MicrosoftDocs
diff --git a/‎articles/active-directory/architecture/4-secure-access-groups.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/architecture/4-secure-access-groups.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory/architecture/9-secure-access-teams-sharepoint.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/architecture/9-secure-access-teams-sharepoint.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory/architecture/monitor-sign-in-health-for-resilience.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/architecture/monitor-sign-in-health-for-resilience.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory/architecture/ops-guide-auth.md
Lines changed: 4 additions & 4 deletions b/‎articles/active-directory/architecture/ops-guide-auth.md
Lines changed: 4 additions & 4 deletions
diff --git a/‎articles/active-directory/architecture/protect-m365-from-on-premises-attacks.md
Lines changed: 5 additions & 5 deletions b/‎articles/active-directory/architecture/protect-m365-from-on-premises-attacks.md
Lines changed: 5 additions & 5 deletions
diff --git a/‎articles/active-directory/architecture/resilience-client-app.md
Lines changed: 9 additions & 9 deletions b/‎articles/active-directory/architecture/resilience-client-app.md
Lines changed: 9 additions & 9 deletions
diff --git a/‎articles/active-directory/architecture/secure-best-practices.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory/architecture/secure-best-practices.md
Lines changed: 1 addition & 1 deletion
@@ -49,7 +49,7 @@ Determine who is granted permissions to create groups: Administrators, employees
 * Internal and external users can join groups in your tenant
 * Users can create Microsoft 365 Groups
 * [Manage who can create Microsoft 365 Groups](/microsoft-365/solutions/manage-creation-of-groups?view=o365-worldwide&preserve-view=true) 
-  * Use Windows PowerShell to configure this setting 
+  * Use PowerShell to configure this setting
 * [Restrict your Microsoft Entra app to a set of users in a Microsoft Entra tenant](../develop/howto-restrict-your-app-to-a-set-of-users.md)
 * [Set up self-service group management in Microsoft Entra ID](../enterprise-users/groups-self-service-management.md) 
 * [Troubleshoot and resolve groups issues](../enterprise-users/groups-troubleshooting.md) 
 
@@ -34,7 +34,7 @@ Sharing in Microsoft 365 is partially governed by the **External Identities, Ext
 Learn more:
 
 * [Microsoft Entra admin center](https://entra.microsoft.com)
-* [External Identities in Azure AD](../external-identities/external-identities-overview.md)
+* [External Identities in Microsoft Entra ID](../external-identities/external-identities-overview.md)
 
 ### Guest user access
 
 
@@ -37,7 +37,7 @@ During an impacting event, two things may happen:
 - A Microsoft Entra tenant.
 - A user with global administrator or security administrator role for the Microsoft Entra tenant.
 - A Log Analytics workspace in your Azure subscription to send logs to Azure Monitor logs. Learn how to  [create a Log Analytics workspace](../../azure-monitor/logs/quick-create-workspace.md).
-- Microsoft Entra ID logs integrated with Azure Monitor logs. Learn how to [Integrate Microsoft Entra Sign- in Logs with Azure Monitor Stream.](../reports-monitoring/howto-integrate-activity-logs-with-log-analytics.md)
+- Microsoft Entra ID logs integrated with Azure Monitor logs. Learn how to [Integrate Microsoft Entra sign-in logs with Azure Monitor Stream.](../reports-monitoring/howto-integrate-activity-logs-with-log-analytics.md)
 
 ## Configure the App sign-in health workbook 
 
 
@@ -358,15 +358,15 @@ If available, use a security information and event management (SIEM) solution t
 
 <a name='azure-ad-logs-archived-and-integrated-with-incident-response-plans'></a>
 
-### Microsoft Entra ID logs archived and integrated with incident response plans
+### Microsoft Entra logs archived and integrated with incident response plans
 
-Having access to sign-in activity, audits and risk events for Microsoft Entra ID is crucial for troubleshooting, usage analytics, and forensics investigations. Microsoft Entra ID provides access to these sources through REST APIs that have a limited retention period. A security information and event management (SIEM) system, or equivalent archival technology, is key for long-term storage of audits and supportability. To enable long-term storage of Microsoft Entra ID Logs, you must either add them to your existing SIEM solution or use [Azure Monitor](../reports-monitoring/concept-activity-logs-azure-monitor.md). Archive logs that can be used as part of your incident response plans and investigations.
+Having access to sign-in activity, audits and risk events for Microsoft Entra ID is crucial for troubleshooting, usage analytics, and forensics investigations. Microsoft Entra ID provides access to these sources through REST APIs that have a limited retention period. A security information and event management (SIEM) system, or equivalent archival technology, is key for long-term storage of audits and supportability. To enable long-term storage of Microsoft Entra logs, you must either add them to your existing SIEM solution or use [Azure Monitor](../reports-monitoring/concept-activity-logs-azure-monitor.md). Archive logs that can be used as part of your incident response plans and investigations.
 
 #### Logs recommended reading
 
 - [Microsoft Entra ID audit API reference](/graph/api/resources/directoryaudit)
 - [Microsoft Entra sign-in activity report API reference](/graph/api/resources/signin)
-- [Get data using the Microsoft Entra ID Reporting API with certificates](../reports-monitoring/howto-configure-prerequisites-for-reporting-api.md)
+- [Get data using the Microsoft Entra reporting API with certificates](../reports-monitoring/howto-configure-prerequisites-for-reporting-api.md)
 - [Microsoft Graph for Microsoft Entra ID Protection](../identity-protection/howto-identity-protection-graph-api.md)
 - [Office 365 Management Activity API reference](/office/office-365-management-api/office-365-management-activity-api-reference)
 - [How to use the Microsoft Entra ID Power BI Content Pack](../reports-monitoring/howto-use-azure-monitor-workbooks.md)
@@ -386,7 +386,7 @@ There are 12 aspects to a secure Identity infrastructure. This list will help yo
 - Lock down legacy authentication protocols.
 - Detect and remediate illicit consent grants.
 - Lock down user and group settings.
-- Enable long-term storage of Microsoft Entra ID logs for troubleshooting, usage analytics, and forensics investigations.
+- Enable long-term storage of Microsoft Entra logs for troubleshooting, usage analytics, and forensics investigations.
 
 ## Next steps
 
 
@@ -178,7 +178,7 @@ Deploy Microsoft Entra joined Windows 10 workstations with mobile device managem
 
 - **Application and workload servers**
 
-  Applications or resources that required servers can be migrated to Azure infrastructure as a service (IaaS). Use Microsoft Entra Domain Services (Microsoft Entra DS) to decouple trust and dependency on on-premises instances of Active Directory. To achieve this decoupling, make sure virtual networks used for Microsoft Entra DS don't have a connection to corporate networks. See [Microsoft Entra Domain Services](../../active-directory-domain-services/overview.md).
+  Applications or resources that required servers can be migrated to Azure infrastructure as a service (IaaS). Use Microsoft Entra Domain Services to decouple trust and dependency on on-premises instances of Active Directory. To achieve this decoupling, make sure virtual networks used for Microsoft Entra Domain Services don't have a connection to corporate networks. See [Microsoft Entra Domain Services](../../active-directory-domain-services/overview.md).
 
   Use credential tiering. Application servers are typically considered tier-1 assets. For more information, see [Enterprise access model](/security/compass/privileged-access-access-model#ADATM_BM).
 
@@ -198,7 +198,7 @@ Use Microsoft Entra Conditional Access to interpret signals and use them to make
 
 ## Monitor
 
-After you configure your environment to protect your Microsoft 365 from an on-premises compromise, proactively monitor the environment. For more information, see [What is Microsoft Entra ID monitoring](../reports-monitoring/overview-monitoring.md).
+After you configure your environment to protect your Microsoft 365 from an on-premises compromise, proactively monitor the environment. For more information, see [What is Microsoft Entra monitoring?](../reports-monitoring/overview-monitoring-health.md)
 
 ### Scenarios to monitor
 
@@ -253,9 +253,9 @@ Monitor the following key scenarios, in addition to any scenarios specific to yo
 
 Define a log storage and retention strategy, design, and implementation to facilitate a consistent tool set. For example, you could consider security information and event management (SIEM) systems like Microsoft Sentinel, common queries, and investigation and forensics playbooks.
 
-- **Microsoft Entra ID logs**. Ingest generated logs and signals by consistently following best practices for settings such as diagnostics, log retention, and SIEM ingestion.
+- **Microsoft Entra logs**. Ingest generated logs and signals by consistently following best practices for settings such as diagnostics, log retention, and SIEM ingestion.
 
-  The log strategy must include the following Microsoft Entra ID logs:
+  The log strategy must include the following Microsoft Entra logs:
 
   - Sign-in activity
   - Audit logs
@@ -265,7 +265,7 @@ Define a log storage and retention strategy, design, and implementation to facil
 
   Use the Microsoft Graph API to ingest risk events. See [Use the Microsoft Graph identity protection APIs](/graph/api/resources/identityprotection-root).
 
-  You can stream Microsoft Entra ID logs to Azure Monitor logs. See [Integrate Microsoft Entra ID logs with Azure Monitor logs](../reports-monitoring/howto-integrate-activity-logs-with-log-analytics.md).
+  You can stream Microsoft Entra logs to Azure Monitor logs. See [Integrate Microsoft Entra logs with Azure Monitor logs](../reports-monitoring/howto-integrate-activity-logs-with-log-analytics.md).
 
 - **Hybrid infrastructure operating system security logs**. All hybrid identity infrastructure operating system logs should be archived and carefully monitored as a tier-0 system, because of the surface-area implications. Include the following elements:
 
 
@@ -87,14 +87,14 @@ We recommend developers build a process to use the latest MSAL release because a
 
 Find the latest version and release notes:
 
-* [microsoft-authentication-library-for--js](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases)
-* [microsoft-authentication-library-for--dotnet](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/releases)
-* [microsoft-authentication-library-for--python](https://github.com/AzureAD/microsoft-authentication-library-for-python/releases)
-* [microsoft-authentication-library-for--java](https://github.com/AzureAD/microsoft-authentication-library-for-java/releases)
-* [microsoft-authentication-library-for--objc](https://github.com/AzureAD/microsoft-authentication-library-for-objc/releases)
-* [microsoft-authentication-library-for--android](https://github.com/AzureAD/microsoft-authentication-library-for-android/releases)
-* [microsoft-authentication-library-for--js](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases)
-* [microsoft-identity-web](https://github.com/AzureAD/microsoft-identity-web/releases)
+* [`microsoft-authentication-library-for-js`](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases)
+* [`microsoft-authentication-library-for-dotnet`](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/releases)
+* [`microsoft-authentication-library-for-python`](https://github.com/AzureAD/microsoft-authentication-library-for-python/releases)
+* [`microsoft-authentication-library-for-java`](https://github.com/AzureAD/microsoft-authentication-library-for-java/releases)
+* [`microsoft-authentication-library-for-objc`](https://github.com/AzureAD/microsoft-authentication-library-for-objc/releases)
+* [`microsoft-authentication-library-for-android`](https://github.com/AzureAD/microsoft-authentication-library-for-android/releases)
+* [`microsoft-authentication-library-for-js`](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases)
+* [`microsoft-identity-web`](https://github.com/AzureAD/microsoft-identity-web/releases)
 
 ## Resilient patterns for token handling
 
@@ -216,7 +216,7 @@ Learn more:
 * [Conditional Access policy evaluation](../conditional-access/concept-continuous-access-evaluation.md#conditional-access-policy-evaluation)
 * [How to use CAE enabled APIs in your applications](../develop/app-resilience-continuous-access-evaluation.md)
 
-If you develop resource APIs, go to openid.net for [Shared Signals – A Secure Webhooks Framework](https://openid.net/wg/sse/).
+If you develop resource APIs, go to `openid.net` for [Shared Signals – A Secure Webhooks Framework](https://openid.net/wg/sse/).
 
 ## Next steps
 
 
@@ -349,7 +349,7 @@ Detailed information on using automated or manual processes and tools to monitor
 
 Some environments might have regulatory requirements that limit which data (if any) can leave a given environment. If centralized monitoring across environments isn't possible, teams should have operational procedures to correlate activities of identities across environments for auditing and forensics purposes such as cross-environment lateral movement attempts. It's recommended that the object unique identifiers human identities belonging to the same person is discoverable, potentially as part of the identity provisioning systems.
 
-The log strategy must include the following Microsoft Entra ID logs for each tenant used in the organization:
+The log strategy must include the following Microsoft Entra logs for each tenant used in the organization:
 
 * Sign-in activity