Merge pull request #189930 from MarkusVi/rec02

rec02

Author: LJSpiller

articles/active-directory/reports-monitoring/media/overview-recommendations/available-preview-feautures.png

@@ -0,0 +1,155 @@
+---
+
+title: What is Azure Active Directory recommendations (preview)? | Microsoft Docs
+description: Provides a general overview of Azure Active Directory recommendations.
+services: active-directory
+documentationcenter: ''
+author: MarkusVi
+manager: karenhoran
+editor: ''
+
+ms.assetid: e2b3d8ce-708a-46e4-b474-123792f35526
+ms.service: active-directory
+ms.devlang: na
+ms.topic: overview
+ms.tgt_pltfrm: na
+ms.workload: identity
+ms.subservice: report-monitor
+ms.date: 02/28/2022
+ms.author: markvi
+ms.reviewer: hafowler  
+
+# Customer intent: As an Azure AD administrator, I want guidance to so that I can keep my Azure AD tenant in a healthy state.
+ms.collection: M365-identity-device-management
+---
+
+# What is Azure Active Directory recommendations (preview)?
+
+This feature is supported as part of a public preview. For more information about previews, see [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).
+
+Ideally, you want your Azure Active Directory (Azure AD) tenant to be in a secure and healthy state. However, trying to keep your knowledge regarding the management of the various components in your tenant up to date can become overwhelming.
+
+This is where Azure AD recommendations can help you.
+
+The Azure AD recommendations feature provides you personalized insights with actionable guidance to:
+
+- Help you identify opportunities to implement best practices for Azure AD-related features.
+- Improve the state of your Azure AD tenant.
+
+This article gives you an overview of how you can use Azure AD recommendations.
+
+
+
+## What it is 
+
+The [Azure Advisor](../../advisor/advisor-overview.md) is a personalized cloud consultant that helps you follow best practices to optimize your Azure deployments. It analyzes your resource configuration and usage telemetry and then recommends solutions that can help you improve the cost effectiveness, performance, Reliability (formerly called High availability), and security of your Azure resources.
+
+Azure AD recommendations:
+
+- Is the Azure AD specific implementation of Azure Advisor. 
+- Supports you with the roll-out and management of Microsoft's best practices for Azure AD tenants to keep your tenant in a secure and healthy state. 
+ 
+## What is a recommendation object?
+
+Azure AD tracks the status of a recommendation in a related object. This object includes attributes that are used to characterize the recommendation and a body to store the actionable guidance. 
+
+
+Each object is characterized by:
+
+- **Title** - A short summary of what the recommendation is about.
+
+- **Priority** - Possible values are: low, medium, high
+
+- **Status** - Possible values are: Active, Dismissed, Postponed, CompletedByUser, CompletedBySystem.
+
+    - A recommendation is marked as CompletedByUser if you mark the recommendation as complete.
+
+    - A recommendation is marked as CompletedBySystem if a recommendation that did once apply is no longer applicable to you because you have taken the necessary steps.
+ 
+
+- **Impacted Resources** - A definition of the scope of a recommendation. Possible values are either a list of the impacted resources or **Tenant level**.    
+
+- **Updated at** - The timestamp of the last status update.
+
+
+![Reporting](./media/overview-recommendations/recommendations-object.png)
+
+
+
+The body of a recommendation object contains the actionable guidance:
+
+- **Description** - An explanation of what it is that Azure AD has detected and related background information.
+
+- **Value** - An explanation of why completing the recommendation will benefit you, and the value of the associated feature. 
+
+- **Action Plan** - Detailed instructions to step-by-step implement a recommendation.
+
+
+
+## How it works
+
+On a daily basis, Azure AD analyzes the configuration of your tenant. During an analysis, Azure AD compares the  data of the known recommendations with the actual configuration. If a recommendation is flagged as applicable to your tenant, the recommendation status and its corresponding resources are marked as active. 
+
+
+In the recommendations or resource list, you can use the **Status** information to determine your action item.
+
+As an administrator, you should review your tenant's recommendations, and their associated resources periodically. 
+
+- **Dismiss**
+
+- **Mark complete** 
+
+- **Postpone**
+
+- **Reactivate**
+
+
+### Dismiss
+
+If you don't like a recommendation, or if you have another reason for not applying it, you can dismiss it. In this case, Azure AD asks you for a reason for dismissing a recommendation.
+
+![Help us provide better recommendations](./media/overview-recommendations/provide-better-recommendations.png)
+
+
+### Mark as complete
+
+Use this state to indicate that you have:
+
+- Completed the recommendation.
+- Taken action for an individual resource. 
+
+A recommendation or resource that has been marked as complete is again evaluated when Azure AD compares the available recommendations with your current configuration.
+
+
+### Postpone 
+
+Postpone a recommendation or resource to address it in the future. The recommendation or resource will be marked as Active again when the date that the recommendation or resource is postponed to occurs.
+
+### Reactivate
+Accidentally dismissed, completed, or postponed a recommendation or resource. Mark it as active again to keep it top of mind.
+
+
+## Common tasks
+
+### Turn on the preview
+
+To turn on the preview:
+
+1. Navigate to the **[Preview features](https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/PreviewHub)** page.
+2. Set the **State** to **On**.
+
+
+
+
+
+### Update the status of a resource 
+
+To update the status of a resource, you have to right click a resource to bring up the edit menu. 
+
+
+
+## Next steps
+
+* [Activity logs in Azure Monitor](concept-activity-logs-azure-monitor.md)
+* [Stream logs to event hub](tutorial-azure-monitor-stream-logs-to-event-hub.md)
+* [Send logs to Azure Monitor logs](howto-integrate-activity-logs-with-log-analytics.md)

articles/active-directory/reports-monitoring/media/overview-recommendations/provide-better-recommendations.png

@@ -8,17 +8,16 @@
     href: overview-monitoring.md
   - name: What is the sign-in diagnostic?
     href: overview-sign-in-diagnostics.md
-  - name: What are flagged sign-ins?
-    href: overview-flagged-sign-ins.md
+  - name: What is Azure AD recommendations?
+    href: overview-recommendations.md
+   
 - name: Quickstarts
   expanded: true
   items:
-  - name: Filter your audit log 
-    href: quickstart-filter-audit-log.md
-  - name: Analyze sign-ins 
-    href: quickstart-analyze-sign-in.md
-  - name: Access logs with the Graph API
-    href: quickstart-access-log-with-graph-api.md
+  - name: Download a sign-in report
+    href: quickstart-download-sign-in-report.md
+  - name: Download an audit report
+    href: quickstart-download-audit-report.md
   - name: Route logs to storage account
     href: quickstart-azure-monitor-route-logs-to-storage-account.md
 
@@ -49,16 +48,12 @@
     href: concept-activity-logs-azure-monitor.md
   - name: Plan a reporting and monitoring deployment
     href: plan-monitoring-and-reporting.md
-  - name: Sign-in diagnostics scenarios
-    href: concept-sign-in-diagnostics-scenarios.md
 
 - name: How-to guides
   expanded: true
   items:
   - name: Reports
     items:
-    - name: Access activity logs
-      href: howto-access-activity-logs.md
     - name: Download logs
       href: howto-download-logs.md
     - name: Manage inactive user accounts in Azure AD
@@ -67,6 +62,8 @@
       href: howto-find-activity-reports.md
     - name: Troubleshoot sign-in errors for a user
       href: howto-troubleshoot-sign-in-errors.md
+    - name: Remediate users flagged for risk
+      href: howto-remediate-users-flagged-for-risk.md
     - name: Configure prerequisites for Reporting API
       href: howto-configure-prerequisites-for-reporting-api.md
     - name: How to use Azure AD workbooks
@@ -101,8 +98,6 @@
 - name: Reference
   expanded: true
   items:
-  - name: Basic info in the sign-in logs
-    href: reference-basic-info-sign-in-logs.md
   - name: Azure AD PowerShell cmdlets for reporting
     href: reference-powershell-reporting.md
   - name: Audit logs API reference
@@ -119,13 +114,3 @@
     href: reports-faq.yml
   - name: Sign-in log schema
     href: reference-azure-monitor-sign-ins-log-schema.md
-  - name: Workbooks
-    items:
-    - name: Authentication prompts analysis
-      href: workbook-authentication-prompts-analysis.md
-    - name: Conditional access gap analyzer
-      href: workbook-conditional-access-gap-analyzer.md
-    - name: Cross-tenant access activity 
-      href: workbook-cross-tenant-access-activity.md
-    - name: Sensitive Operations Report 
-      href: workbook-sensitive-operations-report.md