Merge pull request #210363 from batamig/sept-fixes

Sept fixes

Author: ttorble

articles/defender-for-iot/organizations/best-practices/traffic-mirroring-methods.md

@@ -13,7 +13,7 @@ To see only relevant information for traffic analysis, you need to connect Defen
 
 For example:
 
-:::image type="content" source="../media/how-to-set-up-your-network/switch.jpg" alt-text="Use this switch for your setup.":::
+:::image type="content" source="../media/how-to-set-up-your-network/switch.jpg" alt-text="Use this switch for your setup." border="false":::
 
 You can monitor switch traffic using a switch SPAN port, by report SPAN (RSPAN), or active and passive aggregation TAP. Use the following tabs to learn more about each method.
 
@@ -95,7 +95,7 @@ Consider the following when configuring RSPAN:
 
 The following diagram shows an example of a remote VLAN architecture:
 
-:::image type="content" source="../media/how-to-set-up-your-network/remote-vlan.jpg" alt-text="Diagram of remote VLAN.":::
+:::image type="content" source="../media/how-to-set-up-your-network/remote-vlan.jpg" alt-text="Diagram of remote VLAN." border="false":::
 
 For example, use the following steps to set up an RSPAN for a Cisco 2960 switch with 24 ports running IOS.
 
@@ -149,16 +149,14 @@ TAP aggregators can also be used for port monitoring. These devices are processo
 
 The following diagram shows an example of a network setup with an active and passive TAP:
 
-:::image type="content" source="../media/how-to-set-up-your-network/active-passive-tap-v2.png" alt-text="Diagram of active and passive TAPs.":::
+:::image type="content" source="../media/how-to-set-up-your-network/active-passive-tap-v2.png" alt-text="Diagram of active and passive TAPs." border="false":::
 
 ### Common TAP models
 
 The following TAP models have been tested for compatibility with Defender for IoT. Other vendors and models might also be compatible.
 
 - **Garland P1GCCAS**
 
-    :::image type="content" source="../media/how-to-set-up-your-network/garland-p1gccas-v2.png" alt-text="Screenshot of Garland P1GCCAS." border="false":::
-
     When using a Garland TAP, make sure jumpers are set as follows:
 
     :::image type="content" source="../media/how-to-set-up-your-network/jumper-setup-v2.jpg" alt-text="Screenshot of US Robotics switch.":::
@@ -169,8 +167,6 @@ The following TAP models have been tested for compatibility with Defender for Io
 
 - **US Robotics USR 4503**
 
-    :::image type="content" source="../media/how-to-set-up-your-network/us-robotics-usr-4503-v2.png" alt-text="Screenshot of US Robotics USR 4503.":::
-
     When using a US Robotics TAP, make sure **Aggregation mode** is active.
 
 

articles/defender-for-iot/organizations/how-to-activate-and-set-up-your-on-premises-management-console.md

@@ -380,4 +380,4 @@ To unassign and delete a sensor:
 
 ## Next steps
 
-For more information, see [Troubleshoot the sensor and on-premises management console](how-to-troubleshoot-the-sensor-and-on-premises-management-console.md).
+For more information, see [Troubleshoot the sensor and on-premises management console](how-to-troubleshoot-the-sensor-and-on-premises-management-console.md) and [Manage individual sensors](how-to-manage-individual-sensors.md).

articles/defender-for-iot/organizations/how-to-manage-individual-sensors.md

@@ -128,7 +128,9 @@ This section describes how to ensure connection between the sensor and the on-pr
 
 7. Paste the connection string in the **Connection string** box and select **Connect**.
 
-8. In the on-premises management console, in the **Site Management** window, assign the sensor to a zone.
+8. In the on-premises management console, in the **Site Management** window, assign the sensor to a site and zone.
+
+Continue with additional configurations, such as adding users, configuring forwarding exclusion rules and more. For example, see [Activate and set up your on-premises management console](how-to-activate-and-set-up-your-on-premises-management-console.md), [About Defender for IoT console users](how-to-create-and-manage-users.md), or [Forward alert information](how-to-forward-alert-information-to-partners.md).
 
 ## Change the name of a sensor
 

articles/defender-for-iot/organizations/how-to-set-up-your-network.md

@@ -184,9 +184,7 @@ This section provides troubleshooting for common issues when preparing your netw
 
     1. Use the **support** user and password to sign in.
 
-    1. Use the command **network list** to see the current IP address. For example:
-
-        :::image type="content" source="media/how-to-set-up-your-network/list-of-network-commands.png" alt-text="Screenshot of the network list command.":::
+    1. Use the command **network list** to see the current IP address.
 
 4. If the network parameters are misconfigured, use the following procedure to change it:
 

articles/defender-for-iot/organizations/how-to-troubleshoot-the-sensor-and-on-premises-management-console.md

@@ -95,7 +95,7 @@ Verify that you can access the console web GUI:
 
 1. Define the laptop NIC address to be in the same range as the appliance.
 
-    :::image type="content" source="media/tutorial-install-components/access-to-ui.png" alt-text="Screenshot that shows management access to the UI.":::
+    :::image type="content" source="media/tutorial-install-components/access-to-ui.png" alt-text="Screenshot that shows management access to the UI." border="false":::
 
 1. Ping the appliance's IP address from the laptop to verify connectivity (default: 10.100.10.1).
 
@@ -124,8 +124,6 @@ Verify that you can access the console web GUI:
 
    1. Use the command `network list` to see the current IP address.
 
-      :::image type="content" source="media/tutorial-install-components/network-list.png" alt-text="Screenshot that shows the network list.":::
-
 1. If the network parameters are misconfigured, use the following procedure to change them:
 
    1. Use the command `network edit-settings`.
@@ -152,7 +150,7 @@ Verify that you can access the console web GUI:
 
 1. Use the **Support** user credentials to sign in.
 
-1. Use the `system sanity` command and check that all processes are running.
+1. Use the `system sanity` command and check that all processes are running. For example:
 
     :::image type="content" source="media/tutorial-install-components/system-sanity-screen.png" alt-text="Screenshot that shows the system sanity command.":::
 

articles/defender-for-iot/organizations/how-to-view-alerts.md

@@ -141,7 +141,6 @@ You can generate the following alert reports:
 
 - Export information on one, all or selected alerts to a CSV file
 - Export PDF reports
-- Download a full or filtered PCAP file for a specific alert.
 
 **To export to CSV file:**
 
@@ -153,13 +152,16 @@ You can generate the following alert reports:
 1. Select one or several alerts from the Alerts page.
 1. Select **Export to PDF**.
 
+### Download PCAP files
+
+Download a full or filtered PCAP file for a specific alert directly from the sensor. PCAP files provide more detailed information about the network traffic that occurred at the time of the alert event.
+
 **To download a PCAP file:**
 
 1. Select an alert
 1. Select **View full details**.
 1. Select **Download Full PCAP** or **Download Filtered PCAP**.
 
-PCAP files provide more detailed information about the network traffic that occurred at the time of the alert event.
 
 ## View alerts in the Defender for IoT portal