MicrosoftDocs
diff --git a/‎.github/workflows/stale.yml
Lines changed: 1 addition & 2 deletions b/‎.github/workflows/stale.yml
Lines changed: 1 addition & 2 deletions
diff --git a/‎.openpublishing.redirection.active-directory.json
Lines changed: 26 additions & 1 deletion b/‎.openpublishing.redirection.active-directory.json
Lines changed: 26 additions & 1 deletion
diff --git a/‎.openpublishing.redirection.azure-web-pubsub.json
Lines changed: 0 additions & 10 deletions b/‎.openpublishing.redirection.azure-web-pubsub.json
Lines changed: 0 additions & 10 deletions
diff --git a/‎.openpublishing.redirection.defender-for-cloud.json
Lines changed: 100 additions & 5 deletions b/‎.openpublishing.redirection.defender-for-cloud.json
Lines changed: 100 additions & 5 deletions
diff --git a/‎.openpublishing.redirection.json
Lines changed: 8 additions & 8 deletions b/‎.openpublishing.redirection.json
Lines changed: 8 additions & 8 deletions
diff --git a/‎articles/active-directory-b2c/TOC.yml
Lines changed: 2 additions & 0 deletions b/‎articles/active-directory-b2c/TOC.yml
Lines changed: 2 additions & 0 deletions
diff --git a/‎articles/active-directory-b2c/billing.md
Lines changed: 2 additions & 2 deletions b/‎articles/active-directory-b2c/billing.md
Lines changed: 2 additions & 2 deletions
diff --git a/‎articles/active-directory-b2c/saml-service-provider.md
Lines changed: 1 addition & 1 deletion b/‎articles/active-directory-b2c/saml-service-provider.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎articles/active-directory-b2c/tokens-overview.md
Lines changed: 3 additions & 0 deletions b/‎articles/active-directory-b2c/tokens-overview.md
Lines changed: 3 additions & 0 deletions
@@ -19,8 +19,7 @@ jobs:
         close-pr-label: auto-close
         exempt-pr-labels: keep-open
         operations-per-run: 1200
-        ascending: true
-        start-date: '2021-08-10'
+        ascending: false
         stale-pr-message: >
           This pull request has been inactive for at least 14 days.
           If you are finished with your changes, don't forget to sign off. See the [contributor guide](https://review.docs.microsoft.com/help/contribute/contribute-how-to-write-pull-request-automation) for instructions.
 
@@ -10,6 +10,11 @@
           "redirect_url": "/azure/active-directory/manage-apps/what-is-application-management",
           "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/active-directory/authentication/how-to-nudge-authenticator-app.md",
+            "redirect_url": "/azure/active-directory/authentication/how-to-mfa-registration-campaign",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/active-directory/develop/active-directory-v2-limitations.md",
             "redirect_url": "/azure/active-directory/azuread-dev/azure-ad-endpoint-comparison",
@@ -1670,6 +1675,26 @@
             "redirect_url": "/azure/active-directory/authentication/tutorial-enable-azure-mfa",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/active-directory/conditional-access/require-managed-devices.md",
+            "redirect_url": "/azure/active-directory/conditional-access/concept-conditional-access-grant",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/active-directory/conditional-access/untrusted-networks.md",
+            "redirect_url": "/azure/active-directory/conditional-access/howto-conditional-access-policy-all-users-mfa",
+            "redirect_document_id": true
+        },
+        {
+            "source_path_from_root": "/articles/active-directory/conditional-access/app-based-conditional-access.md",
+            "redirect_url": "/azure/active-directory/conditional-access/howto-policy-approved-app-or-app-protection",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/active-directory/conditional-access/app-protection-based-conditional-access.md",
+            "redirect_url": "/azure/active-directory/conditional-access/howto-policy-approved-app-or-app-protection",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/active-directory/authentication/quickstart-sspr.md",
             "redirect_url": "/azure/active-directory/authentication/tutorial-enable-sspr",
@@ -9888,7 +9913,7 @@
         {
             "source_path_from_root": "/articles/active-directory/active-directory-saas-workplacebyfacebook-provisioning-tutorial.md",
             "redirect_url": "/azure/active-directory/saas-apps/workplace-by-facebook-provisioning-tutorial",
-            "redirect_document_id": true
+            "redirect_document_id": false
         },
         {
             "source_path_from_root": "/articles/active-directory/active-directory-saas-workplacebyfacebook-tutorial.md",
 
@@ -4,16 +4,6 @@
             "source_path_from_root": "/articles/azure-web-pubsub/howto-troubleshoot-diagnostic-logs.md",
             "redirect_url": "/azure/azure-web-pubsub/howto-troubleshoot-resource-logs",
             "redirect_document_id": false
-        },
-        {
-          "source_path_from_root": "/articles/azure-web-pubsub/reference-server-sdk-csharp.md",
-          "redirect_url": "/dotnet/api/overview/azure/webpubsub/client",
-          "redirect_document_id": false
-        },
-        {
-          "source_path_from_root": "/articles/azure-web-pubsub/reference-server-sdk-java.md",
-          "redirect_url": "/java/api/overview/azure/webpubsub/client",
-          "redirect_document_id": false
         }
     ]
 }
@@ -1,5 +1,15 @@
 {
     "redirections": [
+        {
+            "source_path_from_root": "/articles/security-center/release-notes.md",
+            "redirect_url": "/azure/defender-for-cloud/release-notes",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/security-center/release-notes-archive.md",
+            "redirect_url": "/azure/defender-for-cloud/release-notes-archive",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/azure-defender.md",
             "redirect_url": "/azure/defender-for-cloud/defender-for-cloud-introduction",
@@ -35,6 +45,11 @@
             "redirect_url": "/azure/defender-for-cloud/just-in-time-access-overview",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/apply-security-baseline.md",
+            "redirect_url": "/azure/defender-for-cloud/apply-security-baseline",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-adaptive-application.md",
             "redirect_url": "/azure/defender-for-cloud/adaptive-application-controls",
@@ -105,11 +120,21 @@
             "redirect_url": "/azure/defender-for-cloud/threat-intelligence-reports",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/threat-intelligence-reports.md",
+            "redirect_url": "/azure/defender-for-cloud/threat-intelligence-reports",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-data-security.md",
             "redirect_url": "/azure/defender-for-cloud/data-security",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/data-security.md",
+            "redirect_url": "/azure/defender-for-cloud/data-security",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-remediate-recommendations.md",
             "redirect_url": "/azure/defender-for-cloud/implement-security-recommendations",
@@ -120,11 +145,21 @@
             "redirect_url": "/azure/defender-for-cloud/permissions",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/tenant-wide-permissions-management.md",
+            "redirect_url": "/azure/defender-for-cloud/tenant-wide-permissions-management",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-cross-tenant-management.md",
             "redirect_url": "/azure/defender-for-cloud/cross-tenant-management",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/cross-tenant-management.md",
+            "redirect_url": "/azure/defender-for-cloud/cross-tenant-management",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-management-groups.md",
             "redirect_url": "/azure/defender-for-cloud/management-groups-roles",
@@ -140,6 +175,11 @@
             "redirect_url": "/azure/defender-for-cloud/troubleshooting-guide",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/troubleshooting-guide.md",
+            "redirect_url": "/azure/defender-for-cloud/troubleshooting-guide",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-endpoint-protection.md",
             "redirect_url": "/azure/defender-for-cloud/endpoint-protection-recommendations-technical",
@@ -195,6 +235,11 @@
             "redirect_url": "/azure/defender-for-cloud/enable-data-collection",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/features-paas.md",
+            "redirect_url": "/azure/defender-for-cloud/features-paas",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-alerts-overview.md",
             "redirect_url": "/azure/defender-for-cloud/alerts-overview",
@@ -205,6 +250,21 @@
             "redirect_url": "/azure/defender-for-cloud/alert-validation",
             "redirect_document_id": false
         },
+        {
+            "source_path_from_root": "/articles/security-center/alert-validation.md",
+            "redirect_url": "/azure/defender-for-cloud/alert-validation",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/security-center/incidents.md",
+            "redirect_url": "/azure/defender-for-cloud/incidents",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/security-center/implement-security-recommendations.md",
+            "redirect_url": "/azure/defender-for-cloud/implement-security-recommendations",
+            "redirect_document_id": false
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-provide-security-contact-details.md",
             "redirect_url": "/azure/defender-for-cloud/configure-email-notifications",
@@ -235,6 +295,11 @@
             "redirect_url": "/azure/defender-for-cloud/alerts-overview",
             "redirect_document_id": true
         },
+        {
+            "source_path_from_root": "/articles/security-center/alerts-schemas.md",
+            "redirect_url": "/azure/defender-for-cloud/alerts-schemas",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/security-center/alerts-reference.md",
             "redirect_url": "/azure/defender-for-cloud/alerts-reference",
@@ -410,11 +475,6 @@
             "redirect_url": "/azure/defender-for-cloud/harden-docker-hosts",
             "redirect_document_id": true
         },
-        {
-            "source_path_from_root": "/articles/security-center/implement-security-recommendations.md",
-            "redirect_url": "/azure/defender-for-cloud/implement-security-recommendations",
-            "redirect_document_id": true
-        },
         {
             "source_path_from_root": "/articles/security-center/index.yml",
             "redirect_url": "/azure/defender-for-cloud/index",
@@ -485,6 +545,16 @@
             "redirect_url": "/azure/defender-for-cloud/quickstart-onboard-aws",
             "redirect_document_id": true
         },
+        {
+            "source_path_from_root": "/articles/security-center/auto-deploy-vulnerability-assessment.md",
+            "redirect_url": "/azure/defender-for-cloud/auto-deploy-vulnerability-assessment",
+            "redirect_document_id": true
+        },
+        {
+            "source_path_from_root": "/articles/security-center/security-policy-concept.md",
+            "redirect_url": "/azure/defender-for-cloud/security-policy-concept",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/security-center/quickstart-onboard-gcp.md",
             "redirect_url": "/azure/defender-for-cloud/quickstart-onboard-gcp",
@@ -515,6 +585,11 @@
             "redirect_url": "/azure/defender-for-cloud/secure-score-security-controls",
             "redirect_document_id": true
         },
+        {
+            "source_path_from_root": "/articles/security-center/secure-score-access-and-track.md",
+            "redirect_url": "/azure/defender-for-cloud/secure-score-access-and-track",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/security-center/security-center-planning-and-operations-guide.md",
             "redirect_url": "/azure/defender-for-cloud/security-center-planning-and-operations-guide",
@@ -530,11 +605,31 @@
             "redirect_url": "/azure/defender-for-cloud/supported-machines-endpoint-solutions-clouds",
             "redirect_document_id": true
         },
+        {
+            "source_path_from_root": "/articles/security-center/tutorial-protect-resources.md",
+            "redirect_url": "/azure/defender-for-cloud/tutorial-protect-resources",
+            "redirect_document_id": true
+        },
+        {
+            "source_path_from_root": "/articles/security-center/tutorial-security-incident.md",
+            "redirect_url": "/azure/defender-for-cloud/tutorial-security-incident",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/security-center/tutorial-security-policy.md",
             "redirect_url": "/azure/defender-for-cloud/tutorial-security-policy",
             "redirect_document_id": true
         },
+        {
+            "source_path_from_root": "/articles/security-center/update-regulatory-compliance-packages.md",
+            "redirect_url": "/azure/defender-for-cloud/update-regulatory-compliance-packages",
+            "redirect_document_id": true
+        },
+        {
+            "source_path_from_root": "/articles/security-center/windows-admin-center-integration.md",
+            "redirect_url": "/azure/defender-for-cloud/windows-admin-center-integration",
+            "redirect_document_id": true
+        },
         {
             "source_path_from_root": "/articles/security-center/workflow-automation.md",
             "redirect_url": "/azure/defender-for-cloud/workflow-automation",
 
@@ -3450,22 +3450,17 @@
     },
     {
       "source_path_from_root": "/articles/app-service/app-service-app-service-environments-readme.md",
-      "redirect_url": "/azure/app-service/environment/intro",
+      "redirect_url": "/azure/app-service/environment/overview",
       "redirect_document_id": false
     },
     {
       "source_path_from_root": "/articles/app-service/app-service-environment/intro.md",
-      "redirect_url": "/azure/app-service/environment/intro",
+      "redirect_url": "/azure/app-service/environment/overview",
       "redirect_document_id": false
     },
     {
       "source_path_from_root": "/articles/app-service/app-service-environment/readme.md",
-      "redirect_url": "/azure/app-service/environment/intro",
-      "redirect_document_id": false
-    },
-    {
-      "source_path_from_root": "/articles/app-service/environment/index.md",
-      "redirect_url": "/azure/app-service/environment/intro",
+      "redirect_url": "/azure/app-service/environment/overview",
       "redirect_document_id": false
     },
     {
@@ -26376,6 +26371,11 @@
       "redirect_url": "/azure/sentinel/data-connectors-reference#zscaler",
       "redirect_document_id": false
     },
+    {
+      "source_path_from_root": "/articles/sentinel/watchlist-with-rest-api.md",
+      "redirect_url": "/rest/api/securityinsights/watchlists",
+      "redirect_document_id": false
+    },
     {
       "source_path_from_root": "/articles/service-bus/index.md",
       "redirect_url": "/azure/service-bus-messaging/index",
 
@@ -53,6 +53,7 @@
       href: ../active-directory/develop/v2-app-types.md?bc=%2fazure%2factive-directory-b2c%2fbread%2ftoc.json&toc=%2fazure%2factive-directory-b2c%2fTOC.json
     - name: Authentication library
       href: ../active-directory/develop/msal-overview.md?bc=%2fazure%2factive-directory-b2c%2fbread%2ftoc.json&toc=%2fazure%2factive-directory-b2c%2fTOC.json
+      displayName: MSAL, client library, Microsoft Authentication Library
   - name: Azure AD B2C best practices
     href: best-practices.md
   - name: Application types
@@ -595,6 +596,7 @@
     href: app-registrations-training-guide.md
   - name: Billing model
     href: billing.md
+    displayName: pricing model
   - name: Code samples
     href: /samples/browse/?terms=b2c
   - name: Cookie definitions
 
@@ -8,7 +8,7 @@ manager: CelesteDG
 ms.service: active-directory
 ms.topic: reference
 ms.workload: identity
-ms.date: 11/11/2021
+ms.date: 11/16/2021
 ms.author: kengaderdus
 ms.subservice: B2C
 ms.custom: fasttrack-edit
@@ -48,7 +48,7 @@ MAU billing went into effect for Azure AD B2C tenants on **November 1, 2019**. A
 
 Your Azure AD B2C tenant must also be linked to the appropriate Azure pricing tier based on the features you want to use. Premium features require Azure AD B2C [Premium P1 or P2 pricing](https://azure.microsoft.com/pricing/details/active-directory-b2c/). You might need to upgrade your pricing tier as you use new features. For example, for risk-based Conditional Access policies, you’ll need to select the Azure AD B2C Premium P2 pricing tier for your tenant.
 > [!NOTE]
->  Your first 50,000 MAUs per month are free for both Premium P1 and Premium P2 features, but **this free tier doesn’t apply to subscriptions with free trial credits**. To determine the total number of MAUs, we combine MAUs from all your tenants (both Azure AD and Azure AD B2C) that are linked to the same subscription.
+>  Your first 50,000 MAUs per month are free for both Premium P1 and Premium P2 features, but the **free tier doesn’t apply to free trial, credit-based, or sponsorship subscriptions**. Once the free trial period or credits expire for these types of subscriptions, you'll begin to be charged for Azure AD B2C MAUs. To determine the total number of MAUs, we combine MAUs from all your tenants (both Azure AD and Azure AD B2C) that are linked to the same subscription.
 ## Link an Azure AD B2C tenant to a subscription
 
 Usage charges for Azure Active Directory B2C (Azure AD B2C) are billed to an Azure subscription. You need to explicitly link an Azure AD B2C tenant to an Azure subscription by creating an Azure AD B2C *resource* within the target Azure subscription. Several Azure AD B2C resources can be created in a single Azure subscription, along with other Azure resources like virtual machines, Storage accounts, and Logic Apps. You can see all of the resources within a subscription by going to the Azure Active Directory (Azure AD) tenant that the subscription is associated with.
 
@@ -327,7 +327,7 @@ The following example shows the `entityID` value in the SAML metadata:
 The `identifierUris` property will accept URLs only on the domain `tenant-name.onmicrosoft.com`.
 
 ```json
-"identifierUris":"https://samltestapp2.azurewebsites.net",
+"identifierUris":"https://tenant-name.onmicrosoft.com",
 ```
 
 #### Share the application's metadata with Azure AD B2C
 
@@ -11,6 +11,7 @@ ms.topic: conceptual
 ms.date: 10/1/2021
 ms.author: kengaderdus
 ms.subservice: B2C
+ms.custom: b2c-support
 ---
 
 # Overview of tokens in Azure Active Directory B2C
@@ -134,6 +135,8 @@ https://contoso.b2clogin.com/contoso.onmicrosoft.com/b2c_1_signupsignin1/v2.0/.w
 
 To determine which policy was used to sign a token (and where to go to request the metadata), you have two options. First, the policy name is included in the `tfp` (default) or `acr` claim (as configured) in the token. You can parse claims out of the body of the JWT by base-64 decoding the body and deserializing the JSON string that results. The `tfp` or `acr` claim is the name of the policy that was used to issue the token. The other option is to encode the policy in the value of the `state` parameter when you issue the request, and then decode it to determine which policy was used. Either method is valid.
 
+Azure AD B2C uses the RS256 algorithm, which is based on the [RFC 3447](https://www.rfc-editor.org/rfc/rfc3447#section-3.1) specification. The public key consists of two components: the RSA modulus (`n`) and the RSA public exponent (`e`). You can programmatically convert `n` and `e` values to a certificate format for token validation.
+
 A description of how to perform signature validation is outside the scope of this document. Many open-source libraries are available to help you validate a token.
 
 ### Validate claims
Original file line number	Diff line number	Diff line change
`@@ -4,16 +4,6 @@`
`4`	`4`	`"source_path_from_root": "/articles/azure-web-pubsub/howto-troubleshoot-diagnostic-logs.md",`
`5`	`5`	`"redirect_url": "/azure/azure-web-pubsub/howto-troubleshoot-resource-logs",`
`6`	`6`	`"redirect_document_id": false`
`7`		`- },`
`8`		`- {`
`9`		`- "source_path_from_root": "/articles/azure-web-pubsub/reference-server-sdk-csharp.md",`
`10`		`- "redirect_url": "/dotnet/api/overview/azure/webpubsub/client",`
`11`		`- "redirect_document_id": false`
`12`		`- },`
`13`		`- {`
`14`		`- "source_path_from_root": "/articles/azure-web-pubsub/reference-server-sdk-java.md",`
`15`		`- "redirect_url": "/java/api/overview/azure/webpubsub/client",`
`16`		`- "redirect_document_id": false`
`17`	`7`	`}`
`18`	`8`	`]`
`19`	`9`	`}`