fixes

denisebmsft · denisebmsft · commit 97b55c1c3ba8 · 2024-06-25T14:24:56.000-07:00
diff --git a/defender-endpoint/manage-automation-file-uploads.md b/defender-endpoint/manage-automation-file-uploads.md
@@ -12,7 +12,7 @@ ms.collection:
 - tier2
 ms.topic: conceptual
 search.appverid: met150
-ms.date: 05/08/2023
+ms.date: 06/25/2024
 ---
 
 # Manage automation file uploads
@@ -37,18 +37,23 @@ For example, if you add *exe* and *bat* as file or attachment extension names, t
 > [!NOTE]
 > Microsoft securely stores the files submitted for a six-month period. Files are promptly deleted after six months.
 
-## Add file extension names and attachment extension names.
+## Add file extension names and attachment extension names
 
-1. Log in to [Microsoft Defender XDR](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
+> [!IMPORTANT]
+> Microsoft recommends that you use roles with the fewest permissions. This helps improve security for your organization. Global Administrator is a highly privileged role that should be limited to emergency scenarios when you can't use an existing role.
+
+1. Sign in to the [Microsoft Defender portal](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
 
 2. In the navigation pane, select **Settings** \> **Endpoints** \> **Rules** \> **Automation uploads**.
 
 2. Toggle the content analysis setting between **On** and **Off**.
 
 3. Configure the following extension names and separate extension names with a comma:
+
    - **File extension names** - Suspicious files except email attachments will be submitted for additional inspection
 
 ## Related topics
 
 - [Manage automation folder exclusions](manage-automation-folder-exclusions.md)
+
 [!INCLUDE [Microsoft Defender for Endpoint Tech Community](../includes/defender-mde-techcommunity.md)]
diff --git a/defender-endpoint/manage-automation-folder-exclusions.md b/defender-endpoint/manage-automation-folder-exclusions.md
@@ -14,7 +14,7 @@ ms.collection:
 ms.topic: conceptual
 ms.subservice: edr
 search.appverid: met150
-ms.date: 12/18/2020
+ms.date: 06/25/2024
 ---
 
 # Manage automation folder exclusions
@@ -41,13 +41,17 @@ You can control the following attributes about the folder that you'd like to be
 
 - **File names**: You can specify the file names that you want to be excluded in a specific directory. The names are a way to prevent an attacker from using an excluded folder to hide an exploit. The names explicitly define which files to ignore.
 
+> [!IMPORTANT]
+> Microsoft recommends that you use roles with the fewest permissions. This helps improve security for your organization. Global Administrator is a highly privileged role that should be limited to emergency scenarios when you can't use an existing role.
+
+
 ## Add an automation folder exclusion
 
-1. Log in to [Microsoft Defender XDR](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
+1. Sign in to the [Microsoft Defender portal](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
 
 2. In the navigation pane, select **Settings** \> **Endpoints** \> **Rules** \> **Automation folder exclusions**.
 
-2. Click **New folder exclusion**.
+2. Select **New folder exclusion**.
 
 3. Enter the folder details:
 
@@ -56,25 +60,29 @@ You can control the following attributes about the folder that you'd like to be
     - File names
     - Description
 
-4. Click **Save**.
+4. Select **Save**.
 
 > [!NOTE]
 > Live Response commands to collect or examine excluded files will fail with error: "File is excluded". In addition, automated investigations will ignore the excluded items.
 
 ## Edit an automation folder exclusion
 
 1. In the navigation pane, select **Settings** \> **Endpoints** \> **Rules** \> **Automation folder exclusions**.
-2. Click **Edit** on the folder exclusion.
+
+2. Select **Edit** on the folder exclusion.
+
 3. Update the details of the rule and click **Save**.
 
 ## Remove an automation folder exclusion
 
 1. In the navigation pane, select **Settings** \> **Endpoints** \> **Rules** \> **Automation folder exclusions**.
-2. Click **Remove exclusion**.
+
+2. Select **Remove exclusion**.
 
 ## Related articles
 
 - [Manage automation allowed/blocked lists](manage-indicators.md)
 - [Manage automation file uploads](manage-automation-file-uploads.md)
 - [Exclusions for Microsoft Defender for Endpoint and Microsoft Defender Antivirus](defender-endpoint-antivirus-exclusions.md)
+
 [!INCLUDE [Microsoft Defender for Endpoint Tech Community](../includes/defender-mde-techcommunity.md)]
diff --git a/defender-endpoint/manage-suppression-rules.md b/defender-endpoint/manage-suppression-rules.md
@@ -34,7 +34,7 @@ There might be scenarios where you need to suppress alerts from appearing in the
 You can view a list of all the suppression rules and manage them in one place. You can also turn an alert suppression rule on or off.
 
 
-1. Log in to [Microsoft Defender XDR](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
+1. Sign in to the [Microsoft Defender portal](https://go.microsoft.com/fwlink/p/?linkid=2077139) using an account with the Security administrator or Global administrator role assigned.
 
 2. In the navigation pane, select **Settings** \> **Endpoints** \> **Rules** \> **Alert suppression**. The list of suppression rules that users in your organization have created is displayed.
 
