Merge branch 'main' of https://github.com/MicrosoftDocs/azure-docs-pr into pauljewell-quickstart-toc

Author: pauljewellmsft

.openpublishing.redirection.active-directory.json

@@ -10895,6 +10895,11 @@
       "source_path_from_root": "/articles/active-directory/fundamentals/support-help-options.md",
       "redirect_url": "/azure/active-directory/fundamentals/how-to-get-support",
       "redirect_document_id": false
+    },
+{
+      "source_path_from_root": "/articles/active-directory/cloud-infrastructure-entitlement-management/permissions-management-trial-playbook.md",
+      "redirect_url": "/azure/active-directory/cloud-infrastructure-entitlement-management/permissions-management-trial-user-guide",
+      "redirect_document_id": false
     }
   ]
 }

articles/active-directory/cloud-infrastructure-entitlement-management/media/overview/discover-remediate-monitor.png

@@ -1,5 +1,5 @@
 ---
-title: Trial Playbook - Microsoft Entra Permissions Management
+title: Trial User Guide - Microsoft Entra Permissions Management
 description: How to get started with your Entra Permissions free trial
 services: active-directory
 author: jenniferf-skc
@@ -11,11 +11,11 @@ ms.date: 09/01/2022
 ms.author: jfields
 ---
 
-# Trial playbook: Microsoft Entra Permissions Management
+# Trial user guide: Microsoft Entra Permissions Management
 
-Welcome to the Microsoft Entra Permissions Management trial playbook!
+Welcome to the Microsoft Entra Permissions Management trial user guide!
 
-This playbook is a simple guide to help you make the most of your free trial, including the Permissions Management Cloud Infrastructure Assessment to help you identify and remediate the most critical permission risks across your multicloud infrastructure. Using the suggested steps in this playbook from the Microsoft Identity team, you'll learn how Permissions Management can assist you to protect all your users and data.
+This user guide is a simple guide to help you make the most of your free trial, including the Permissions Management Cloud Infrastructure Assessment to help you identify and remediate the most critical permission risks across your multicloud infrastructure. Using the suggested steps in this user guide from the Microsoft Identity team, you'll learn how Permissions Management can assist you to protect all your users and data.
 
 ## What is Permissions Management? 
 
@@ -28,7 +28,7 @@ Permissions Management helps your organization tackle cloud permissions by enabl
 -   Enforce least privilege - Right-size permissions based on usage and activity and enforce permissions on-demand at cloud scale.
 -   Monitor and detect anomalies - Detect anomalous permission usage and generate detailed forensic reports.
 
-![Diagram, schematic Description automatically generated](media/permissions-management-trial-playbook/microsoft-entra-permissions-management-diagram.png)
+![Diagram, schematic Description automatically generated](media/permissions-management-trial-user-guide/microsoft-entra-permissions-management-diagram.png)
 
 
 ## Step 1: Set-up Permissions Management
@@ -182,23 +182,23 @@ Use the **Activity triggers** dashboard to view information and set alerts and t
 
         Example: Any activity done by root:
 
-        ![Diagram, Any activity done by root user in AWS.](media/permissions-management-trial-playbook/custom-alerts-1.png)
+        ![Diagram, Any activity done by root user in AWS.](media/permissions-management-trial-user-guide/custom-alerts-1.png)
 
         Alert for monitoring any direct Azure role assignment
 
-        ![Diagram, Alert for monitoring any direct Azure role assignment done by anyone other than Admin user.](media/permissions-management-trial-playbook/custom-alerts-2.png)
+        ![Diagram, Alert for monitoring any direct Azure role assignment done by anyone other than Admin user.](media/permissions-management-trial-user-guide/custom-alerts-2.png)
 
 -   Access to critical sensitive resources
 
     Example: Alert for monitoring any action on Azure resources
 
-    ![Diagram, Alert for monitoring any action on Azure resources.](media/permissions-management-trial-playbook/custom-alerts-3.png)
+    ![Diagram, Alert for monitoring any action on Azure resources.](media/permissions-management-trial-user-guide/custom-alerts-3.png)
 
 -   Use of break glass accounts like root in AWS, global admin in Azure AD accessing subscriptions, etc.
 
     Example: BreakGlass users should be used for emergency access only.
 
-    ![Diagram, Example of break glass account users used for emergency access only.](media/permissions-management-trial-playbook/custom-alerts-4.png)
+    ![Diagram, Example of break glass account users used for emergency access only.](media/permissions-management-trial-user-guide/custom-alerts-4.png)
 
 -  Create and view reports
 

articles/active-directory/cloud-infrastructure-entitlement-management/media/permissions-management-trial-playbook/custom-alerts-1.png renamed to articles/active-directory/cloud-infrastructure-entitlement-management/media/permissions-management-trial-user-guide/custom-alerts-1.png

@@ -90,7 +90,6 @@ Common settings:
   - `https://sts.windows.net`
   - `https://login.partner.microsoftonline.cn`
   - `https://login.chinacloudapi.cn`
-  - `https://login.microsoftonline.de`
   - `https://login.microsoftonline.us`
   - `https://login.usgovcloudapi.net`
   - `https://login-us.microsoftonline.com`

articles/active-directory/cloud-infrastructure-entitlement-management/media/permissions-management-trial-playbook/custom-alerts-2.png renamed to articles/active-directory/cloud-infrastructure-entitlement-management/media/permissions-management-trial-user-guide/custom-alerts-2.png

@@ -8,7 +8,7 @@ ms.service: active-directory
 ms.workload: identity
 ms.subservice: fundamentals
 ms.topic: overview
-ms.date: 09/23/2022
+ms.date: 09/29/2022
 ms.author: jricketts
 ms.custom:
   - it-pro
@@ -59,7 +59,7 @@ Use the numbered sections in the next two section to cross reference the followi
 
 As customers transition identity management to the cloud, more users and groups are created directly in Azure AD. However, they still need a presence on-premises in AD DS to access various resources.
 
-3. When an external user from a partner organization is created in Azure AD using B2B, MIM can automatically provision them [into AD](/microsoft-identity-manager/microsoft-identity-manager-2016-graph-b2b-scenario) and give those guests access to on-premises Windows-Integrated Authentication or Kerberos-based applications.
+3. When an external user from a partner organization is created in Azure AD using B2B, MIM can automatically provision them [into AD DS](/microsoft-identity-manager/microsoft-identity-manager-2016-graph-b2b-scenario) and give those guests access to [on-premises Windows-Integrated Authentication or Kerberos-based applications](https://learn.microsoft.com/azure/active-directory/external-identities/hybrid-cloud-to-on-premises). Alternatively, customers can user [PowerShell scripts](https://github.com/Azure-Samples/B2B-to-AD-Sync) to automate the creation of guest accounts on-premises. 
 
 1. When a group is created in Azure AD, it can be automatically synchronized to AD DS using [Azure AD Connect sync](../hybrid/how-to-connect-group-writeback-v2.md).
 
@@ -70,7 +70,7 @@ As customers transition identity management to the cloud, more users and groups
 | 1 |Users, groups| AD DS| Azure AD| [Azure AD Connect Cloud Sync](https://learn.microsoft.com/azure/active-directory/cloud-sync/what-is-cloud-sync) |
 | 2 |Users, groups, devices| AD DS| Azure AD| [Azure AD Connect Sync](https://learn.microsoft.com/azure/active-directory/hybrid/whatis-azure-ad-connect) |
 | 3 |Groups| Azure AD| AD DS| [Azure AD Connect Sync](../hybrid/how-to-connect-group-writeback-v2.md) |
-| 4 |Guest accounts| Azure AD| AD DS| [MIM](/microsoft-identity-manager/microsoft-identity-manager-2016-graph-b2b-scenario) |
+| 4 |Guest accounts| Azure AD| AD DS| [MIM](/microsoft-identity-manager/microsoft-identity-manager-2016-graph-b2b-scenario), [PowerShell](https://github.com/Azure-Samples/B2B-to-AD-Sync)|
 | 5 |Users, groups| Azure AD| Managed AD| [Azure AD Domain Services](https://azure.microsoft.com/services/active-directory-ds/) |
 
 The table depicts common scenarios and the recommended technology.