Merge pull request #269770 from HollyCl/deploy_order321

updated concept articles for security and deployment order

Author: Jill Grant

articles/operator-5g-core/concept-deployment-order.md

@@ -6,7 +6,7 @@ ms.author: HollyCl
 ms.service: azure-operator-5g-core
 ms.custom: devx-track-azurecli
 ms.topic: concept-article #required; leave this attribute/value as-is.
-ms.date: 03/07/2024
+ms.date: 03/21/2024
 
 #CustomerIntent: As a <type of user>, I want <what?> so that <why?>.
 ---
@@ -15,26 +15,20 @@ ms.date: 03/07/2024
 
 Mobile Packet Core resources have minimal ordering constraints. To bring up network functions, the cluster services must be already running successfully. The same set of cluster services can be reused for multiple network functions and the cluster services must be deployed on every cluster that hosts the network functions.
 
-## Azure CLI commands used to deploy resources
+## Mobile Packet Core resource deployment order
 
-Use the following Azure CLI commands to deploy resources.
+Deploy resources in the following order. Note that the Microsoft.MobilePacketCore/clusterServices resource must be deployed first. All other resources can be deployed in any order or in parallel.
 
-```azurecli
-{ 
-   [ 
-    Microsoft.MobilePacketCore/clusterServices 
-   ], 
-   [ 
-    Microsoft.MobilePacketCore/amfDeployments 
-    Microsoft.MobilePacketCore/smfDeployments 
-    Microsoft.MobilePacketCore/nrfDeployments 
-    Microsoft.MobilePacketCore/nssfDeployments 
-    Microsoft.MobilePacketCore/upfDeployments 
-    Microsoft.MobilePacketCore/observabilityServices 
-   ]
-```
+Microsoft.MobilePacketCore/clusterServices 
+Microsoft.MobilePacketCore/amfDeployments 
+Microsoft.MobilePacketCore/smfDeployments 
+Microsoft.MobilePacketCore/nrfDeployments 
+Microsoft.MobilePacketCore/nssfDeployments 
+Microsoft.MobilePacketCore/upfDeployments 
+Microsoft.MobilePacketCore/observabilityServices 
+
 
 ## Related content
 
-- [Complete the prerequisites to deploy Azure Operator 5G Core Preview on Azure Kubernetes Service]  (quickstart-complete-prerequisites-deploy-azure-kubernetes-service.md)
+- [Complete the prerequisites to deploy Azure Operator 5G Core Preview on Azure Kubernetes Service](quickstart-complete-prerequisites-deploy-azure-kubernetes-service.md)
 - [Complete the prerequisites to deploy Azure Operator 5G Core Preview on Nexus Azure Kubernetes Service](quickstart-complete-prerequisites-deploy-nexus-azure-kubernetes-service.md)

articles/operator-5g-core/concept-security.md

@@ -1,18 +1,20 @@
 ---
 title: Security in Azure Operator 5G Core Preview
-description: Review the security features embedded in Azure Operator 5G Core Preview
+description: Review the security features embedded in Azure Operator 5G Core Preview.
 author: SarahBoris
 ms.author: sboris
 ms.service: azure-operator-5g-core
 ms.topic: concept-article #required; leave this attribute/value as-is.
-ms.date: 03/07/2024
+ms.date: 03/21/2024
 ---
 
 # Security in Azure Operator 5G Core Preview
 
-Microsoft is built on Zero Trust security, including Azure Operator 5G Core Preview. Rather than assuming that everything behind the corporate firewall is safe, Zero Trust assumes an open environment where trust must always be validated. Zero Trust is equally applied to all workload environments, both on Nexus and on Azure.
+Microsoft is built on Zero Trust security, including Azure Operator 5G Core Preview. Rather than assuming that everything behind the operator firewall is safe, Zero Trust assumes an open environment where trust must always be validated. Zero Trust is equally applied to all workload environments, both on Nexus and on Azure.
 
- Zero Trust follows Azure Operator 5G Core from development through deployment and monitoring.  
+ Zero Trust follows Azure Operator 5G Core from development through deployment and runtime protection.  
+
+The Azure Operator 5G Core security posture is designed and built to prevent, detect, and defend against the latest security threats. 
 
 ## Development
 
@@ -30,15 +32,12 @@ Azure Operator 5G Core is deployed based on a security blueprint that ensures th
 - Least access privilege based on Role-based Access Control (RBAC) methodology.
 - Centralized Identity / Privilege Management using Microsoft Entra ID.
 - Secure transport to Azure through Express Route.  
-- Encryption of traffic within the NFs and between NFs (3GPP).
+- Encryption of traffic both within network functions (NFs) and between NFs (3GPP).
 - Secure storage of data at rest.
 
-## Monitoring
-
-Security monitoring of the application occurs through a combination of native alerting from the NF and Azure security applications. It includes:
+## Runtime protection
 
-- Security Logging - Visibility for actions internal to the application.
-- Microsoft Defender – Optional protection from cyber threats and vulnerabilities.
+Security monitoring of the application occurs through a combination of native alerting from the NF and Azure security applications, including security logging, which allows for the visibility of actions internal to the application.
 
 ## Related content
 

articles/operator-5g-core/tutorial-configure-network-function.md

@@ -5,7 +5,7 @@ author: HollyCl
 ms.author: HollyCl
 ms.service: azure-operator-5g-core
 ms.topic: tutorial #required; leave this attribute/value as-is
-ms.date: 02/22/2024
+ms.date: 03/21/2024
 
 ---
 
@@ -19,9 +19,7 @@ This article describes how to configure a network function following deployment.
 
 ## Configure a Session Management Function (SMF)
 
-Use the procedures described in:
-- [SMF Configuration](https://manuals.metaswitch.com/UC/4.3.0/UnityCloud_Overview/Content/NetworkFunctions/SMF/SMF_configuration.htm)
-- [Interface Manager Configuration](https://manuals.metaswitch.com/UC/4.3.0/UnityCloud_Overview/Content/Microservices/SMF_Specific/Config/interface_mgr-cna-interface-mgr_config.html)
+Use the procedures described in [SMF Configuration](https://manuals.metaswitch.com/UC/4.3.0/UnityCloud_Overview/Content/NetworkFunctions/SMF/SMF_configuration.htm)
 
 ## Configure a User Plane Function (UPF)