Merge pull request #216818 from shlipsey3/reports-quickstarts-updates-110122

quickstarts-overview-metadata

Author: Court72

articles/active-directory/reports-monitoring/overview-flagged-sign-ins.md

@@ -3,19 +3,14 @@
 title: What are flagged sign-ins in Azure Active Directory?
 description: Provides a general overview of flagged sign-ins in Azure Active Directory.
 services: active-directory
-documentationcenter: ''
-author: MarkusVi
+author: shlipsey3
 manager: amycolannino
-editor: ''
-
-ms.assetid: e2b3d8ce-708a-46e4-b474-123792f35526
 ms.service: active-directory
 ms.topic: overview
-ms.tgt_pltfrm: na
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 08/26/2022
-ms.author: markvi
+ms.date: 11/01/2022
+ms.author: sarahlipsey
 ms.reviewer: tspring  
 
 # Customer intent: As an Azure AD administrator, I want a tool that gives me the right level of insights into the sign-in activities in my system so that I can easily diagnose and solve problems when they occur.
@@ -28,16 +23,13 @@ As an IT admin, when a user failed to sign-in, you want to resolve the issue as
 
 This article gives you an overview of a feature that significantly improves the time it takes to resolve user sign-in problems by making the related problems easy to find.
 
-
-
-
-## What it is
+## What are flagged sign-ins?
 
 Azure AD sign-in events are critical to understanding what went right or wrong with user sign-ins and the authentication configuration in a tenant. However, Azure AD processes over 8 billion authentications a day, which can result in so many sign-in events that admins may find it difficult to find the ones which matter. In other words, the sheer number of sign-in events can make the signal of users who need assistance get lost in the volume of a large number of events.
 
-Flagged Sign-ins is a feature intended to increase the signal to noise ratio for user sign-ins requiring help. The functionality is intended to empower users to raise awareness about sign-in errors they want help with and, for admins and help desk workers, make finding the right events faster and more efficient. Flagged Sign-in events contain the same information as other sign-in events contain with one addition: they also indicate that a user flagged the event for review by admins.
+Flagged Sign-ins is a feature intended to increase the signal to noise ratio for user sign-ins requiring help. The functionality is intended to empower users to raise awareness about sign-in errors they want help with. Admins and help desk workers also benefit from finding the right events more efficiently. Flagged Sign-in events contain the same information as other sign-in events contain with one addition: they also indicate that a user flagged the event for review by admins.
 
-Flagged sign-ins gives the user the ability to enable flagging when an error is seen on a sign-in page and then reproduce that error. The error event will then appear as “Flagged for Review” in the Azure AD Reporting blade for Sign-ins.
+Flagged sign-ins gives the user the ability to enable flagging when an error is seen on a sign-in page and then reproduce that error. The error event will then appear as “Flagged for Review” in the Azure AD sign-ins log.
 
 In summary, you can use flagged sign-ins to:
 
@@ -54,23 +46,22 @@ Flagged sign-ins gives you the ability to enable flagging when signing in using
 ### User: How to flag an error
 
 1. The user receives an error during sign-in.
-2. The user clicks **View details** in the error page.
-3. In **Troubleshooting details**, click **Enable Flagging**. The text changes to **Disable Flagging**. Flagging is now enabled.
+2. The user selects **View details** in the error page.
+3. In **Troubleshooting details**, select **Enable Flagging**. The text changes to **Disable Flagging**. Flagging is now enabled.
 4. Close the browser window.
-5. Open a new browser window (in the same browser application) and attempt the same sign in that failed. 
+5. Open a new browser window (in the same browser application) and attempt the same sign-in that failed. 
 6.	Reproduce the sign-in error that was seen before.
 
-After enabling flagging, the same browser application and client must be used or the events will not be flagged.
+With flagging enabled, the same browser application and client must be used or the events won't be flagged.
 
 
 ### Admin: Find flagged events in reports
 
-1.	In the Azure AD portal, select **Sign-in logs** in the left-hand pane.
-2.	Click **Add Filters**.
-3.	In the filter menu titled **Pick a field**, select **Flagged for review**, and click **Apply**.
-4.	All events that were flagged by users are shown.
-5.	If needed, apply additional filters to refine the event view.
-6.	Select the event to review what happened.
+1.	In the Azure AD portal, go to **Sign-in logs** > **Add Filters**.
+1.	From the **Pick a field** menu, select **Flagged for review** and **Apply**.
+1.	All events that were flagged by users are shown.
+1.	If needed, apply more filters to refine the event view.
+1.	Select the event to review what happened.
 
 
 ### Admin or Developer: Find flagged events using MS Graph
@@ -80,7 +71,7 @@ You can find flagged sign-ins with a filtered query using the sign-ins reporting
 Show all Flagged Sign-ins:
 `https://graph.microsoft.com/beta/auditLogs/signIns?&$filter=flaggedforReview eq true`
 
-Flagged Sign-ins query for specific user by UPN (e.g.: [email protected]):
+Flagged Sign-ins query for specific user by UPN (for example: [email protected]):
 `https://graph.microsoft.com/beta/auditLogs/signIns?&$filter=flaggedforReview eq true and userPrincipalname eq '[email protected]'`
 
 Flagged Sign-ins query for specific user and date greater than:
@@ -100,7 +91,7 @@ Any user signing into Azure AD via web page can use flag sign-ins for review. Me
 Reviewing flagged sign-in events requires permissions to read the Sign-in Report events in the Azure AD portal. For more information, see [who can access it?](concept-sign-ins.md#who-can-access-it)
 
 
-To flag sign-in failures, you don't need additional permissions.
+To flag sign-in failures, you don't need extra permissions.
 
 
 ## What you should know 
@@ -116,4 +107,4 @@ While the names are similar, **flagged sign-ins** and **risky sign-ins** are dif
 ## Next steps
 
 - [Sign-in logs in Azure Active Directory](concept-sign-ins.md)
-- [Sign in diagnostics for Azure AD scenarios](concept-sign-in-diagnostics-scenarios.md)
+- [Sign-in diagnostics for Azure AD scenarios](concept-sign-in-diagnostics-scenarios.md)

articles/active-directory/reports-monitoring/overview-monitoring.md

@@ -3,19 +3,14 @@
 title: What is Azure Active Directory monitoring? | Microsoft Docs
 description: Provides a general overview of Azure Active Directory monitoring.
 services: active-directory
-documentationcenter: ''
-author: MarkusVi
+author: shlipsey3
 manager: amycolannino
-editor: ''
-
-ms.assetid: e2b3d8ce-708a-46e4-b474-123792f35526
 ms.service: active-directory
 ms.topic: overview
-ms.tgt_pltfrm: na
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 08/26/2022
-ms.author: markvi
+ms.date: 11/01/2022
+ms.author: sarahlipsey
 ms.reviewer: dhanyahk  
 
 # Customer intent: As an Azure AD administrator, I want to understand what monitoring solutions are available for Azure AD activity data and how they can help me manage my tenant.
@@ -40,7 +35,7 @@ Currently, you can route the logs to:
 
 ## Licensing and prerequisites for Azure AD reporting and monitoring
 
-You'll need an Azure AD premium license to access the Azure AD sign in logs.
+You'll need an Azure AD premium license to access the Azure AD sign-in logs.
 
 For detailed feature and licensing information in the [Azure Active Directory pricing guide](https://www.microsoft.com/security/business/identity-access-management/azure-ad-pricing).
 

articles/active-directory/reports-monitoring/overview-reports.md

@@ -3,19 +3,14 @@
 title: What are Azure Active Directory reports? | Microsoft Docs
 description: Provides a general overview of Azure Active Directory reports.
 services: active-directory
-documentationcenter: ''
-author: MarkusVi
+author: shlipsey3
 manager: amycolannino
-editor: ''
-
-ms.assetid: 6141a333-38db-478a-927e-526f1e7614f4
 ms.service: active-directory
 ms.topic: overview
-ms.tgt_pltfrm: na
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 08/22/2022
-ms.author: markvi
+ms.date: 11/01/2022
+ms.author: sarahlipsey
 ms.reviewer: sarbar  
 
 # Customer intent: As an Azure AD administrator, I want to understand what Azure AD reports are available and how I can use them to gain insights into my environment. 
@@ -55,7 +50,7 @@ The [audit logs report](concept-audit-logs.md) provides you with records of syst
 
 #### What Azure AD license do you need to access the audit logs report?  
 
-The audit logs report is available for features for which you have licenses. If you have a license for a specific feature, you also have access to the audit log information for it. A detailed feature comparison as per [different types of licenses](../fundamentals/active-directory-whatis.md#what-are-the-azure-ad-licenses) can be seen on the [Azure Active Directory pricing page](https://www.microsoft.com/security/business/identity-access-management/azure-ad-pricing). For more details, see [Azure Active Directory features and capabilities](../fundamentals/active-directory-whatis.md#which-features-work-in-azure-ad).
+The audit logs report is available for features for which you have licenses. If you have a license for a specific feature, you also have access to the audit log information for it. A detailed feature comparison as per [different types of licenses](../fundamentals/active-directory-whatis.md#what-are-the-azure-ad-licenses) can be seen on the [Azure Active Directory pricing page](https://www.microsoft.com/security/business/identity-access-management/azure-ad-pricing). For more information, see [Azure Active Directory features and capabilities](../fundamentals/active-directory-whatis.md#which-features-work-in-azure-ad).
 
 ### Sign-ins report
 
@@ -71,7 +66,7 @@ To access the sign-ins activity report, your tenant must have an Azure AD Premiu
 
 ## Programmatic access
 
-In addition to the user interface, Azure AD also provides you with [programmatic access](concept-reporting-api.md) to the reports data, through a set of REST-based APIs. You can call these APIs from a variety of programming languages and tools. 
+In addition to the user interface, Azure AD also provides you with [programmatic access](concept-reporting-api.md) to the reports data, through a set of REST-based APIs. You can call these APIs from various programming languages and tools. 
 
 ## Next steps
 

articles/active-directory/reports-monitoring/overview-service-health-notifications.md

@@ -2,19 +2,14 @@
 title: What are Service Health notifications in Azure Active Directory? | Microsoft Docs
 description: Learn how Service Health notifications provide you with a customizable dashboard that tracks the health of your Azure services in the regions where you use them. 
 services: active-directory
-documentationcenter: ''
-author: MarkusVi
+author: shlipsey3
 manager: amycolannino
-editor: ''
-
-ms.assetid: 1c5002e4-079e-4c28-a4e8-a5841942030a6
 ms.service: active-directory
 ms.topic: overview
-ms.tgt_pltfrm: na
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 08/26/2022
-ms.author: markvi
+ms.date: 11/01/2022
+ms.author: sarahlipsey
 ms.reviewer: davey  
 
 
@@ -53,7 +48,7 @@ Most of the built-in admin roles will have access to see these notifications. Fo
 
 ## What you should know 
 
-Service Health events allow the addition of alerts and notifications to be applied to subscription events. Currently, this isn't yet supported with tenant events, but will be coming soon. 
+Service Health events allow the addition of alerts and notifications to be applied to subscription events. This feature isn't yet supported with tenant events, but will be coming soon. 
 
 
 

articles/active-directory/reports-monitoring/overview-sign-in-diagnostics.md

@@ -3,19 +3,14 @@
 title: What is the sign-in diagnostic for Azure Active Directory?
 description: Provides a general overview of the sign-in diagnostic in Azure Active Directory.
 services: active-directory
-documentationcenter: ''
-author: MarkusVi
+author: shlipsey3
 manager: amycolannino
-editor: ''
-
-ms.assetid: e2b3d8ce-708a-46e4-b474-123792f35526
 ms.service: active-directory
 ms.topic: overview
-ms.tgt_pltfrm: na
 ms.workload: identity
 ms.subservice: report-monitor
-ms.date: 08/26/2022
-ms.author: markvi
+ms.date: 11/01/2022
+ms.author: sarahlipsey
 ms.reviewer: tspring  
 
 # Customer intent: As an Azure AD administrator, I want a tool that gives me the right level of insights into the sign-in activities in my system so that I can easily diagnose and solve problems when they occur.
@@ -33,7 +28,7 @@ This article gives you an overview of what the diagnostic is and how you can use
 
 In Azure AD, sign-in attempts are controlled by:
 
-- **Who** - The user performing a sign in attempt.
+- **Who** - The user performing a sign-in attempt.
 - **How** - How a sign-in attempt was performed.
 
 For example, you can configure conditional access policies that enable administrators to configure all aspects of the tenant when they sign in from the corporate network. But the same user might be blocked when they sign into the same account from an untrusted network. 
@@ -61,9 +56,9 @@ To start and complete the diagnostic process, you need to:
 The diagnostic allows two methods to find events to investigate:  
 
 - Sign-in failures users have [flagged for assistance](overview-flagged-sign-ins.md). 
-- Search for specific events by the user and additional criteria. 
+- Search for specific events by the user and other criteria. 
 
-Flagged sign-ins are automatically presented in a list of up to 100. You can run a diagnostics on an event immediately by clicking it.  
+Flagged sign-ins are automatically presented in a list of up to 100. You can run diagnostics on an event immediately by clicking it.  
 
 You can search a specific event by selecting the search tab even when flagged sign-ins are present. 
 When searching for specific events, you can filter based on the following options: 
@@ -96,7 +91,7 @@ You can change the content displayed in the columns based on your preference. Ex
 
 ### Take action
 
-For the selected sign-in event, you get a diagnostic results. Read through the results to identify action that you can take to fix the problem. These results add recommended steps and shed light on relevant information such as the related policies, sign-in details, and supportive documentation. Because it's not always possible to resolve issues without more help, a recommended step might be to open a support ticket. 
+For the selected sign-in event, you get a diagnostic result. Read through the results to identify action that you can take to fix the problem. These results add recommended steps and shed light on relevant information such as the related policies, sign-in details, and supportive documentation. Because it's not always possible to resolve issues without more help, a recommended step might be to open a support ticket. 
 
 
 ![Screenshot showing the diagnostic results.](./media/overview-sign-in-diagnostics/diagnostic-results.png)
@@ -105,7 +100,7 @@ For the selected sign-in event, you get a diagnostic results. Read through the r
 
 ## How to access it
 
-To use the diagnostic, you must be signed into the tenant as a global admin or a global reader. If you do not have this level of access, use [Privileged Identity Management, PIM](../privileged-identity-management/pim-resource-roles-activate-your-roles.md), to elevate your access to global admin/reader within the tenant. This will allow you to have temporary access to the diagnostic.  
+To use the diagnostic, you must be signed into the tenant as a Global Administrator or a Global Reader.
 
 With the correct access level, you can find the diagnostic in various places: 
 
@@ -116,14 +111,9 @@ With the correct access level, you can find the diagnostic in various places:
 
 1. Open **Azure Active Directory AAD or Azure AD Conditional Access**. 
 
-2. From the main menu, click **Diagnose & Solve Problems**.  
-
-3. Under the **Troubleshooters**, there is a sign-in diagnostic tile. 
-
-4. Click **Troubleshoot** button.  
-
- 
+1. From the main menu, select **Diagnose & Solve Problems**.  
 
+1. From the **Troubleshooters** section, select the **Troubleshoot** button from the sign-in diagnostic tile. 
 
 
 **Option B**: Sign-in Events 
@@ -137,11 +127,11 @@ With the correct access level, you can find the diagnostic in various places:
 
 2. On the main menu, in the **Monitoring** section, select **Sign-ins**. 
 
-3. From the list of sign-ins, select a sign in with a **Failure** status. You can filter your list by Status to make it easier to find failed sign-ins. 
+3. From the list of sign-ins, select a sign-in with a **Failure** status. You can filter your list by Status to make it easier to find failed sign-ins. 
 
-4. The **Activity Details: Sign-ins** tab will open for the selected sign-in. Click on dotted icon to view more menu icons. Select the **Troubleshooting and support** tab. 
+4. The **Activity Details: Sign-ins** tab will open for the selected sign-in. Select the dotted icon to view more menu icons. Select the **Troubleshooting and support** tab. 
 
-5. Click the link to **Launch the Sign-in Diagnostic**. 
+5. Select the link to **Launch the Sign-in Diagnostic**.