Merge pull request #46842 from MarkusVi/quickfix04

quickfix04

Author: PRMerger12

articles/active-directory/active-directory-conditional-access-app-sign-in-risk.md

@@ -14,7 +14,7 @@ ms.devlang: na
 ms.topic: article
 ms.tgt_pltfrm: na
 ms.workload: identity
-ms.date: 07/16/2018
+ms.date: 07/17/2018
 ms.author: markvi
 ms.reviewer: calebb
 #Customer intent: As an IT admin, I want to configure a policy to handle suspicious sign-ins, so that they can be automatically handled.
@@ -59,14 +59,15 @@ The goal of this step is to make sure that your test account can access your ten
 
 ## Create your conditional access policy 
 
-The scenario in this quickstart uses a sign-in from a Tor Browser to generate a detected **Sign-ins from anonymous IP addresses** risk event. The risk level of this risk event is medium.   
+The scenario in this quickstart uses a sign-in from a Tor Browser to generate a detected **Sign-ins from anonymous IP addresses** risk event. The risk level of this risk event is medium. To respond to this risk event, you set the sign-in risk condition to medium. In a production environment, you should set the sign-in risk condition either to high or to medium and high.     
 
 This section shows how to create the required conditional access policy. In your policy, set:
 
 |Setting |Value|
 |---     | --- |
 | Users and groups | Alain Charon  |
 | Cloud apps | All cloud apps |
+| Sign-in risk | Medium |
 | Grant | Block access |