Merge pull request #249329 from OWinfreyATL/owinfreyATL-EM-EntraStandardization

EM Azure to Entra steps

Author: v-dirichards

articles/active-directory/governance/entitlement-management-access-package-approval-policy.md

@@ -52,9 +52,11 @@ Follow these steps to specify the approval settings for requests for the access
 
 **Prerequisite role:** Global administrator, Identity Governance administrator, User administrator, Catalog owner, or Access package manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
+
+1. On the **Access packages** page open an access package.
 
 1. Either select a policy to edit or add a new policy to the access package
     1. Select **Policies** and then **Add policy** if you want to create a new policy.

articles/active-directory/governance/entitlement-management-access-package-assignments.md

@@ -37,9 +37,11 @@ To use entitlement management and assign users to access packages, you must have
 
 **Prerequisite role:** Global administrator, Identity Governance administrator, User administrator, Catalog owner, Access package manager or Access package assignment manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
+
+1. On the **Access packages** page open an access package.
 
 1. Select **Assignments** to see a list of active assignments.
 
@@ -77,9 +79,11 @@ In some cases, you might want to directly assign specific users to an access pac
 
 **Prerequisite role:** Global administrator, User administrator, Catalog owner, Access package manager or Access package assignment manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
+
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. On the **Access packages** page open an access package.
 
 1. In the left menu, select **Assignments**.
 
@@ -117,9 +121,11 @@ Entitlement management also allows you to directly assign external users to an a
 
 **Prerequisite role:** Global administrator, User administrator, Catalog owner, Access package manager or Access package assignment manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, select **Access packages** and then open the access package in which you want to add a user.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
+
+1. On the **Access packages** page open an access package.
 
 1. In the left menu, select **Assignments**.
 
@@ -195,9 +201,11 @@ You can remove an assignment that a user or an administrator had previously requ
 
 **Prerequisite role:** Global administrator, User administrator, Catalog owner, Access package manager or Access package assignment manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
+
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. On the **Access packages** page open an access package.
 
 1. In the left menu, select **Assignments**.
 

articles/active-directory/governance/entitlement-management-access-package-auto-assignment-policy.md

@@ -42,33 +42,35 @@ To create a policy for an access package, you need to start from the access pack
 
 **Prerequisite role:** Global administrator or Identity Governance administrator
 
-1. In the Azure portal, click **Azure Active Directory** and then click **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, click **Access packages** and then open the access package.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
-1. Click **Policies** and then **Add auto-assignment policy** to create a new policy.
+1. On the **Access packages** page open an access package.
 
-1. In the first tab, you'll specify the rule.  Click **Edit**.
+1. Select **Policies** and then **Add auto-assignment policy** to create a new policy.
+
+1. In the first tab, you'll specify the rule. Select **Edit**.
 
 1. Provide a dynamic membership rule, using the [membership rule builder](../enterprise-users/groups-dynamic-membership.md) or by clicking **Edit** on the rule syntax text box.
 
    > [!NOTE]
-   > The rule builder might not be able to display some rules constructed in the text box, and validating a rule currently requires the you to be in the Global administrator role. For more information, see [rule builder in the Azure portal](../enterprise-users/groups-create-rule.md#rule-builder-in-the-azure-portal).
+   > The rule builder might not be able to display some rules constructed in the text box, and validating a rule currently requires the you to be in the Global administrator role. For more information, see [rule builder in the Entra admin center](../enterprise-users/groups-create-rule.md#rule-builder-in-the-azure-portal).
 
     ![Screenshot of an access package automatic assignment policy rule configuration.](./media/entitlement-management-access-package-auto-assignment-policy/auto-assignment-rule-configuration.png)
 
-1. Click **Save** to close the dynamic membership rule editor.
+1. Select **Save** to close the dynamic membership rule editor.
 1. By default, the checkboxes to automatically create and remove assignments should remain checked.
 1. If you wish users to retain access for a limited time after they go out of scope, you can specify a duration in hours or days. For example, when an employee leaves the sales department, you may wish to allow them to continue to retain access for 7 days to allow them to use sales apps and transfer ownership of their resources in those apps to another employee.
-1. Click **Next** to open the **Custom Extensions** tab.
+1. Select **Next** to open the **Custom Extensions** tab.
 
 1. If you have [custom extensions](entitlement-management-logic-apps-integration.md) in your catalog you wish to have run when the policy assigns or removes access, you can add them to this policy.  Then click next to open the **Review** tab.
 
 1. Type a name and a description for the policy.
 
     ![Screenshot of an access package automatic assignment policy review tab.](./media/entitlement-management-access-package-auto-assignment-policy/auto-assignment-review.png)
 
-1. Click **Create** to save the policy.
+1. Select **Create** to save the policy.
 
    > [!NOTE]
    > At this time, Entitlement management will automatically create a dynamic security group corresponding to each policy, in order to evaluate the users in scope. This group should not be modified except by Entitlement Management itself.  This group may also be modified or deleted automatically by Entitlement Management, so don't use this group for other applications or scenarios.

articles/active-directory/governance/entitlement-management-access-package-create.md

@@ -1,6 +1,6 @@
 ---
 title: Create an access package in entitlement management
-description: Learn how to create an access package of resources that you want to share in Azure Active Directory entitlement management.
+description: Learn how to create an access package of resources that you want to share in Microsoft Entra entitlement management.
 services: active-directory
 documentationCenter: ''
 author: owinfreyATL
@@ -56,15 +56,13 @@ Then once the access package is created, you can [change the hidden setting](ent
 
 To complete the following steps, you need a role of global administrator, Identity Governance administrator, user administrator, catalog owner, or access package manager.
 
-1. Sign in to the [Azure portal](https://portal.azure.com).
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. Select **Azure Active Directory**, and then select **Identity Governance**.
-
-1. On the left menu, select **Access packages**.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
 1. Select **New access package**.
 
-    ![Screenshot that shows the button for creating a new access package in the Azure portal.](./media/entitlement-management-shared/access-packages-list.png)
+    ![Screenshot that shows the button for creating a new access package in the Microsoft Entra admin center.](./media/entitlement-management-shared/access-packages-list.png)
 
 ## Configure basics
 

articles/active-directory/governance/entitlement-management-access-package-edit.md

@@ -32,9 +32,11 @@ Follow these steps to change the **Hidden** setting for an access package.
 
 **Prerequisite role:** Global administrator, Identity Governance administrator, User administrator, Catalog owner, or Access package manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
+
+1. On the **Access packages** page open an access package.
 
 1. On the Overview page, select **Edit**.
 
@@ -50,9 +52,11 @@ An access package can only be deleted if it has no active user assignments. Foll
 
 **Prerequisite role:** Global administrator, User administrator, Catalog owner, or Access package manager
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
+
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
-1. In the left menu, select **Access packages** and then open the access package.
+1. On the **Access packages** page open the access package.
 
 1. In the left menu, select **Assignments** and remove access for all users.
 

articles/active-directory/governance/entitlement-management-access-package-first.md

@@ -1,6 +1,6 @@
 ---
 title: Tutorial - Manage access to resources in entitlement management
-description: Step-by-step tutorial for how to create your first access package using the Azure portal in entitlement management.
+description: Step-by-step tutorial for how to create your first access package using the Microsoft Entra admin center in entitlement management.
 services: active-directory
 documentationCenter: ''
 author: owinfreyATL
@@ -35,11 +35,11 @@ In this tutorial, you learn how to:
 > * Allow a user in your directory to request access
 > * Demonstrate how an internal user can request the access package
 
-For a step-by-step demonstration of the process of deploying Azure Active Directory entitlement management, including creating your first access package, view the following video:
+For a step-by-step demonstration of the process of deploying Microsoft Entra entitlement management, including creating your first access package, view the following video:
 
 >[!VIDEO https://www.youtube.com/embed/zaaKvaaYwI4]
 
-This rest of this article uses the Azure portal to configure and demonstrate entitlement management. 
+This rest of this article uses the Microsoft Entra admin center to configure and demonstrate entitlement management. 
 
 ## Prerequisites
 
@@ -60,9 +60,9 @@ A resource directory has one or more resources to share. In this step, you creat
 
 ![Diagram that shows the users and groups for this tutorial.](./media/entitlement-management-access-package-first/elm-users-groups.png)
 
-1. Sign in to the [Azure portal](https://portal.azure.com) as a Global administrator or User administrator.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as a Global administrator or User administrator.
 
-1. In the left navigation, select **Azure Active Directory**.
+1. In the left navigation, select **Identity**.
 
 1. [Create two users](../fundamentals/add-users.md). Use the following names or different names.
 
@@ -82,11 +82,13 @@ An *access package* is a bundle of resources that a team or project needs and is
 
 ![Diagram that describes the relationship between the access package elements.](./media/entitlement-management-access-package-first/elm-access-package.png)
 
-1. In the Azure portal, in the left navigation, select **Azure Active Directory**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as at least an [Identity Governance Administrator](../roles/permissions-reference.md#identity-governance-administrator).
 
-1. In the left menu, select **Identity Governance**
+1. Browse to **Identity governance** > **Entitlement management** > **Access package**.
 
-1. In the left menu, select **Access packages**.  If you see **Access denied**, ensure that a Microsoft Azure AD Premium P2 or Microsoft Entra ID Governance license is present in your directory.
+1. On the **Access packages** page open an access package.
+
+1. When opening the access package if you see **Access denied**, ensure that a Microsoft Azure AD Premium P2 or Microsoft Entra ID Governance license is present in your directory.
 
 1. Select **New access package**.
 
@@ -183,7 +185,7 @@ In this step, you perform the steps as the **internal requestor** and request ac
 
 **Prerequisite role:** Internal requestor
 
-1. Sign out of the Azure portal.
+1. Sign out of the Microsoft Entra admin center.
 
 1. In a new browser window, navigate to the My Access portal link you copied in the previous step.
 
@@ -209,9 +211,9 @@ In this step, you confirm that the **internal requestor** was assigned the acces
 
 1. Sign out of the My Access portal.
 
-1. Sign in to the [Azure portal](https://portal.azure.com) as **Admin1**.
+1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com) as **Admin1**.
 
-1. Select **Azure Active Directory** and then select **Identity Governance**.
+1. Select **Identity Governance**.
 
 1. In the left menu, select **Access packages**.
 
@@ -225,7 +227,7 @@ In this step, you confirm that the **internal requestor** was assigned the acces
 
     :::image type="content" source="./media/entitlement-management-access-package-first/request-details.png" alt-text="Screenshot of the access package request details." lightbox="./media/entitlement-management-access-package-first/request-details.png":::
 
-1. In the left navigation, select **Azure Active Directory**.
+1. In the left navigation, select **Identity**.
 
 1. Select **Groups** and open the **Marketing resources** group.
 
@@ -241,7 +243,7 @@ In this step, you remove the changes you made and delete the **Marketing Campaig
 
 **Prerequisite role:**  Global administrator or User administrator
 
-1. In the Azure portal, select **Azure Active Directory** and then select **Identity Governance**.
+1. In the Microsoft Entra admin center **Identity Governance**.
 
 1. Open the **Marketing Campaign** access package.
 
@@ -259,7 +261,7 @@ In this step, you remove the changes you made and delete the **Marketing Campaig
 
 1. For **Marketing Campaign**, select the ellipsis (**...**) and then select **Delete**. In the message that appears, select **Yes**.
 
-1. In Azure Active Directory, delete any users you created such as **Requestor1** and **Admin1**.
+1. In **Identity**, delete any users you created such as **Requestor1** and **Admin1**.
 
 1. Delete the **Marketing resources** group.