talk to your Microsoft representative for details.
 >
 >
 

articles/active-directory/hybrid/how-to-connect-fed-single-adfs-multitenant-federation.md

@@ -13,7 +13,7 @@ ms.devlang: na
 ms.topic: conceptual
 ms.tgt_pltfrm: na
 ms.workload: identity
-ms.date: 07/26/2017
+ms.date: 11/13/2018
 ms.author: barbkess
 
 ms.reviewer: asmalser
@@ -74,7 +74,5 @@ This section provides addition details about the operation of the provisioning s
 
 Links are provided to the **Provisioning activity report** that provides a log of all users and groups created, updated, and removed between Azure AD and the target application, and to the **Provisioning error report** that provides more detailed error messages for user and group objects that failed to be read, created, updated, or removed. 
 
-## Feedback
 
-Please keep the feedback coming! Post your feedback and ideas for improvement in the **Admin Portal** section of our [feedback forum](https://feedback.azure.com/forums/169401-azure-active-directory/category/162510-admin-portal).  The engineering team is excited about building cool new stuff every day, and they use your guidance to shape and define what to build next.