Merge pull request #292132 from maud-lv/ml-screfreshdec

Content refresh

Author: v-dirichards

articles/service-connector/concept-permission.md

@@ -1,16 +1,20 @@
 ---
 title: Permission requirement for Service Connector
-description: Resource permission requirement
+description: Learn about the resource permission requirements for creating connections using Service Connector in Azure.
 author: maud-lv
 ms.author: malev
 ms.service: service-connector
 ms.topic: conceptual
-ms.date: 08/04/2023
+ms.date: 12/18/2024
 ---
 
-# Permission requirement for Service Connector
+# Permission requirements for Service Connector
 
-Service Connector creates connections between Azure services using an [on-behalf-of token](../active-directory/develop/v2-oauth2-on-behalf-of-flow.md). Creating a connection to a specific Azure resource requires its corresponding permissions.
+When using Service Connector to create connections between Azure services, it's essential to ensure that the necessary permissions are granted. This document outlines the permission requirements for various Azure resources to facilitate seamless connection creation.
+
+Service Connector creates connections between Azure services using an [on-behalf-of tokens](../active-directory/develop/v2-oauth2-on-behalf-of-flow.md).
+
+Creating connections to Azure resources requires appropriate permissions.
 
 ### App Service  
 
@@ -318,5 +322,8 @@ Service Connector may need to grant permissions to your identity if a connection
 > |`Microsoft.Network/networkSecurityGroups/join/action`|Joins a network security group. Not Alertable.|
 > |`Microsoft.Network/routeTables/join/action`|Joins a route table. Not Alertable.|
 
-> [!div class="nextstepaction"]
-> [High availability](./concept-availability.md)
+## Related links
+
+- [FAQ](./faq.yml)
+- [Service internals](./concept-service-connector-internals.md)
+- [Microsoft Entra roles assigned by Service Connector](./concept-microsoft-entra-roles.md)

articles/service-connector/how-to-build-connections-with-iac-tools.md

@@ -1,15 +1,17 @@
 ---
 title: Create connections with IaC tools
-description: Learn how to translate your infrastructure to an IaC template
+description: Learn how to create connections using Infrastructure as Code (IaC) tools and translate your infrastructure configurations into IaC templates for CI/CD pipelines.
 author: houk-ms
 ms.service: service-connector
 ms.topic: how-to
-ms.date: 10/20/2023
+ms.date: 12/18/2024
 ms.author: honc
 ---
-# How to translate your infrastructure to an IaC template
+# How to create connections with IaC tools
 
-Service Connector helps users connect their compute services to target backing services in just a few clicks or commands. When moving from a getting-started to a production stage, users also need to make the transition from using manual configurations to using Infrastructure as Code (IaC) templates in their CI/CD pipelines. In this guide, we show how to translate your connected Azure services to IaC templates.
+Service Connector helps users connect their compute services to target backing services in just a few clicks or commands. When moving from a getting-started to a production stage, users also need to make the transition from using manual configurations to using Infrastructure as Code (IaC) templates in their CI/CD pipelines. 
+
+In this guide, you learn how to translate your connected Azure services to IaC templates.
 
 ## Prerequisites
 
@@ -114,13 +116,13 @@ resource storageAccount 'Microsoft.Storage/storageAccounts@2023-01-01' = {
 
 If the resources you're provisioning are exactly the same ones as the ones you have in the cloud, exporting the template from Azure might be another option. The two premises of this approach are: the resources exist in Azure and you're using ARM templates for your IaC. The `Export template` button is usually at the bottom of the sidebar on Azure portal. The exported ARM template reflects the resource's current states, including the settings configured by Service Connector. You usually need to know about the resource properties to polish the exported template.
 
-:::image type="content" source="./media/how-to/export-webapp-template.png" alt-text="Screenshot of the Azure portal, exporting arm template of a web app.":::
+:::image type="content" source="./media/how-to/export-webapp-template.png" alt-text="Screenshot of the Azure portal, exporting ARM template of a web app.":::
 
 ### Build connection logic
 
 #### Using Service Connector and storing configuration in App Configuration
 
-Using the App Configuration to store configuration naturally supports IaC scenarios. We therefore recommend you use this method to build your IaC template if possible.
+Using App Configuration to store configuration naturally supports IaC scenarios. We therefore recommend you use this method to build your IaC template if possible.
 
 For simple portal instructions, you can refer to [this App Configuration tutorial](./tutorial-portal-app-configuration-store.md). To add this feature into a bicep file, add the App Configuration ID in the Service Connector payload.
 
@@ -160,7 +162,7 @@ resource serviceConnector 'Microsoft.ServiceLinker/linkers@2022-05-01' = {
 
 #### Using Service Connector
 
-Creating connections between the source and target service using Service Connector is the preferred and recommended way if the [Service Connector ](./known-limitations.md)[IaC limitation](./known-limitations.md) doesn't matter for your scenario. Service Connector makes the template simpler and also provides additional elements, such as the connection health validation, which you won't have if you're building connections through template logic directly.
+Creating connections between the source and target service using Service Connector is the preferred and recommended approach, provided that the [Service Connector ](./known-limitations.md)[IaC limitation](./known-limitations.md) doesn't negatively impact your scenario. Service Connector simplifies the template and provides additional features, such as a connection health validation, which aren't available when building connections directly through template logic.
 
 ```bicep
 // The template builds a connection between a webapp and a storage account 
@@ -200,7 +202,7 @@ resource serviceConnector 'Microsoft.ServiceLinker/linkers@2022-05-01' = {
 
 For the formats of properties and values needed when creating a Service Connector resource, check [how to provide correct parameters](./how-to-provide-correct-parameters.md). You can also preview and download an ARM template for reference when creating a Service Connector resource in the Azure portal.
 
-:::image type="content" source="./media/how-to/export-sc-template.png" alt-text="Screenshot of the Azure portal, exporting arm template of a service connector resource.":::
+:::image type="content" source="./media/how-to/export-sc-template.png" alt-text="Screenshot of the Azure portal, exporting ARM template of a service connector resource.":::
 
 #### Using template logic
 

articles/service-connector/how-to-provide-correct-parameters.md

@@ -1,10 +1,10 @@
 ---
 title: Provide correct parameters to Service Connector
-description: Learn how to pass correct parameters to Service Connector. 
+description: Learn how to pass correct parameters to Service Connector to generate service connections between your Cloud resources.
 author: houk-ms
 ms.service: service-connector
 ms.topic: how-to
-ms.date: 09/11/2023
+ms.date: 12/18/2024
 ms.author: honc
 ---
 # Provide correct parameters to Service Connector
@@ -83,9 +83,9 @@ Client type refers to your compute service's runtime stack or development framew
 * `ruby`
 * `springBoot`
 
-A different subset of the client types can be used when specifying a different target service and a different authentication type, check [how to integrate with target services](./how-to-integrate-postgres.md) for their combinations.
+A different subset of the client types can be used when specifying a different target service and a different authentication type, check [how to integrate with target services](./how-to-integrate-ai-services.md) for their combinations.
 
-## Next steps
+## Related links
 
-> [!div class="nextstepaction"]
-> [How to integrate target services](./how-to-integrate-postgres.md)
+- [How to integrate target services](./how-to-integrate-ai-services.md)
+- [Create connections with IaC tools](./how-to-build-connections-with-iac-tools.md)

articles/service-connector/quickstart-cli-container-apps.md

@@ -1,36 +1,32 @@
 ---
-title: Quickstart - Create a service connection in Container Apps using the Azure CLI
-description: Quickstart showing how to create a service connection in Azure Container Apps using the Azure CLI
+title: 'Create a service connection in Container Apps - Azure CLI'
+description: Learn how to create a service connection in Azure Container Apps using the Azure CLI. This quickstart guides you through the process step-by-step.
 author: maud-lv
 ms.author: malev
 ms.service: service-connector
 ms.topic: quickstart
-ms.date: 10/31/2023
+ms.date: 12/18/2024
 ms.devlang: azurecli
 ms.custom: devx-track-azurecli, build-2024
 ---
 
-# Quickstart: Create a service connection in Azure Container Apps with the Azure CLI
+# Quickstart: Create a service connection in Azure Container Apps with the Azure CLI (preview)
 
-This quickstart shows you how to connect Azure Container Apps to other Cloud resources using the Azure CLI and Service Connector. Service Connector lets you quickly connect compute services to cloud services, while managing your connection's authentication and networking settings.
-
-> [!IMPORTANT]
-> Service Connector in Container Apps is currently in preview.
-> See the [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/) for legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
+This quickstart shows you how to connect Azure Container Apps to other Cloud resources using the Azure CLI and Service Connector (preview). Service Connector lets you quickly connect compute services to cloud services, while managing your connection's authentication and networking settings.
 
 ## Prerequisites
 
-- An Azure subscription. [!INCLUDE [quickstarts-free-trial-note](~/reusable-content/ce-skilling/azure/includes/quickstarts-free-trial-note.md)]
+- An active Azure subscription. [!INCLUDE [quickstarts-free-trial-note](~/reusable-content/ce-skilling/azure/includes/quickstarts-free-trial-note.md)]
 
-- At least one application deployed to Container Apps in a [region supported by Service Connector](./concept-region-support.md). If you don't have one, [create and deploy a container to Container Apps](../container-apps/quickstart-portal.md).
+- At least one application deployed to Azure Container Apps in a [region supported by Service Connector](./concept-region-support.md). If you don't have one, [create and deploy a container to Container Apps](../container-apps/quickstart-portal.md).
 
 [!INCLUDE [azure-cli-prepare-your-environment-no-header.md](~/reusable-content/azure-cli/azure-cli-prepare-your-environment-no-header.md)]
 
 - Version 2.37.0 or higher of the Azure CLI must be installed. To upgrade to the latest version, run `az upgrade`. If using Azure Cloud Shell, the latest version is already installed.
 
 - The Container Apps extension must be installed in the Azure CLI or the Cloud Shell. To install it, run `az extension add --name containerapp`.
 
-## Initial set-up
+## Set up your environment
 
 1. If you're using Service Connector for the first time, start by running the command [az provider register](/cli/azure/provider#az-provider-register) to register the Service Connector resource provider.
 
@@ -47,14 +43,14 @@ This quickstart shows you how to connect Azure Container Apps to other Cloud res
     az containerapp connection list-support-types --output table
     ```
 
-## Create a service connection
+## Create a service connection (preview)
 
 Create a connection using a managed identity or an access key.
 
 ### [Managed identity](#tab/using-managed-identity)
 
 > [!IMPORTANT]
-> To use a managed identity, you must have the permission to modify [Microsoft Entra role assignment](/entra/identity/role-based-access-control/manage-roles-portal). Without this permission, your connection creation will fail. Ask your subscription owner to grant you this permission, or use an access key instead to create the connection.
+> To use a managed identity, you must have the permission to modify [Microsoft Entra role assignment](/entra/identity/role-based-access-control/manage-roles-portal). Ask your subscription owner to grant you this permission, or use an access key instead to create the connection.
 
 1. Run the `az containerapp connection create` command to create a service connection from Container Apps to a Blob Storage with a system-assigned managed identity.
 
@@ -111,7 +107,9 @@ az containerapp connection list -g "<container-app-resource-group>" --name "<con
 
 The output also displays the provisioning state of your connections: failed or succeeded.
 
-## Next steps
+## Related links
+
+- [Container Apps: Connect Java Quarkus app to PostgreSQL](../container-apps/tutorial-java-quarkus-connect-managed-identity-postgresql-database.md?bc=%2fazure%2fservice-connector%2fbreadcrumb%2ftoc.json&toc=%2fazure%2fservice-connector%2fTOC.json)
+- [Container Apps: Connect ASP.NET Core app to App Configuration](../azure-app-configuration/quickstart-container-apps.md?bc=%2fazure%2fservice-connector%2fbreadcrumb%2ftoc.json&toc=%2fazure%2fservice-connector%2fTOC.json)
+
 
-> [!div class="nextstepaction"]
-> [Service Connector internals](./concept-service-connector-internals.md)

articles/service-connector/quickstart-cli-spring-cloud-connection.md

@@ -1,11 +1,11 @@
 ---
 title: Quickstart - Create a service connection in Azure Spring Apps with the Azure CLI
-description: Quickstart showing how to create a service connection in Azure Spring Apps with the Azure CLI
+description: In this step-by-step guide, learn how to create a service connection in Azure Spring Apps using the Azure CLI.
 author: maud-lv
 ms.author: malev
 ms.service: service-connector
 ms.topic: quickstart
-ms.date: 10/31/2022
+ms.date: 12/18/2024
 ms.devlang: azurecli
 ms.custom: devx-track-azurecli, build-2024
 ---
@@ -28,7 +28,7 @@ Service Connector lets you quickly connect compute services to cloud services, w
 
 - The Azure Spring Apps extension must be installed in the Azure CLI or the Cloud Shell. To install it, run `az extension add --name spring`.
 
-## Initial set up
+## Initial setup
 
 1. If you're using Service Connector for the first time, start by running the command [az provider register](/cli/azure/provider#az-provider-register) to register the Service Connector resource provider.
 
@@ -55,9 +55,9 @@ Create a connection from Azure Spring Apps using a managed identity or an access
 ### [Managed identity](#tab/Using-Managed-Identity)
 
 > [!IMPORTANT]
-> To use a managed identity, you must have the permission to modify [role assignments in Microsoft Entra ID](/entra/identity/role-based-access-control/manage-roles-portal). Without this permission, your connection creation will fail. Ask your subscription owner to grant you a role assignment permission or use an access key to create the connection.
+> To use a managed identity, you must have the permission to modify [role assignments in Microsoft Entra ID](/entra/identity/role-based-access-control/manage-roles-portal). Ask your subscription owner to grant you a role assignment permission or use an access key to create the connection.
 
-1. Run the `az spring connection create` command to create a service connection to a Blob Storage with a system-assigned managed identity
+1. Run the `az spring connection create` command to connect application deployed to Azure Spring Apps to a Blob Storage resource, using a system-assigned managed identity.
 
 1. Provide the following information at the CLI or Cloud Shell's request:
 

articles/service-connector/quickstart-portal-container-apps.md

@@ -9,7 +9,7 @@ ms.date: 10/22/2024
 #Customer intent: As an app developer, I want to connect Azure Container Apps to a storage account in the Azure portal using Service Connector.
 ---
 
-# Quickstart: Create a service connection in Azure Container Apps from the Azure portal
+# Quickstart: Create a service connection in Azure Container Apps from the Azure portal (preview)
 
 This quickstart shows you how to connect Azure Container Apps to other Cloud resources using the Azure portal and Service Connector. Service Connector lets you quickly connect compute services to cloud services, while managing your connection's authentication and networking settings.
 
@@ -30,7 +30,7 @@ This quickstart shows you how to connect Azure Container Apps to other Cloud res
 
 Sign in to the Azure portal at [https://portal.azure.com/](https://portal.azure.com/) with your Azure account.
 
-## Create a new service connection
+## Create a new service connection (preview)
 
 Use Service Connector to create a new service connection in Container Apps.
 

articles/service-connector/tutorial-csharp-webapp-storage-cli.md

@@ -1,18 +1,18 @@
 ---
-title: 'Tutorial: Deploy a web application connected to Azure Blob Storage with Service Connector'
-description: Create a web app connected to Azure Blob Storage with Service Connector.
+title: Deploy a webapp connected to Azure Blob Storage
+description: This tutorial guides you through creating and deploying a web application that connects to Azure Blob Storage using Service Connector.
 author: maud-lv
 ms.author: malev
 ms.service: service-connector
 ms.topic: tutorial
-ms.date: 11/20/2023
+ms.date: 12/18/2024
 ms.devlang: azurecli
 ms.custom: devx-track-azurecli
 ---
 
 # Tutorial: Deploy a web application connected to Azure Blob Storage with Service Connector
 
-Learn how to access Azure Blob Storage for a web app (not a signed-in user) running on Azure App Service by using managed identities. In this tutorial, you'll use the Azure CLI to complete the following tasks:
+In this tutorial, you learn how to access Azure Blob Storage for a web app (not a signed-in user) running on Azure App Service by using managed identities. In this tutorial, you'll use the Azure CLI to complete the following tasks:
 
 > [!div class="checklist"]
 >
@@ -109,7 +109,7 @@ az webapp browse --name <app-name>
 
 The sample code is a web application. Each time you refresh the index page, the application creates or updates a blob with the text `Hello Service Connector! Current is {UTC Time Now}` to the storage container and reads back to show it in the index page.
 
-## Next steps
+## Next step
 
 To learn more about Service Connector, read the guide below.