MicrosoftDocs
diff --git a/‎articles/sentinel/media/summary-rules/diagram copy.mmd
Lines changed: 6 additions & 5 deletions b/‎articles/sentinel/media/summary-rules/diagram copy.mmd
Lines changed: 6 additions & 5 deletions
@@ -5,15 +5,16 @@ config:
 ---
 sequenceDiagram
   actor User as User
-  participant Azure AD as Azure AD
+  participant Entra ID as Entra ID
   participant Azure Monitor as Azure Monitor
   participant Log Analytics Workspace as Log Analytics Workspace
   participant VM as VM
-  User ->> Azure AD: 1. Register Microsoft Entra application
-  Azure AD ->> User: Provide Application ID and secret
-  User ->> Azure AD: 2. Assign the Monitoring Metrics Publisher role to the application
-  User ->> Azure Monitor: 3. Deploy ARM template to create a DCE, DCR, and CommonSecurityLog_CL Auxiliary table
+  User ->> Entra ID: 1. Register Microsoft Entra application
+  Entra ID ->> User: Provide Application ID and secret
+  User ->> Entra ID: 2. Assign the Monitoring Metrics Publisher role to the application
+  User ->> Azure Monitor: 3. Create a DCE, DCR, and custom Auxiliary table by deploying ARM template
   Azure Monitor ->> User: Provide DCE URI and DCR Immutable ID
+  User ->> Azure Monitor: 4. Grant your application permission to send data to the DCE
   User ->> VM: 4. Update Logstash configuration file
   VM ->> Azure Monitor: Send data to DCE
   Azure Monitor ->> Log Analytics Workspace: Ingest raw data into CommonSecurityLog_CL table