Merge pull request #265993 from dcurwin/fix-formatting-feb12-2024

Fix formatting

Author: PMEds28

articles/defender-for-cloud/custom-security-policies.md

@@ -9,7 +9,7 @@ zone_pivot_groups: manage-asc-initiatives
 
 # Create custom standards and recommendations (Azure)
 
-Security recommendations in Microsoft Defender for Cloud help you to improve and harden your security posture. Recommendations are based on the security standards you define in subscriptions that have Defender for Cloud onboarded. 
+Security recommendations in Microsoft Defender for Cloud help you to improve and harden your security posture. Recommendations are based on the security standards you define in subscriptions that have Defender for Cloud onboarded.
 
 [Security standards](security-policy-concept.md) can be based on regulatory compliance standards, and on customized standards. This article describes how to create custom standards and recommendations.
 
@@ -20,7 +20,6 @@ Security recommendations in Microsoft Defender for Cloud help you to improve and
 
 ::: zone pivot="azure-portal"
 
-
 ## Create a custom standard in the portal
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
@@ -29,12 +28,11 @@ Security recommendations in Microsoft Defender for Cloud help you to improve and
 
 1. Select the relevant subscription or management group.
 
-
 1. Select **Security policies** > **+ Create** > **Custom standard**.
 
     :::image type="content" source="media/custom-security-policies/create-custom-standard.png" alt-text="Screenshot that shows how to create a custom security standard." lightbox="media/custom-security-policies/create-custom-standard.png":::
 
-1. Enter a name and description. 
+1. Enter a name and description.
 
     > [!IMPORTANT]
     > Make sure the name is unique. If you create a custom standard with the same name as an existing standard, it causes a conflict in the information displayed in the dashboard.
@@ -67,7 +65,6 @@ If you want to create a custom recommendation for Azure resources, you currently
 
 ::: zone pivot="rest-api"
 
-
 ## Create a custom recommendation/standard (legacy)
 
 You can create custom recommendations and standards in Defender for cloud by creating policy definitions and initiatives in Azure Policy, and onboarding them in Defender for Cloud.
@@ -77,18 +74,17 @@ Here's how you do that:
 1. Create one or more policy definitions in the [Azure Policy portal](../governance/policy/tutorials/create-custom-policy-definition.md), or [programatically](../governance/policy/how-to/programmatically-create.md).
 1. [Create a policy initiative](../governance/policy/concepts/initiative-definition-structure.md) that contains the custom policy definitions.
 
-
 ## Onboard the initiative as a custom standard (legacy)
 
 [Policy assignments](../governance/policy/concepts/assignment-structure.md) are used by Azure Policy to assign Azure resources to a policy or initiative.
 
 To onboard an initiative to a custom security standard in Defender for you, you need to include `"ASC":"true"` in the request body as shown here. The `ASC` field onboards the initiative to Microsoft Defender for Cloud.
 
 Here's an example of how to do that.
- 
+
 ### Example to onboard a custom initiative
 
-```
+```json
   PUT  
   PUT https://management.azure.com/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/policySetDefinitions/{policySetDefinitionName}?api-version=2021-06-01
 
@@ -145,17 +141,16 @@ Here's an example of how to do that.
 
 This example shows you how to remove an assignment:
 
-```
+```json
   DELETE   
   https://management.azure.com/{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}?api-version=2018-05-01 
 ```
 
 ::: zone-end
 
-
 ## Enhance custom recommendations (legacy)
 
-The built-in recommendations supplied with Microsoft Defender for Cloud include details such as severity levels and remediation instructions. If you want to add this type of information to custom recommendations for Azure, use the REST API. 
+The built-in recommendations supplied with Microsoft Defender for Cloud include details such as severity levels and remediation instructions. If you want to add this type of information to custom recommendations for Azure, use the REST API.
 
 The two types of information you can add are:
 
@@ -166,9 +161,9 @@ The metadata should be added to the policy definition for a policy that is part
 
 ```json
  "metadata": {
-	"securityCenter": {
-		"RemediationDescription": "Custom description goes here",
-		"Severity": "High"
+  "securityCenter": {
+    "RemediationDescription": "Custom description goes here",
+    "Severity": "High"
     },
 ```
 
@@ -177,53 +172,52 @@ Here's another example of a custom policy including the metadata/securityCenter
   ```json
   {
 "properties": {
-	"displayName": "Security - ERvNet - AuditRGLock",
-	"policyType": "Custom",
-	"mode": "All",
-	"description": "Audit required resource groups lock",
-	"metadata": {
-		"securityCenter": {
-			"RemediationDescription": "Resource Group locks can be set via Azure Portal -> Resource Group -> Locks",
-			"Severity": "High"
-		}
-	},
-	"parameters": {
-		"expressRouteLockLevel": {
-			"type": "String",
-			"metadata": {
-				"displayName": "Lock level",
-				"description": "Required lock level for ExpressRoute resource groups."
-			},
-			"allowedValues": [
-				"CanNotDelete",
-				"ReadOnly"
-			]
-		}
-	},
-	"policyRule": {
-		"if": {
-			"field": "type",
-			"equals": "Microsoft.Resources/subscriptions/resourceGroups"
-		},
-		"then": {
-			"effect": "auditIfNotExists",
-			"details": {
-				"type": "Microsoft.Authorization/locks",
-				"existenceCondition": {
-					"field": "Microsoft.Authorization/locks/level",
-					"equals": "[parameters('expressRouteLockLevel')]"
-				}
-			}
-		}
-	}
+  "displayName": "Security - ERvNet - AuditRGLock",
+  "policyType": "Custom",
+  "mode": "All",
+  "description": "Audit required resource groups lock",
+  "metadata": {
+    "securityCenter": {
+      "RemediationDescription": "Resource Group locks can be set via Azure Portal -> Resource Group -> Locks",
+      "Severity": "High"
+   }
+  },
+ "parameters": {
+    "expressRouteLockLevel": {
+      "type": "String",
+      "metadata": {
+        "displayName": "Lock level",
+        "description": "Required lock level for ExpressRoute resource groups."
+      },
+      "allowedValues": [
+        "CanNotDelete",
+        "ReadOnly"
+      ]
+    }
+  },
+  "policyRule": {
+    "if": {
+      "field": "type",
+      "equals": "Microsoft.Resources/subscriptions/resourceGroups"
+    },
+    "then": {
+      "effect": "auditIfNotExists",
+      "details": {
+        "type": "Microsoft.Authorization/locks",
+        "existenceCondition": {
+          "field": "Microsoft.Authorization/locks/level",
+          "equals": "[parameters('expressRouteLockLevel')]"
+        }
+      }
+    }
+ }
 }
 }
   ```
 
 For another example for using the securityCenter property, see [this section of the REST API documentation](/rest/api/defenderforcloud/assessments-metadata/create-in-subscription#examples).
 
-
 ## Next steps
 
 - [Learn about](create-custom-recommendations.md) Defender for Cloud security standards and recommendations.
-- [Learn about](create-custom-recommendations.md) creating custom standards for AWS accounts and GCP projects.
+- [Learn about](create-custom-recommendations.md) creating custom standards for AWS accounts and GCP projects.

articles/defender-for-cloud/data-aware-security-dashboard-overview.md

@@ -31,6 +31,7 @@ To access the data security dashboard in Defender for Cloud, select **Data Secur
 - [Enable sensitive data discovery](tutorial-enable-cspm-plan.md#enable-the-components-of-the-defender-cspm-plan) within the Defender CSPM plan.  
 
 **To receive the alerts for data sensitivity**:
+
 - You must [enable Defender for Storage](tutorial-enable-storage-plan.md).
 
 ## Required permissions and roles
@@ -56,9 +57,9 @@ The data security overview section provides a general overview of your cloud dat
 
 - **Coverage status** - displays the limited data coverage for resources without Defender CSPM workload protection:
 
-    - **Covered** – resources that have the necessary Defender CSPM, or Defender for Storage, or Defender for Databases enabled.
-    - **Partially covered** – missing either the Defender CSPM, Defender for Storage, or Defender for Storage plan. Select the tooltip to present a detailed view of what is missing.
-    - **Not covered** - resources that aren't covered by Defender CSPM, or Defender for Storage, or Defender for Databases.
+  - **Covered** – resources that have the necessary Defender CSPM, or Defender for Storage, or Defender for Databases enabled.
+  - **Partially covered** – missing either the Defender CSPM, Defender for Storage, or Defender for Storage plan. Select the tooltip to present a detailed view of what is missing.
+  - **Not covered** - resources that aren't covered by Defender CSPM, or Defender for Storage, or Defender for Databases.
 
 - **Sensitive resources** – displays how many resources are sensitive.
 
@@ -91,7 +92,7 @@ You can select the **Manage data sensitivity settings** to get to the **Data sen
 
 ### Data resources security status
 
-**Sensitive resources status over time** - displays how data security evolves over time with a graph that shows the number of sensitive resources affected by alerts, attack paths, and recommendations within a defined period (last 30, 14, or 7 days). 
+**Sensitive resources status over time** - displays how data security evolves over time with a graph that shows the number of sensitive resources affected by alerts, attack paths, and recommendations within a defined period (last 30, 14, or 7 days).
 
 :::image type="content" source="media/data-aware-security-dashboard/data-resources-security-status.png" alt-text="Screenshot that shows the data resources security status section of the data security view." lightbox="media/data-aware-security-dashboard/data-resources-security-status.png":::
 

articles/defender-for-cloud/defender-for-apis-manage.md

@@ -59,5 +59,3 @@ You can learn more about how to [build queries with cloud security explorer](how
 ## Next steps
 
 [Learn about](defender-for-apis-introduction.md) Defender for APIs.
-
-

articles/defender-for-cloud/defender-for-apis-prepare.md

@@ -15,6 +15,7 @@ Review the requirements on this page before setting up [Microsoft Defender for A
 ## Cloud and region support
 
 Defender for APIs is available in the Azure commercial cloud, in these regions:
+
 - Asia (Southeast Asia, EastAsia)
 - Australia (Australia East, Australia Southeast, Australia Central, Australia Central 2)
 - Brazil (Brazil South, Brazil Southeast)
@@ -27,21 +28,19 @@ Defender for APIs is available in the Azure commercial cloud, in these regions:
 
 Review the latest cloud support information for Defender for Cloud plans and features in the [cloud support matrix](support-matrix-cloud-environment.md).
 
-
 ## API support
 
 **Feature** | **Supported**
---- | --- 
+--- | ---
 Availability | This feature is available in the Premium, Standard, Basic, and Developer tiers of Azure API Management.
-API gateways | Azure API Management<br/><br/> Defender for APIs currently doesn't onboard APIs that are exposed using the API Management [self-hosted gateway](../api-management/self-hosted-gateway-overview.md), or managed using API Management [workspaces](../api-management/workspaces-overview.md). 
+API gateways | Azure API Management<br/><br/> Defender for APIs currently doesn't onboard APIs that are exposed using the API Management [self-hosted gateway](../api-management/self-hosted-gateway-overview.md), or managed using API Management [workspaces](../api-management/workspaces-overview.md).
 API types | Currently, Defender for APIs discovers and analyzes REST APIs.
 Multi-region support | There is currently limited support for API security insights for APIs published in Azure API Management multi-region deployments. Security insights, including data classifications, assessments of inactive APIs, unauthenticated APIs, and external APIs, is limited to supporting API traffic to the primary region (no support for security insights for secondary regions). All security detections and subsequently generated security alerts will work for API traffic sent to both primary and secondary regions.
 
 ## Defender CSPM integration
 
 To explore API security risks using Cloud Security Explorer, the Defender Cloud Security Posture Management (CSPM) plan must be enabled. [Learn more](concept-cloud-security-posture-management.md).
 
-
 ## Onboarding requirements
 
 Onboarding requirements for Defender for APIs are as follows.
@@ -56,4 +55,3 @@ Onboarding location | You can [enable Defender for APIs in the Defender for Clou
 ## Next steps
 
 [Enable and onboard](defender-for-apis-deploy.md) Defender for APIs.
-

articles/defender-for-cloud/defender-for-apis-validation.md

@@ -71,7 +71,7 @@ This page will walk you through the steps to trigger an alert for one of your AP
 
 1. In the value field enter **javascript:**.
 
-    :::image type="content" source="media/defender-for-apis-validation/postman-keys.png" alt-text="Screenshot that shows where to enter the keys and their values in Postman."::: 
+    :::image type="content" source="media/defender-for-apis-validation/postman-keys.png" alt-text="Screenshot that shows where to enter the keys and their values in Postman.":::
 
 1. Select **Send**
 

articles/defender-for-cloud/defender-for-databases-introduction.md

@@ -55,8 +55,6 @@ Threat intelligence enriched security alerts are triggered when there are:
 > [!TIP]
 > View the full list of security alerts for database servers [in the alerts reference page](alerts-reference.md#alerts-osrdb).
 
-
-
 ## Next steps
 
 In this article, you learned about Microsoft Defender for open-source relational databases.

articles/defender-for-cloud/defender-for-dns-introduction.md

@@ -45,4 +45,3 @@ In this article, you learned about Microsoft Defender for DNS.
 For related material, see the following article:
 
 Security alerts might be generated by Defender for Cloud or received from other security products. To export all of these alerts to Microsoft Sentinel, any third-party SIEM, or any other external tool, follow the instructions in [Exporting alerts to a SIEM](continuous-export.md).
-