Addressed reviewer feedback

Orin-Thomas · Orin-Thomas · commit 00631bb019f1 · 2025-03-06T23:13:50.000+11:00
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/1-introduction.yml b/learn-pr/advocates/intro-azure-machine-learning-auth/1-introduction.yml
@@ -3,7 +3,7 @@ uid: learn.introduction-azure-machine-learning-auth.introduction
 title: Introduction
 metadata:
   title: Introduction
-  description: Introduction to Azure machine learning authentication and authorization.
+  description: Introduction to Azure Machine Learning authentication and authorization.
   ms.date: 03/06/2025
   author: Orin-Thomas
   ms.author: viniap
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/includes/1-introduction.md b/learn-pr/advocates/intro-azure-machine-learning-auth/includes/1-introduction.md
@@ -2,7 +2,7 @@ Azure Machine Learning (ML) is a cloud service for managing machine learning pro
 
 An Azure Machine Learning workspace is a centralized environment for managing machine learning projects, allowing collaboration and organization of experiments, datasets, models, and deployments. The workspace provides tools for creating, training, and deploying models, along with managing compute resources and data assets. As a cloud operations professional, you need to manage Azure Machine Learning workspace authentication and authorization.
 
-# Learning objectives #
+## Learning objectives ##
 
 After completing this module, you'll be able to:
 
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/includes/3-manage-access-azure-machine-learning.md b/learn-pr/advocates/intro-azure-machine-learning-auth/includes/3-manage-access-azure-machine-learning.md
@@ -2,7 +2,7 @@ Azure role-based access control (Azure RBAC) is used to scope the level of acces
 
 Azure Machine Learning applies the same principle for authorization as other Azure resources. You use Azure role-based access control (Azure RBAC) to manage access giving users the ability to create new resources or use existing ones. Users in your Microsoft Entra ID are assigned specific roles, which grant access to resources. Azure provides both built-in roles and the ability to create custom roles for Azure Machine Learning.
 
-Default Roles
+## Default Roles ##
 
 The roles related to Azure Machine Learning workspaces are as follows.
 
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/includes/4-authentication-between-azure-machine-learning-other-azure-services.md b/learn-pr/advocates/intro-azure-machine-learning-auth/includes/4-authentication-between-azure-machine-learning-other-azure-services.md
@@ -14,20 +14,18 @@ Just like when users access the Azure Machine Learning workspace, Azure services
 
 Once a workspace is created with SAI identity type, it can be updated to SAI+UAI, but not back from SAI+UAI to SAI. You may assign multiple user-assigned identities to the same workspace, or even assign additional user-assigned identities in addition to a system-assigned identity.
 
-**System-assigned versus User-assigned identities**
+### System-assigned versus User-assigned identities ###
 
 Choosing between system-assigned and user-assigned identities depends on your specific needs and how your company manages Azure resources:
 
 **System-assigned identities** are created and managed by Azure for a specific resource. When a resource is deleted, its associated system-assigned identity is also deleted, ensuring that the identity lifecycle is tightly coupled with the resource it belongs to. This type of identity is ideal for scenarios where the identity only needs to be used by a single resource, providing simplicity and reducing the administrative overhead since Azure manages the identity's credentials.
 
 **User-assigned identities** are created independently of any specific resource and can be shared across multiple resources. This makes them highly versatile for applications that require a consistent identity across different resources, enabling easier management of permissions and access controls. User-assigned identities persist even after the resources using them are deleted, allowing for greater flexibility in redeploying and reusing identities.
 
-**User-assigned managed identity specific configuration**
+### User-assigned managed identity specific configuration ###
 
 When you create an Azure Machine Learning workspace with the default settings (Azure Storage, Azure Container Registry, and Azure Key Vault are created for you), the system-assigned managed identity is configured with appropriate permissions. If instead you change to a user-assigned identity (or if you use existing resources for Storage, Key Vault, etc.) you need to set up the following access to that account:
 
-Expand table
-
 | **Resource** | **Permission** |
 |---|---|
 | **Azure Machine Learning workspace** | Contributor |
@@ -56,7 +54,7 @@ To assign the Azure Machine Learning workspace permissions to an Azure resource,
 
 1. Click Review + assign twice to confirm the assignment.
 
-Compute-related identities
+### Compute-related identities ###
 
 Compute-related identities are used in the following scenarios:
 
@@ -65,7 +63,7 @@ Compute-related identities are used in the following scenarios:
 
 In both cases, the default managed identity is the system-assigned managed identity or the first user-assigned managed identity for that resource. Also, both Azure Machine Learning compute clusters and Kubernetes cluster support only one system-assigned identity or multiple user-assigned identities, not both concurrently. Finally, the scenarios in this unit don't consider if you apply an identity to access resources from within the code for a submitted job. In that case, the identity from within the code is used for access.
 
-Data Storage
+### Data Storage ###
 
 When you create a datastore that uses identity-based data access, your Azure account is used to confirm you have permission to access the storage service. In the identity-based data access scenario, no authentication credentials are saved. Only the storage account information is stored in the datastore.
 
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/includes/6-summary.md b/learn-pr/advocates/intro-azure-machine-learning-auth/includes/6-summary.md
@@ -1,6 +1,6 @@
 This module provides an overview of authentication and authorization for Azure Machine Learning. You learned that Microsoft Entra ID is used for most scenarios, how to provide access to workspaces to users, and how to plan for authentication between Azure Machine Learning and other Azure resources.
 
-# Further reading/learning #
+## Further reading/learning ##
 
 - [Set up authentication for Azure Machine Learning resources and workflows](/azure/machine-learning/how-to-setup-authentication)
 - [Manage access to Azure Machine Learning workspaces](/azure/machine-learning/how-to-assign-roles)
diff --git a/learn-pr/advocates/intro-azure-machine-learning-auth/media/add-data-scientist.png b/learn-pr/advocates/intro-azure-machine-learning-auth/media/add-data-scientist.png
