MicrosoftDocs
diff --git a/‎articles/governance/machine-configuration/agent-notes.md
Lines changed: 52 additions & 22 deletions b/‎articles/governance/machine-configuration/agent-notes.md
Lines changed: 52 additions & 22 deletions
diff --git a/‎articles/governance/machine-configuration/machine-configuration-assignments.md
Lines changed: 59 additions & 53 deletions b/‎articles/governance/machine-configuration/machine-configuration-assignments.md
Lines changed: 59 additions & 53 deletions
@@ -6,25 +6,28 @@ ms.topic: conceptual
 ---
 # Azure Automanage machine configuration agent release notes
 
-[!INCLUDE [Machine config rename banner](../includes/banner.md)]
+[!INCLUDE [Machine config rename banner][00]]
 
 ## About the guest configuration agent
 
-The guest configuration agent receives improvements on an ongoing basis. To stay up to date with the most recent developments, this article provides you with information about:
+The guest configuration agent receives improvements on an ongoing basis. To stay up to date with
+the most recent developments, this article provides you with information about:
 
 - The latest releases
 - Known issues
 - Bug fixes
 
-For information on release notes for the connected machine agent, please see [What's new with the connected machine agent](../../azure-arc/servers/agent-release-notes.md).
+For information on release notes for the connected machine agent, please see
+[What's new with the connected machine agent][01].
 
 ## Release notes
 
 ### Version 1.29.48 - January 2023
 
 #### New Features
 
-- In this release we have added support for Linux distributions such as Red Hat Enterprise Linux (RHEL) 9, Mariner 1&2, Alma 9, and Rocky 9. 
+- In this release we have added support for Linux distributions such as Red Hat Enterprise Linux
+  (RHEL) 9, Mariner 1&2, Alma 9, and Rocky 9.
 
 #### Fixed
 
@@ -33,34 +36,61 @@ For information on release notes for the connected machine agent, please see [Wh
 
 ### Guest Configuration Linux Extension version 1.26.38
 
-In this release, various improvements were made. 
+In this release, various improvements were made.
 
-- You can now restrict which URLs can be used to download machine configuration packages by setting the allowedGuestConfigPkgUrls tag on the server resource and providing a comma-separated list of URL patterns to allow. If the tag exists, the agent will only allow custom packages to be downloaded from the specified URLs. Built-in packages are unaffected by this feature. 
+- You can now restrict which URLs can be used to download machine configuration packages by setting
+  the allowedGuestConfigPkgUrls tag on the server resource and providing a comma-separated list of
+  URL patterns to allow. If the tag exists, the agent will only allow custom packages to be
+  downloaded from the specified URLs. Built-in packages are unaffected by this feature.
 
 ## Fixed
 
-- Resolves local elevation of privilege vulnerability [CVE-2022-38007](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38007). 
-- If you're currently running an older version of the AzurePolicyforLinux extension, use the PowerShell or Azure CLI commands below to update your extension to the latest version. 
+- Resolves local elevation of privilege vulnerability [CVE-2022-38007][03].
+- If you're currently running an older version of the AzurePolicyforLinux extension, use the
+  PowerShell or Azure CLI commands below to update your extension to the latest version.
 
 ```powershell
-Set-AzVMExtension -Publisher 'Microsoft.GuestConfiguration' -Type 'ConfigurationforLinux' -Name 'AzurePolicyforLinux' -TypeHandlerVersion 1.26.38 -ResourceGroupName 'myResourceGroup' -Location 'myLocation' -VMName 'myVM' -EnableAutomaticUpgrade $true
+$params = @{
+    Publisher              = 'Microsoft.GuestConfiguration'
+    Type                   = 'ConfigurationforLinux'
+    Name                   = 'AzurePolicyforLinux'
+    TypeHandlerVersion     = '1.26.38'
+    ResourceGroupName      = '<resource-group>'
+    Location               = '<location>'
+    VMName                 = '<vm-name>'
+    EnableAutomaticUpgrade = $true
+}
+Set-AzVMExtension @params
 ```
 
 ```azurecli
-az vm extension set  --publisher Microsoft.GuestConfiguration --name ConfigurationforLinux --extension-instance-name AzurePolicyforLinux --resource-group myResourceGroup --vm-name myVM --version 1.26.38 --enable-auto-upgrade true
+az vm extension set \
+    --publisher Microsoft.GuestConfiguration \
+    --name ConfigurationforLinux \
+    --extension-instance-name AzurePolicyforLinux \
+    --resource-group <resource-group> \
+    --vm-name <vm-name> \
+    --version 1.26.38 \
+    --enable-auto-upgrade true
 ```
 
 ## Next steps
 
-- Set up a custom machine configuration package [development environment](./machine-configuration-create-setup.md).
-- [Create a package artifact](./machine-configuration-create.md)
-  for machine configuration.
-- [Test the package artifact](./machine-configuration-create-test.md)
-  from your development environment.
-- Use the `GuestConfiguration` module to
-  [create an Azure Policy definition](./machine-configuration-create-definition.md)
-  for at-scale management of your environment.
-- [Assign your custom policy definition](../policy/assign-policy-portal.md) using
-  Azure portal.
-- Learn how to view
-  [compliance details for machine configuration](../policy/how-to/determine-non-compliance.md) policy assignments.
+- Set up a custom machine configuration package [development environment][04].
+- [Create a package artifact][05] for machine configuration.
+- [Test the package artifact][06] from your development environment.
+- Use the `GuestConfiguration` module to [create an Azure Policy definition][07] for at-scale
+  management of your environment.
+- [Assign your custom policy definition][08] using Azure portal.
+- Learn how to view [compliance details for machine configuration][09] policy assignments.
+
+<!-- Reference link definitions -->
+[00]: ../includes/banner.md
+[01]: ../../azure-arc/servers/agent-release-notes.md
+[03]: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38007
+[04]: ./machine-configuration-create-setup.md
+[05]: ./machine-configuration-create.md
+[06]: ./machine-configuration-create-test.md
+[07]: ./machine-configuration-create-definition.md
+[08]: ../policy/assign-policy-portal.md
+[09]: ../policy/how-to/determine-non-compliance.md
@@ -8,47 +8,48 @@ ms.topic: conceptual
 
 [!INCLUDE [Machine config rename banner](../includes/banner.md)]
 
-When an Azure Policy is assigned, if it's in the category "Guest Configuration"
-there's metadata included to describe a guest assignment.
+When an Azure Policy is assigned, if it's in the category "Guest Configuration" there's metadata
+included to describe a guest assignment.
 
-[A video walk-through of this document is available](https://youtu.be/DmCphySEB7A).
+[A video walk-through of this document is available][01].
 
-You can think of a guest assignment as a link between a machine and an Azure
-Policy scenario. For example, the following snippet associates the Azure Windows
-Baseline configuration with minimum version `1.0.0` to any machines in scope of
-the policy.
+You can think of a guest assignment as a link between a machine and an Azure Policy scenario. For
+example, the following snippet associates the Azure Windows Baseline configuration with minimum
+version `1.0.0` to any machines in scope of the policy.
 
 ```json
 "metadata": {
-    "category": "Guest Configuration",
-    "guestConfiguration": {
-        "name": "AzureWindowsBaseline",
-        "version": "1.*"
-    }
-//additional metadata properties exist
+  "category": "Guest Configuration",
+  "guestConfiguration": {
+      "name": "AzureWindowsBaseline",
+      "version": "1.*"
+  }
+  //additional metadata properties exist
+}
 ```
 
 ## How Azure Policy uses machine configuration assignments
 
-The metadata information is used by the machine configuration service to
-automatically create an audit resource for definitions with either
-**AuditIfNotExists** or **DeployIfNotExists** policy effects. The resource type
-is `Microsoft.GuestConfiguration/guestConfigurationAssignments`. Azure Policy
-uses the **complianceStatus** property of the guest assignment resource to
-report compliance status. For more information, see
-[getting compliance data](../policy/how-to/get-compliance-data.md).
+The metadata information is used by the machine configuration service to automatically create an
+audit resource for definitions with either **AuditIfNotExists** or **DeployIfNotExists** policy
+effects. The resource type is `Microsoft.GuestConfiguration/guestConfigurationAssignments`. Azure
+Policy uses the **complianceStatus** property of the guest assignment resource to report compliance
+status. For more information, see [getting compliance data][02].
 
 ### Deletion of guest assignments from Azure Policy
 
-When an Azure Policy assignment is deleted, if a machine configuration assignment
-was created by the policy, the machine configuration assignment is also deleted.
+When an Azure Policy assignment is deleted, if a machine configuration assignment was created by
+the policy, the machine configuration assignment is also deleted.
 
-When an Azure Policy assignment is deleted from an initiative, if a machine configuration assignment was created by the policy, you will need to manually delete the corresponding machine configuration assignment. This can be done by navigating to the guest assignments page on Azure portal and deleting the assignment there.
+When an Azure Policy assignment is deleted from an initiative, if a machine configuration
+assignment was created by the policy, you will need to manually delete the corresponding machine
+configuration assignment. This can be done by navigating to the guest assignments page on Azure
+portal and deleting the assignment there.
 
 ## Manually creating machine configuration assignments
 
-Guest assignment resources in Azure Resource Manager can be created by Azure
-Policy or any client SDK.
+Guest assignment resources in Azure Resource Manager can be created by Azure Policy or any client
+SDK.
 
 An example deployment template:
 
@@ -79,31 +80,30 @@ An example deployment template:
 
 The following table describes each property of guest assignment resources.
 
-| Property | Description |
-|-|-|
-| name | Name of the configuration inside the content package MOF file. |
-| contentUri | HTTPS URI path to the content package (.zip). |
-| contentHash | A SHA256 hash value of the content package, used to verify it has not changed. |
-| version | Version of the content package. Only used for built-in packages and not used for custom content packages. |
-| assignmentType | Behavior of the assignment. Allowed values: `Audit`, `ApplyandMonitor`, and `ApplyandAutoCorrect`. |
+|        Property        |                                                            Description                                                            |
+| ---------------------- | --------------------------------------------------------------------------------------------------------------------------------- |
+| name                   | Name of the configuration inside the content package MOF file.                                                                    |
+| contentUri             | HTTPS URI path to the content package (`.zip`).                                                                                   |
+| contentHash            | A SHA256 hash value of the content package, used to verify it has not changed.                                                    |
+| version                | Version of the content package. Only used for built-in packages and not used for custom content packages.                         |
+| assignmentType         | Behavior of the assignment. Allowed values: `Audit`, `ApplyandMonitor`, and `ApplyandAutoCorrect`.                                |
 | configurationParameter | List of DSC resource type, name, and value in the content package MOF file to be overridden after it's downloaded in the machine. |
 
 ### Deletion of manually created machine configuration assignments
 
-Machine configuration assignments created through any manual approach (such as
-an Azure Resource Manager template deployment) must be deleted manually.
-Deleting the parent resource (virtual machine or Arc-enabled machine) will also
-delete the machine configuration assignment.
+Machine configuration assignments created through any manual approach (such as an Azure Resource
+Manager template deployment) must be deleted manually. Deleting the parent resource (virtual
+machine or Arc-enabled machine) will also delete the machine configuration assignment.
 
-To manually delete a machine configuration assignment, use the following
-example. Make sure to replace all example strings, indicated by "\<\>" brackets.
+To manually delete a machine configuration assignment, use the following example. Make sure to
+replace all example strings, indicated by `<>` brackets.
 
 ```PowerShell
 # First get details about the machine configuration assignment
 $resourceDetails = @{
-  ResourceGroupName = '<myResourceGroupName>'
+  ResourceGroupName = '<resource-group-name>'
   ResourceType      = 'Microsoft.Compute/virtualMachines/providers/guestConfigurationAssignments/'
-  ResourceName      = '<myVMName>/Microsoft.GuestConfiguration'
+  ResourceName      = '<vm-name>/Microsoft.GuestConfiguration'
   ApiVersion        = '2020-06-25'
 }
 $guestAssignment = Get-AzResource @resourceDetails
@@ -117,16 +117,22 @@ $guestAssignment | Remove-AzResource
 
 ## Next steps
 
-- Read the [machine configuration overview](./overview.md).
-- Setup a custom machine configuration package [development environment](./machine-configuration-create-setup.md).
-- [Create a package artifact](./machine-configuration-create.md)
-  for machine configuration.
-- [Test the package artifact](./machine-configuration-create-test.md)
-  from your development environment.
-- Use the `GuestConfiguration` module to
-  [create an Azure Policy definition](./machine-configuration-create-definition.md)
-  for at-scale management of your environment.
-- [Assign your custom policy definition](../policy/assign-policy-portal.md) using
-  Azure portal.
-- Learn how to view
-  [compliance details for machine configuration](../policy/how-to/determine-non-compliance.md) policy assignments.
+- Read the [machine configuration overview][03].
+- Setup a custom machine configuration package [development environment][04].
+- [Create a package artifact][05] for machine configuration.
+- [Test the package artifact][06] from your development environment.
+- Use the `GuestConfiguration` module to [create an Azure Policy definition][07] for at-scale
+  management of your environment.
+- [Assign your custom policy definition][08] using Azure portal.
+- Learn how to view [compliance details for machine configuration][09] policy assignments.
+
+<!-- Reference link definitions -->
+[01]: https://youtu.be/DmCphySEB7A
+[02]: ../policy/how-to/get-compliance-data.md
+[03]: ./overview.md
+[04]: ./machine-configuration-create-setup.md
+[05]: ./machine-configuration-create.md
+[06]: ./machine-configuration-create-test.md
+[07]: ./machine-configuration-create-definition.md
+[08]: ../policy/assign-policy-portal.md
+[09]: ../policy/how-to/determine-non-compliance.md