Update ATPDocs/unmonitored-entra-connect-servers.md

DeCohen · ElazarK · web-flow · commit c8e1abf79530 · 2025-07-07T17:08:46.000+03:00
Co-authored-by: Elazar Krieger &lt;58463413+ElazarK@users.noreply.github.com&gt;
diff --git a/ATPDocs/unmonitored-entra-connect-servers.md b/ATPDocs/unmonitored-entra-connect-servers.md
@@ -23,7 +23,7 @@ If an attacker compromises a Microsoft Entra Connect server, they can inject sha
 These servers operate at the intersection of on-premises and cloud identity, making them a prime target for privilege escalation and stealthy persistence. Without monitoring, such attacks can go undetected. Deploying Microsoft Defender for Identity version 2.0 sensors on Microsoft Entra Connect servers is critical. These sensors help detect suspicious activity in real time, protect the integrity of your hybrid identity bridge, and prevent full-domain compromise from a single point of failure.
 
 > [!NOTE]
-> This security assessment is only available if Microsoft Defender for Endpoint has detected eligible Microsoft Entra Connect servers in the environment.
+> This security assessment is only available if Microsoft Defender for Endpoint detects eligible Microsoft Entra Connect servers in the environment.
 
 ## How do I use this security assessment? 
 
