Merge pull request #235591 from danielledennis/main

prmerger-automator[bot] · web-flow · commit fd39611dc1d0 · 2023-04-24T18:59:11.000Z
Update data-connections.md
diff --git a/articles/external-attack-surface-management/data-connections.md b/articles/external-attack-surface-management/data-connections.md
@@ -39,7 +39,7 @@ To accurately present the infrastructure that matters most to your organization,
 <br>Attack Surface Insights provide an actionable set of results based on the key insights delivered through dashboards in Defender EASM. This option provides less granular metadata on each asset; instead, it categorizes assets based on the corresponding insight(s) and provides the high-level context required to investigate further. This option is ideal for those who want to integrate these pre-determined insights into custom reporting workflows in conjunction with data from other tools.
 
 
-## **Configuring data connections**
+## **Configuration overviews**
 
 
 **Accessing data connections**
@@ -51,21 +51,25 @@ To accurately present the infrastructure that matters most to your organization,
 **Connection prerequisites**
 <br>To successfully create a data connection, users must first ensure that they have completed the required steps to grant Defender EASM permission to the tool of their choice. This process enables the application to ingest our exported data and provides the authentication credentials needed to configure the connection. 
 
-**Configuring Log Analytics permissions via UI** 
+## Configuring Log Analytics permissions
 
 1. Open the Log Analytics workspace that will ingest your Defender EASM data, or [create a new workspace](/azure/azure-monitor/logs/quick-create-workspace?tabs=azure-portal). 
-1. Select **Access control (IAM)** from the left-hand navigation pane. For more information on access control, see [identity documentation](/azure/cloud-adoption-framework/decision-guides/identity/).
+2. Select **Access control (IAM)** from the left-hand navigation pane. For more information on access control, see [identity documentation](/azure/cloud-adoption-framework/decision-guides/identity/).
    ![Screenshot of Log Analytics Access control.](media/data-connections/data-connector-2.png)
 
-1. On this page, select **+Add** to create a new role assignment. 
-1. From the **Role** tab, select **Contributor**. Click **Next**. 
-1. Open the **Members** tab. Click **+ Select members** to open a configuration pane. Search for **“EASM API”** and click on the value in the members list. Once done, click **Select**, then **Review + assign.** 
-1. Once the role assignment has been created, select **Agents** from the **Settings** section of the left-hand navigation menu.
+3. On this page, select **+Add** to create a new role assignment. 
+4. From the **Role** tab, select **Contributor**. Click **Next**. 
+5. Open the **Members** tab. Click **+ Select members** to open a configuration pane. Search for **“EASM API”** and click on the value in the members list. Once done, click **Select**, then **Review + assign.** 
+6. Once the role assignment has been created, select **Agents** from the **Settings** section of the left-hand navigation menu.
    ![Screenshot of Log Analytics agents.](media/data-connections/data-connector-3.png)
 
-1. Expand the **Log Analytics agent instructions** section to view your Workspace ID and Primary key. These values will be used to set up your data connection. Save the values in the following format: *WorkspaceId=XXX;ApiKey=YYY*
+7. Expand the **Log Analytics agent instructions** section to view your Workspace ID and Primary key. These values will be used to set up your data connection. Save the values in the following format: *WorkspaceId=XXX;ApiKey=YYY*
+ 
+Please note that use of this data connection is subject to the pricing structure of Log Analytics. See [Azure monitor pricing](https://azure.microsoft.com/pricing/details/monitor/) for more information.  
    
-**Configuring Data Explorer permissions**
+   
+   
+## Configuring Data Explorer permissions
 
 1. Open the Data Explorer cluster that will ingest your Defender EASM data or [create a new cluster](/azure/data-explorer/create-cluster-database-portal). 
 1. Select **Databases** in the Data section of the left-hand navigation menu.
@@ -86,7 +90,7 @@ To accurately present the infrastructure that matters most to your organization,
 
 
 
-**Add a data connection**
+## Add a data connection
 <br>Users can connect their Defender EASM data to either Log Analytics or Azure Data Explorer. To do so, simply select **“Add connection”** for the appropriate tool from the Data Connections page.
 A configuration pane will open on the right-hand side of the Data Connections screen. The following four fields are required:
 
@@ -101,7 +105,7 @@ A configuration pane will open on the right-hand side of the Data Connections sc
    
    Once all four fields are configured, select **Add** to create the data connection. At this point, the Data Connections page will display a banner that indicates the resource has been successfully created and data will begin populating within 30 minutes. Once connections are created, they will be listed under the applicable tool on the main Data Connections page. 
    
-**Edit or delete a data connection**
+## Edit or delete a data connection
 <br>Users can edit or delete a data connection. For example, you may notice that a connection is listed as “Disconnected” and would therefore need to re-enter the configuration details to fix the issue.
 To edit or delete a data connection: 
 
@@ -114,15 +118,12 @@ To edit or delete a data connection:
    •	**Updated**: the date and time that the data connection was last updated.
    ![Screenshot of test connections.](media/data-connections/data-connector-9.png)
 
-1. From this page, users can elect to reconnect, edit or delete their data connection.<br>
-   •	**Reconnect**: this option attempts to validate the data connection without any changes to the configuration. This option is best for those who have validated the authentication credentials used for the data connection.<br>
-   •	**Edit**: this option allows users to change the configuration for the data connection.<br>
-   •	**Delete**: this option deletes the data connection. 
-   
-
-
-
+1. From this page, users can elect to reconnect, edit or delete their data connection.
 
+  - **Reconnect**: this option attempts to validate the data connection without any changes to the configuration. This option is best for those who have validated the authentication credentials used for the data connection.
+  - **Edit**: this option allows users to change the configuration for the data connection.
+  - **Delete**: this option deletes the data connection. 
+   
 
 
 
