Merge branch 'main' into release-preview-acss

Author: v-alje

.openpublishing.redirection.json

@@ -1,5 +1,10 @@
 {
   "redirections": [
+    {
+      "source_path": "articles/api-management/zone-redundancy.md",
+      "redirect_url": "/azure/availability-zones/migrate-api-mgt",
+      "redirect_document_id": false
+    },
     {
       "source_path": "articles/virtual-machines/linux/find-unattached-nics.md",
       "redirect_url": "/previous-versions/azure/virtual-machines/linux/find-unattached-nics",

articles/active-directory-b2c/error-codes.md

@@ -9,7 +9,7 @@ manager: CelesteDG
 ms.service: active-directory
 ms.workload: identity
 ms.topic: reference
-ms.date: 06/16/2021
+ms.date: 07/18/2022
 ms.author: kengaderdus
 ms.subservice: B2C
 ---
@@ -20,6 +20,7 @@ The following errors can be returned by the Azure Active Directory B2C service.
 
 | Error code | Message | Notes |
 | ---------- | ------- | ----- |
+| `AADB2C90001` | This user already exists, and profile '{0}' does not allow the same user to be created again. | [Sign-up flow](add-sign-up-and-sign-in-policy.md) |
 | `AADB2C90002` | The CORS resource '{0}' returned a 404 not found. | [Hosting the page content](customize-ui-with-html.md#hosting-the-page-content) |
 | `AADB2C90006` | The redirect URI '{0}' provided in the request is not registered for the client ID '{1}'. | [Register a web application](tutorial-register-applications.md), [Sending authentication requests](openid-connect.md#send-authentication-requests) |
 | `AADB2C90007` | The application associated with client ID '{0}' has no registered redirect URIs. | [Register a web application](tutorial-register-applications.md), [Sending authentication requests](openid-connect.md#send-authentication-requests) |

articles/active-directory/app-provisioning/media/partner-driven-integrations/partner-driven-connectors-1.png

@@ -7,7 +7,7 @@ manager: rkarlin
 ms.service: active-directory
 ms.workload: identity
 ms.topic: overview
-ms.date: 07/08/2022
+ms.date: 07/18/2022
 ms.subservice: hybrid
 ms.author: billmath
 ms.collection: M365-identity-device-management
@@ -22,12 +22,16 @@ Popular third party applications, such as Dropbox, Snowflake, and Workplace by F
 **Option 2 - Implement a SCIM compliant API for your application:**
 If your line-of-business application supports the [SCIM](https://aka.ms/scimoverview) standard, it can easily be integrated with the [Azure AD SCIM client](use-scim-to-provision-users-and-groups.md).
 
+   [![Diagram showing implementation of a SCIM compliant API for your application.](media/partner-driven-integrations/scim-compliant-api-1.png)](media/partner-driven-integrations/scim-compliant-api-1.png#lightbox)
+
 **Option 3 - Use Microsoft Graph:**
 Many new applications use Microsoft Graph to retrieve users, groups and other resources from Azure Active Directory. You can learn more about what scenarios to use [SCIM and Graph](scim-graph-scenarios.md) in. 
 
 **Option 4 - Use partner-driven connectors:**
 In cases where an application doesn't support SCIM, partners have built gateways between the Azure AD SCIM client and target applications. **This document serves as a place for partners to attest to integrations that are compatible with Azure Active Directory, and for customers to discover these partner-driven integrations.** These gateways are built, maintained, and owned by the third-party vendor. 
 
+   [![Diagram showing gateways between the Azure AD SCIM client and target applications.](media/partner-driven-integrations/partner-driven-connectors-1.png)](media/partner-driven-integrations/partner-driven-connectors-1.png#lightbox)
+
 ## Available partner-driven integrations
 The descriptions and lists of applications below are provided by the partners themselves. You can use the lists of applications supported to identify a partner that you may want to contact and learn more about.  
 

articles/active-directory/app-provisioning/media/partner-driven-integrations/scim-compliant-api-1.png

@@ -6,12 +6,12 @@ services: active-directory
 ms.service: active-directory
 ms.subservice: devices
 ms.topic: how-to
-ms.date: 05/06/2022
+ms.date: 07/18/2022
 
 ms.author: joflore
 author: MicrosoftGuyJFlo
 manager: karenhoran
-ms.reviewer: hafowler
+ms.reviewer: myra-ramdenbourg
 
 ms.collection: M365-identity-device-management
 ---
@@ -107,26 +107,30 @@ To view or copy BitLocker keys, you need to be the owner of the device or have o
 - Security Administrator
 - Security Reader
 
-## Device-list filtering (preview)
+## View and filter your devices (preview)
 
-Previously, you could filter the device list only by activity and enabled state. In this preview, you can filter the device list by these device attributes:
+In this preview, you have the ability to infinitely scroll, reorder columns, and select all devices. You can filter the device list by these device attributes:
 
 - Enabled state
 - Compliant state
 - Join type (Azure AD joined, Hybrid Azure AD joined, Azure AD registered)
 - Activity timestamp
 - OS
 - Device type (printer, secure VM, shared device, registered device)
+- MDM
+- Extension attributes
+- Administrative unit
+- Owner
 
-To enable the preview filtering functionality in the **All devices** view:
+To enable the preview in the **All devices** view:
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
-1. Go to **Azure Active Directory** > **Devices**.
-1. Select the banner that says **Try out the new devices filtering improvements. Click to enable the preview.**
-
-   ![Enable filtering preview functionality](./media/device-management-azure-portal/device-filter-preview-enable.png)
+2. Go to **Azure Active Directory** > **Devices** > **All devices**.
+3. Select the **Preview features** button.
+4. Turn on the toggle that says **Enhanced devices list experience**. Select **Apply**.
+5. Refresh your browser.
 
-You can now add filters to your **All devices** view.
+You can now experience the enhanced **All devices** view.
 
 ## Download devices
 

articles/active-directory/app-provisioning/partner-driven-integrations.md

@@ -3770,7 +3770,7 @@ Because of modern browser [3rd party cookie restrictions such as Safari ITP](../
 **Service category:** Device Management
 **Product capability:** Device Lifecycle Management
 
-Previously, the only filters you could use were "Enabled" and "Activity date." Now, you can [filter your list of devices on more properties](../devices/device-management-azure-portal.md#device-list-filtering-preview), including OS type, join type, compliance, and more. These additions should simplify locating a particular device.
+Previously, the only filters you could use were "Enabled" and "Activity date." Now, you can [filter your list of devices on more properties](../devices/device-management-azure-portal.md), including OS type, join type, compliance, and more. These additions should simplify locating a particular device.
 
 ---
 

articles/active-directory/devices/device-management-azure-portal.md

@@ -7,7 +7,7 @@ ms.author: jomondi
 ms.service: active-directory
 ms.subservice: app-mgmt
 ms.topic: tutorial
-ms.date: 02/24/2022
+ms.date: 07/18/2022
 
 # Customer intent: As an administrator of an Azure AD tenant, I want to manage access to my applications and make sure they are secure.
 ---
@@ -76,7 +76,7 @@ In this tutorial, the administrator can find the basic steps to configure the ap
 1. Set **Enable policy** to **On**.
 1. To apply the Conditional Access policy, select **Create**.
 
-## Test multi-factor authentication
+### Test multi-factor authentication
 
 1. Open a new browser window in InPrivate or incognito mode and browse to the URL of the application.
 1. Sign in with the user account that you assigned to the application. You're required to register for and use Azure AD Multi-Factor Authentication. Follow the prompts to complete the process and verify you successfully sign into the Azure portal.
@@ -98,10 +98,10 @@ Juan wants to make sure that certain terms and conditions are known to users bef
 1. For **Enforce with conditional access policy templates**, select **Custom policy**.
 1. Select **Create**.
 
-## Add the terms of use to the policy
+### Add the terms of use to the policy
 
 1. In the left menu of the tenant overview, select **Security**.
-1. Select **Conditional Access**, and then select the *MFA Pilot* policy.
+1. Select **Conditional Access**, and then **Policies**. From the list of policies, select the *MFA Pilot* policy.
 1. Under **Access controls** and **Grant**, select the controls selected link.
 1. Select *My TOU*.
 1. Select **Require all the selected controls**, and then choose **Select**.
@@ -114,6 +114,8 @@ The My Apps portal enables administrators and users to manage the applications u
 > [!NOTE]
 > Applications only appear in a user's my Apps portal after the user is assigned to the application and the application is configured to be visible to users. See [Configure application properties](add-application-portal-configure.md) to learn how to make the application visible to users.
 
+By default, all applications are listed together on a single page. But you can use collections to group together related applications and present them on a separate tab, making them easier to find. For example, you can use collections to create logical groupings of applications for specific job roles, tasks, projects, and so on. In this section, you create a collection  and assign it to users and groups.
+
 1. Open the Azure portal.
 1. Go to **Azure Active Directory**, and then select **Enterprise Applications**.
 1. Under **Manage**, select **Collections**.
@@ -124,6 +126,13 @@ The My Apps portal enables administrators and users to manage the applications u
 1. Select the **Users and groups** tab. Select **+ Add users and groups**, and then in the **Add users and groups** page, select the users or groups you want to assign the collection to. Or use the Search box to find users or groups. When you're finished selecting users and groups, choose **Select**.
 1. Select **Review + Create**, and then select **Create**. The properties for the new collection appear.
 
+### Check the collection in the My Apps portal
+
+1. Open a new browser window in InPrivate or incognito mode and browse to the [My Apps](https://myapps.microsoft.com/) portal.
+1. Sign in with the user account that you assigned to the application. 
+1. Check that the collection you created appears in the My Apps portal.
+1. Close the browser window.
+
 ## Clean up resources
 
 You can keep the resources for future use, or if you're not going to continue to use the resources created in this tutorial, delete them with the following steps.

articles/active-directory/fundamentals/whats-new-archive.md

@@ -2,13 +2,13 @@
 title: Azure Active Directory architecture overview (preview)
 description: Learn foundational information to plan and design your solution
 documentationCenter: ''
-author: barbaraselden
+author: barclayn
 manager: martinco
 ms.service: decentralized-identity
 ms.topic: how-to
 ms.subservice: verifiable-credentials
 ms.date: 06/02/2022
-ms.author: baselden
+ms.author: barclayn
 ---
 
 # Azure AD Verifiable Credentials architecture overview (preview)

articles/active-directory/manage-apps/tutorial-manage-access-security.md

@@ -2,13 +2,13 @@
 title: Plan your Azure Active Directory Verifiable Credentials issuance solution(preview)
 description: Learn to plan your end-to-end issuance solution.
 documentationCenter: ''
-author: barbaraselden
+author: barclayn
 manager: martinco
 ms.service: decentralized-identity
 ms.topic: how-to
 ms.subservice: verifiable-credentials
 ms.date: 06/03/2022
-ms.author: baselden
+ms.author: barclayn
 ms.custom: references_regions
 ---