Update tvm-certificate-inventory.md

Acrolinx

Author: chrisda

defender-vulnerability-management/tvm-certificate-inventory.md

@@ -1,6 +1,6 @@
 ---
 title: Certificate inventory
-description: Find out about the certificates installed in your environment
+description: Find out about the certificates installed in your environment.
 ms.service: defender-vuln-mgmt
 ms.author: siosulli
 author: siosulli
@@ -21,23 +21,27 @@ ms.date: 04/11/2022
 
 - [Microsoft Defender Vulnerability Management](defender-vulnerability-management.md)
 - [Microsoft Defender XDR](/defender-xdr)
-- [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan) 
+- [Microsoft Defender for Servers Plan 2](/azure/defender-for-cloud/plan-defender-for-servers-select-plan)
 
 > [!NOTE]
 > To use this feature you'll require Microsoft Defender Vulnerability Management Standalone or if you're already a Microsoft Defender for Endpoint Plan 2 customer, the Defender Vulnerability Management add-on.
 
-Certificates can be used in multiple ways, this includes:
+Certificates can be used in multiple ways. For example:
 
-- being part of the TLS\SSL protocol
-- user certificates being used for VPN client authentication, document signing, email encryption and email signing
-- providing data encryption and authentication to ensure the secure transfer of information within your network and over the internet
+- As part of the TLS\SSL protocol.
+- VPN client authentication, document signing, email encryption and email signing.
+- Data encryption and authentication to ensure the secure transfer of information within your network and over the internet.
 
-If there is an issue with a certificate, for example, it has expired or is misconfigured, it could leave your organization vulnerable, cause an outage, and have an impact on day-to-day business operations.
+Issues with a certificate (for example, expiration or misconfiguration) could lead to the following results:
 
-The **Certificate inventory** lets you view a list of the certificates installed across your organization in a single central certificate inventory page. This can help you:
+- A security vulnerability for your organization.
+- A service outage.
+- Negative results on day-to-day business operations.
+
+The **Certificate inventory** lets you view a list of the certificates installed across your organization in a single central certificate inventory page. This feature can help you with the following tasks:
 
 - Identify certificates that are about to expire so you can update them and prevent service disruption
-- Detect potential vulnerabilities due to the use of weak signature algorithm (e.g. SHA-1-RSA), short key size (e.g. RSA 512bit), or weak signature hash algorithm (e.g. MD5)
+- Detect potential vulnerabilities due to the use of weak signature algorithm (for example, SHA-1-RSA), short key size (for example, RSA 512 bit), or weak signature hash algorithm (for example, MD5)
 - Ensure compliance with regulatory guidelines and organizational policy
 
 > [!TIP]
@@ -57,13 +61,13 @@ The **Certificate inventory** page opens with a list of the certificates install
 
 ## Gain insights into potentially vulnerable certificates
 
-At the top of the page, you can view the number of certificates that have been identified as potentially less secure and introduce risk into your organization. This includes the number of certificates that:
+At the top of the page, you can view the number of certificates that have been identified as potentially less secure and introduce risk into your organization. This number includes certificates with the following issues:
 
-- have already expired
-- will expire in 60 days or less
-- have a key size with fewer than 2048 bits, as they are considered less secure
-- have a weak signature algorithm, like SHA-1 and MD5
-- are considered vulnerable since they are self-signed
+- Expired.
+- Will expire in 60 days or less.
+- Have a key size with fewer than 2,048 bits, as they're considered less secure.
+- Have a weak signature algorithm, like SHA-1 and MD5.
+- Are considered vulnerable since they're self-signed.
 
 ## Use filters on the certificate inventory page
 
@@ -77,7 +81,7 @@ You can use filters to view the inventory based on:
 
 ## Get more information on a discovered certificate
 
-When you select the certificate that you want to investigate, a flyout panel will open with the certificate details page:
+When you select the certificate that you want to investigate, a flyout panel opens with the certificate details page:
 
    :::image type="content" source="/defender/media/defender-vulnerability-management/certificate_details.png" alt-text="Screenshot of the certificate details page" lightbox="/defender/media/defender-vulnerability-management/certificate_details.png":::