changed files by pdets auto publish service, publishid[05be43e1-eba4-4995-8351-9ba3246cccbf] and do [publish].

Author: wwlpublish

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/1-introduction.yml

@@ -2,9 +2,11 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.introduction
 title: Introduction
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: Introduction
   description: "Introduction"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/2-explain-virtual-network-service-endpoints.yml

@@ -2,14 +2,52 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.explain-virtual-network-service-endpoints
 title: Explain virtual network service endpoints
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: Explain virtual network service endpoints
   description: "Explain virtual network service endpoints"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit
   ms.custom:
   - N/A
-durationInMinutes: 11
+durationInMinutes: 10
 content: |
-  [!include[](includes/2-explain-virtual-network-service-endpoints.md)]
+  [!include[](includes/2-explain-virtual-network-service-endpoints.md)]
+quiz:
+  title: "Check your knowledge"
+  questions:
+  - content: "What is the primary function of virtual network service endpoints?"
+    choices:
+    - content: "Service Endpoints extend your virtual network private address space and the identity of your VNet to the services."
+      isCorrect: true
+      explanation: "Correct. Service Endpoints allow your VNet to directly interact with the services."
+    - content: "Service Endpoints enable the creation and teardown of environments for application hosting."
+      isCorrect: false
+      explanation: "Incorrect. This is more related to infrastructure as code, not Service Endpoints."
+    - content: "Service Endpoints provide a direct connection to public cloud services."
+      isCorrect: false
+      explanation: "Incorrect. While Service Endpoints do connect to services, they do not provide a direct connection to public cloud services."
+  - content: "How do virtual network service endpoints enhance security?"
+    choices:
+    - content: "Service Endpoints allow you to secure Azure service resources to only your virtual network."
+      isCorrect: true
+      explanation: "Correct. Service Endpoints help secure your resources by limiting access to your VNet."
+    - content: "Service Endpoints provide firewall services for the virtual network."
+      isCorrect: false
+      explanation: "Incorrect. Firewall services are separate from Service Endpoints."
+    - content: "Service Endpoints encrypt all data in transit."
+      isCorrect: false
+      explanation: "Incorrect. Encryption is not a primary function of Service Endpoints."
+  - content: "What is the impact of enabling service endpoints on network traffic?"
+    choices:
+    - content: "It reduces the bandwidth available for other services."
+      isCorrect: false
+      explanation: "Incorrect. Service endpoints do not affect the bandwidth available for other services."
+    - content: "It routes network traffic between your virtual network and the service through an optimized path."
+      isCorrect: true
+      explanation: "Correct. Service endpoints optimize the path for network traffic, improving performance."
+    - content: "It significantly increases network latency."
+      isCorrect: false
+      explanation: "Incorrect. Service endpoints do not significantly increase network latency."

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/3-define-private-link-service-private-endpoint.yml

@@ -2,39 +2,52 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.define-private-link-service-private-endpoint
 title: Define Private Link Service and private endpoint
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: Define Private Link Service and private endpoint
   description: "Define Private Link Service and private endpoint"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit
   ms.custom:
   - N/A
-durationInMinutes: 12
+durationInMinutes: 11
 content: |
   [!include[](includes/3-define-private-link-service-private-endpoint.md)]
 quiz:
   title: "Check your knowledge"
   questions:
-  - content: "What is the key technology behind Private Links?"
+  - content: "What is the main function of a private link service private endpoint?"
     choices:
-    - content: "Private Endpoint."
+    - content: "It allows public access to a private network"
+      isCorrect: false
+      explanation: "Incorrect. A private endpoint does not allow public access, it provides private connectivity."
+    - content: "It provides a public IP address for a private network"
+      isCorrect: false
+      explanation: "Incorrect. A private endpoint does not provide a public IP, it provides a private IP in the VNet."
+    - content: "It enables a private and secure connection to a service powered by Azure Private Link"
+      isCorrect: true
+      explanation: "Correct. A private endpoint provides a secure and private IP address within a Virtual Network (VNet)."
+  - content: "What is a key benefit of using a private link service private endpoint?"
+    choices:
+    - content: "It provides a secure and private IP address within a Virtual Network (VNet)"
       isCorrect: true
-      explanation: "Correct. Private Links are dependent on Private Endpoints."
-    - content: "DNS Resolution."
+      explanation: "Correct. The key benefit of a private endpoint is that it provides a secure and private IP address within a VNet."
+    - content: "It increases the speed of data transfer"
       isCorrect: false
-      explanation: "Incorrect. The recommended practice is to use a single Private Endpoint for a given Private Link resource."
-    - content: "Virtual Networks."
+      explanation: "Incorrect. While a private endpoint may improve performance, its key benefit is related to security and privacy."
+    - content: "It reduces the cost of data transfer"
       isCorrect: false
-      explanation: "Incorrect. Private Links are dependent on Private Endpoints."
-  - content: "What is the difference between a Service Endpoint and a Private Endpoint?"
+      explanation: "Incorrect. A private endpoint does not directly impact the cost of data transfer."
+  - content: "How does a private link service private endpoint enhance security?"
     choices:
-    - content: "A Private Endpoint connects to external systems and services."
+    - content: "By providing firewall protection"
       isCorrect: false
-      explanation: "Incorrect, a Private Endpoint enables a private and secure connection between your virtual network and Azure. A Service Endpoint connects to external resources."
-    - content: "A Service Endpoint connects to external systems and services."
-      isCorrect: true
-      explanation: "Correct! A Service Endpoint connects to external resources. A Private Endpoint enables a private and secure connection between your virtual network and Azure."
-    - content: "A Service Endpoint enables a private and secure connection between your virtual network and Azure."
+      explanation: "Incorrect. A private endpoint does not provide firewall protection, it provides private connectivity."
+    - content: "By encrypting all data in transit"
       isCorrect: false
-      explanation: "Incorrect, a Private Endpoint enables a private and secure connection between your virtual network and Azure. A Service Endpoint connects to external resources."
+      explanation: "Incorrect. While encryption can be part of the solution, the primary security enhancement is through private connectivity."
+    - content: "By ensuring that traffic between your virtual network and the service travels across the Microsoft backbone network"
+      isCorrect: true
+      explanation: "Correct. A private endpoint ensures that traffic does not traverse over the public internet, enhancing security."

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/4-integrate-private-link-dns.yml

@@ -2,39 +2,30 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.integrate-private-link-dns
 title: Integrate private endpoint with Domain Name Service
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: Integrate private endpoint with Domain Name Service
   description: "Integrate private endpoint with Domain Name Service"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit
   ms.custom:
   - N/A
-durationInMinutes: 8
+durationInMinutes: 6
 content: |
   [!include[](includes/4-integrate-private-link-dns.md)]
 quiz:
   title: "Check your knowledge"
   questions:
-  - content: "What resource is associated with a Private Endpoint and contains information to configure your Private Endpoint DNS?"
+  - content: "How does integrating private link DNS enhance security?"
     choices:
-    - content: "The virtual network"
+    - content: "By encrypting all data"
       isCorrect: false
-      explanation: "Incorrect. The virtual network doesn't include the information needed to configure your Private Endpoint DNS."
-    - content: "The network interface"
+      explanation: "Incorrect. While encryption may be part of the process, it's not the primary way private link DNS enhances security."
+    - content: "By restricting access to services to only those within the private network"
       isCorrect: true
-      explanation: "Correct. The network interface information includes FQDN and private IP addresses for your Private Link resource."
-    - content: "The private DNS zone"
+      explanation: "Correct. Private link DNS enhances security by restricting access to services to only those within the private network."
+    - content: "By blocking all incoming traffic"
       isCorrect: false
-      explanation: "Incorrect. The private DNS zone doesn't include the information needed to configure your Private Endpoint DNS."
-  - content: "What is the significance of IP address 168.63.129.16?"
-    choices:
-    - content: "It's a nonvirtual public IP address that is used to facilitate a communication channel to Azure platform resources."
-      isCorrect: false
-      explanation: "Incorrect. In a nonvirtual network scenario, a private IP address is used instead of 168.63.129.16. This private IP address is dynamically discovered through DHCP."
-    - content: "It's a static address of a DNS forwarder."
-      isCorrect: false
-      explanation: "Incorrect. 168.63.129.16 is a virtual public IP address that is used to facilitate a communication channel to Azure platform resources."
-    - content: "It's a virtual public IP address that is used to facilitate a communication channel to Azure platform resources."
-      isCorrect: true
-      explanation: "Correct. Additionally, customers can define any address space for their private virtual network in Azure."
+      explanation: "Incorrect. Blocking all traffic would prevent legitimate access as well."

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/5-exercise-restrict-network-paas-resources-virtual-network-service-endpoints.yml

@@ -2,9 +2,11 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.exercise-restrict-network-paas-resources-virtual-network-service-endpoints-using
 title: 'Exercise: Restrict network access to PaaS resources with virtual network service endpoints using the Azure portal'
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: 'Exercise: Restrict network access to PaaS resources with virtual network service endpoints using the Azure portal'
   description: "Exercise: Restrict network access to PaaS resources with virtual network service endpoints using the Azure portal"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/6-exercise-create-azure-private-endpoint-using-azure-powershell.yml

@@ -2,9 +2,11 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.exercise-create-azure-private-endpoint-using-azure-powershell
 title: 'Exercise: Create an Azure private endpoint using Azure PowerShell'
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: 'Exercise: Create an Azure private endpoint using Azure PowerShell'
   description: "Exercise: Create an Azure private endpoint using Azure PowerShell"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/7-summary.yml

@@ -2,14 +2,16 @@
 uid: learn.wwl.design-implement-private-access-to-azure-services.summary
 title: Summary
 metadata:
+  adobe-target: true
+  prefetch-feature-rollout: true
   title: Summary
   description: "Summary"
-  ms.date: 01/30/2025
+  ms.date: 04/16/2025
   author: wwlpublish
   ms.author: cynthist
   ms.topic: unit
   ms.custom:
   - N/A
-durationInMinutes: 2
+durationInMinutes: 4
 content: |
   [!include[](includes/7-summary.md)]

learn-pr/wwl-azure/design-implement-private-access-to-azure-services/includes/1-introduction.md

@@ -1,10 +1,10 @@
-As an enterprise organization there are scenarios that require private access to services hosted on the Azure platform. It's important these services don't expose data on the public internet. As a network engineer you manage and configure these private connections. 
+Azure provides a range of services and features to enhance the security and privacy of your network connections, including Virtual Network Service Endpoints, Azure Private Link, Private Endpoint, and Azure Private Link Service. These technologies allow for secure and direct connectivity to Azure services over the Azure backbone network, replacing public endpoints with private network interfaces, and providing granular access control.
 
-## Learning objectives
+Imagine you're a cloud architect for a large organization that is migrating its existing applications to Azure. You need to ensure that these applications can securely access specific Azure services without exposing them to the public internet. Additionally, you want to provide private access from your Azure virtual network to Azure PaaS services and Microsoft Partner services. You also need to restrict network access to certain PaaS resources and create a private endpoint for an Azure web app. This scenario requires a deep understanding of Azure's networking services and how to implement them effectively.
+
+In this module, you learn to:
+- Describe and implement Virtual Network Service Endpoints in Azure for secure and direct connectivity. 
+- Use Azure Private Link and Private Endpoint to replace public endpoints with private network interfaces. 
+- Use Azure Private Link Service to provide private access from your Azure virtual network to Azure PaaS services and Microsoft Partner services. 
 
-In this module, you learn to: 
 
- -  Understand the difference between private link and private endpoints.
- -  Design and configure Private Endpoints.
- -  Integrate a Private Link with Domain Name Service and on-premises clients.
- -  Create, configure, and provide access to Service Endpoints.