MicrosoftDocs
diff --git a/‎azure-sql/database/auditing-setup.md
Lines changed: 8 additions & 10 deletions b/‎azure-sql/database/auditing-setup.md
Lines changed: 8 additions & 10 deletions
diff --git a/‎docs/relational-databases/security/encryption/sql-server-connector-maintenance-troubleshooting.md
Lines changed: 25 additions & 24 deletions b/‎docs/relational-databases/security/encryption/sql-server-connector-maintenance-troubleshooting.md
Lines changed: 25 additions & 24 deletions
diff --git a/‎docs/reporting-services/tools/server-properties-advanced-page-reporting-services.md
Lines changed: 6 additions & 1 deletion b/‎docs/reporting-services/tools/server-properties-advanced-page-reporting-services.md
Lines changed: 6 additions & 1 deletion
diff --git a/‎docs/sql-server/azure-arc/backup-local.md
Lines changed: 3 additions & 0 deletions b/‎docs/sql-server/azure-arc/backup-local.md
Lines changed: 3 additions & 0 deletions
diff --git a/‎docs/ssma/access/what-s-new-in-ssma-for-access-accesstosql.md
Lines changed: 7 additions & 2 deletions b/‎docs/ssma/access/what-s-new-in-ssma-for-access-accesstosql.md
Lines changed: 7 additions & 2 deletions
diff --git a/‎docs/ssma/db2/what-s-new-in-ssma-for-db2-db2tosql.md
Lines changed: 13 additions & 4 deletions b/‎docs/ssma/db2/what-s-new-in-ssma-for-db2-db2tosql.md
Lines changed: 13 additions & 4 deletions
diff --git a/‎docs/ssma/mysql/what-s-new-in-ssma-for-mysql-mysqltosql.md
Lines changed: 6 additions & 2 deletions b/‎docs/ssma/mysql/what-s-new-in-ssma-for-mysql-mysqltosql.md
Lines changed: 6 additions & 2 deletions
@@ -4,8 +4,8 @@ titleSuffix: Azure SQL Database & Azure Synapse Analytics
 description: This article provides an overview of how to set up Auditing and storing those audits to an Azure storage account, Log Analytics workspace, or Event Hubs destination.
 author: sravanisaluru
 ms.author: srsaluru
-ms.reviewer: mathoma, vanto
-ms.date: 09/17/2024
+ms.reviewer: mathoma, vanto, randolphwest
+ms.date: 04/01/2025
 ms.service: azure-sql-database
 ms.subservice: security
 ms.topic: how-to
@@ -53,8 +53,10 @@ To configure writing audit logs to a storage account, select **Storage** when yo
 
 :::image type="content" source="media/auditing-setup/auditing-select-storage.png" alt-text="Screenshot that shows storage account authentication types for Auditing." lightbox="media/auditing-setup/auditing-select-storage.png":::
 
-> [!NOTE]  
-> If you are deploying from the Azure portal, make sure that the storage account is in the same region as your database and server. If you are deploying through other methods, the storage account can be in any region.
+If you're deploying from the Azure portal, make sure that the storage account is in the same region as your database and server. If you're deploying through other methods, the storage account can be in any region.
+
+> [!WARNING]  
+> For storage authentication, use Managed Identity. Storage Access Keys pose a security risk because if they are compromised, unauthorized individuals can gain access to your storage account, potentially reading, writing, or deleting your data. To mitigate these risks, it's essential to rotate your keys regularly and use Azure Key Vault to manage and rotate your keys securely.
 
 - The default value for retention period is 0 (unlimited retention). You can change this value by moving the **Retention (Days)** slider in **Advanced properties** when configuring the storage account for auditing.
   - If you change retention period from 0 (unlimited retention) to any other value, the retention will only apply to logs written after the retention value was changed. Logs written during the period when retention days were set to unlimited retention are preserved, even after retention is enabled.
@@ -72,15 +74,11 @@ To configure writing audit logs to an event hub, select **Event Hub**. Select th
 :::image type="content" source="media/auditing-setup/auditing-select-event-hub.png" alt-text="Screenshot showing the Event hub." lightbox="media/auditing-setup/auditing-select-event-hub.png":::
 
 > [!NOTE]  
-> If you are using multiple targets like storage account, log analytics, or event hub, make sure you have permissions for all the targets else saving audit configuration would fail as it will try to save the settings for all targets.
-
-## Next steps
-
-> [!div class="nextstepaction"]
-> [Use Auditing to analyze audit logs and reports](auditing-analyze-audit-logs.md)
+> If you're using multiple targets like storage account, log analytics, or event hub, make sure you have permissions for all the targets else saving audit configuration would fail as it will try to save the settings for all targets.
 
 ## Related content
 
+- [Use Auditing to analyze audit logs and reports](auditing-analyze-audit-logs.md)
 - [Auditing for Azure SQL Database and Azure Synapse Analytics](auditing-overview.md)
 - [What's New in Azure SQL Auditing](/Shows/Data-Exposed/Whats-New-in-Azure-SQL-Auditing)
 - [Get started with Azure SQL Managed Instance auditing](../managed-instance/auditing-configure.md)
 
@@ -211,29 +211,30 @@ To learn more about Microsoft Entra ID, read [How Azure subscriptions are relate
 `3019` | `ErrorHttpReadData` | `Cannot read response data due to network error.`
 `3076` | `ErrorHttpResourceNotFound` | `The server responded 404, because the key name was not found. Make sure the key name exists in your vault.`
 `3077` | `ErrorHttpOperationForbidden` | `The server responded 403, because the user doesn't have proper permission to perform the action. Make sure you have the permission for the specified operation. At minimum, the connector requires 'get, list, wrapKey, unwrapKey' permissions to function properly.`
-`3100` | `ErrorHttpCreateHttpClientOutOfMemory              ` | `Cannot create a HttpClient for AKV operation due to out of memory.`
-`3101` | `ErrorHttpOpenSession                              ` | `Cannot open a Http session due to network error.`
-`3102` | `ErrorHttpConnectSession                           ` | `Cannot connect a Http session due to network error.`
-`3103` | `ErrorHttpAttemptConnect                           ` | `Cannot attempt a connect due to network error.`
-`3104` | `ErrorHttpOpenRequest                              ` | `Cannot open a request due to network error.`
-`3105` | `ErrorHttpAddRequestHeader                         ` | `Cannot add request header.`
-`3106` | `ErrorHttpSendRequest                              ` | `Cannot send a request due to network error.`
-`3107` | `ErrorHttpGetResponseCode                          ` | `Cannot get a response code due to network error.`
-`3108` | `ErrorHttpResponseCodeUnauthorized                 ` | `Server responded 401 for the request. Make sure the client Id and secret are correct, and the credential string is a concatenation of AAD client Id and secret without hyphens.`
-`3109` | `ErrorHttpResponseCodeThrottled                    ` | `Server has throttled the request.`
-`3110` | `ErrorHttpResponseCodeClientError                   ` | `The request is invalid. This usually means the key name is invalid or contains invalid characters.`
-`3111` | `ErrorHttpResponseCodeServerError                  ` | `Server responded a response code between 500 and 600.`
-`3112` | `ErrorHttpResourceNotFound                         ` | `The server responded 404, because the key name was not found. Please make sure the key name exists in your vault.`
-`3113` | `ErrorHttpOperationForbidden                        ` | `The server responded 403, because the user does not have proper permission to perform the action. Please make sure you have the permission for the specified operation. At minimum,'get, wrapKey, unwrapKey' permissions are required.`
-`3114` | `ErrorHttpQueryHeader                              ` | `Cannot query for response header.`
-`3115` | `ErrorHttpQueryHeaderOutOfMemoryCopyHeader         ` | `Cannot copy the response header due to out of memory.`
-`3116` | `ErrorHttpQueryHeaderOutOfMemoryReallocBuffer      ` | `Cannot query the response header due to out of memory when reallocating a buffer.`
-`3117` | `ErrorHttpQueryHeaderNotFound                      ` | `Cannot find the query header in the response.`
-`3118` | `ErrorHttpQueryHeaderUpdateBufferLength            ` | `Cannot update the buffer length when querying the response header.`
-`3119` | `ErrorHttpReadData                                 ` | `Cannot read response data due to network error.`
-`3120` | `ErrorHttpGetResponseOutOfMemoryCreateTempBuffer   ` | `Cannot get response body due to out of memory when creating a temp buffer.`
-`3121` | `ErrorHttpGetResponseOutOfMemoryGetResultString    ` | `Cannot get response body due to out of memory when get result string.`
-`3122` | `ErrorHttpGetResponseOutOfMemoryAppendResponse     ` | `Cannot get response body due to out of memory when appending response.`
+`3100` | `ErrorHttpCreateHttpClientOutOfMemory` | `Cannot create a HttpClient for AKV operation due to out of memory.`
+`3101` | `ErrorHttpOpenSession` | `Cannot open a Http session due to network error.`
+`3102` | `ErrorHttpConnectSession` | `Cannot connect a Http session due to network error.`
+`3103` | `ErrorHttpAttemptConnect` | `Cannot attempt a connect due to network error.`
+`3104` | `ErrorHttpOpenRequest` | `Cannot open a request due to network error.`
+`3105` | `ErrorHttpAddRequestHeader` | `Cannot add request header.`
+`3106` | `ErrorHttpSendRequest` | `Cannot send a request due to network error.`
+`3107` | `ErrorHttpGetResponseCode` | `Cannot get a response code due to network error.`
+`3108` | `ErrorHttpResponseCodeUnauthorized` | `Server responded 401 for the request. Make sure the client Id and secret are correct, and the credential string is a concatenation of AAD client Id and secret without hyphens.`
+`3109` | `ErrorHttpResponseCodeThrottled` | `Server has throttled the request.`
+`3110` | `ErrorHttpResponseCodeClientError` | `The request is invalid. This usually means the key name is invalid or contains invalid characters.`
+`3111` | `ErrorHttpResponseCodeServerError` | `Server responded a response code between 500 and 600.`
+`3112` | `ErrorHttpResourceNotFound` | `The server responded 404, because the key name was not found. Please make sure the key name exists in your vault.`
+`3113` | `ErrorHttpOperationForbidden` | `The server responded 403, because the user does not have proper permission to perform the action. Please make sure you have the permission for the specified operation. At minimum,'get, wrapKey, unwrapKey' permissions are required.`
+`3114` | `ErrorHttpQueryHeader` | `Cannot query for response header.`
+`3115` | `ErrorHttpQueryHeaderOutOfMemoryCopyHeader` | `Cannot copy the response header due to out of memory.`
+`3116` | `ErrorHttpQueryHeaderOutOfMemoryReallocBuffer` | `Cannot query the response header due to out of memory when reallocating a buffer.`
+`3117` | `ErrorHttpQueryHeaderNotFound` | `Cannot find the query header in the response.`
+`3118` | `ErrorHttpQueryHeaderUpdateBufferLength` | `Cannot update the buffer length when querying the response header.`
+`3119` | `ErrorHttpReadData` | `Cannot read response data due to network error.`
+`3120` | `ErrorHttpGetResponseOutOfMemoryCreateTempBuffer` | `Cannot get response body due to out of memory when creating a temp buffer.`
+`3121` | `ErrorHttpGetResponseOutOfMemoryGetResultString` | `Cannot get response body due to out of memory when get result string.`
+`3122` | `ErrorHttpGetResponseOutOfMemoryAppendResponse` | `Cannot get response body due to out of memory when appending response.`
+`3128` | `ErrorHttpBadRequest` | `The secret and client id are correct but in the wrong format.`
 `3200` | `ErrorGetAADValuesOutOfMemoryConcatPath` | `Cannot get Azure Active Directory challenge header values due to out of memory when concatenating the path.`
 `3201` | `ErrorGetAADDomainUrlStartPosition` | `Cannot find the starting position for Azure Active Directory domain Url in malformatted response challenge header.`
 `3202` | `ErrorGetAADDomainUrlStopPosition` | `Cannot find the ending position for Azure Active Directory domain Url in malformatted response challenge header.`
@@ -314,7 +315,7 @@ To learn more about Microsoft Entra ID, read [How Azure subscriptions are relate
 `3819` | `ErrorPEMCertAuthParamsCreateRequestBody` | `Error creating request body from PEM private key for authentication with AAD.`
 `3820` | `ErrorLegacyPrivateKeyAuthParamsSignAlg` | `Error getting RSA signing algorithm for Legacy private key authentication with AAD.`
 `3821` | `ErrorLegacyPrivateKeyAuthParamsImportForSign` | `Error importing Legacy private key for RSA signing for authentication with AAD.`
-`3822` | `ErrorLegacyPrivateKeyAuthParamsCreateRequestBody       ` | `Error creating request body from Legacy private key for authentication with AAD.`
+`3822` | `ErrorLegacyPrivateKeyAuthParamsCreateRequestBody` | `Error creating request body from Legacy private key for authentication with AAD.`
 `3900` | `ErrorAKVDoesNotExist` | `Error internet name not resolved. This typically indicates the Azure Key Vault is deleted.`
 `4000` | `ErrorCreateKeyVaultRetryManagerOutOfMemory` | `Cannot create a RetryManager for AKV operation due to out of memory.`
 
 
@@ -81,10 +81,15 @@ Sets header values for all URLs matching the specified regex pattern. Users can
 ```
 
 > [!NOTE]
-> Too many headers may impact performance. 
+> Too many headers may impact performance.
+> 
+> The ```X-Frame-Options```default response header will block the ability to embed SSRS reports within an iframe html element. Removing this header from the ```<CustomHeaders />``` advanced server property will allow reports to be used within iframes.  
+> ** It is not recommended to make this change on any report servers that will be hosted on the public internet.**
 
 We recommend validating the configuration of your topology to ensure the set of headers is compatible with your deployment of Reporting Services. It's possible to choose settings that cause errors in browsers if the browsers don't also have the appropriate settings. For example, you shouldn't add an HSTS configuration if your server isn't configured for https. Incompatible headers might result in browser rendering errors.
 
+
+
 #### CustomHeaders XML format
 
 ```xml
 
@@ -45,6 +45,9 @@ You can also run backups on a **default** schedule:
 - Differential backups: every 24 hours
 - Transaction log backups: every 5 minutes
 
+> [!WARNING]  
+> Dropping a database immediately deletes the automated backups for that database, irrespective of the retention period.
+
 ## Backup schedule level
 
 You can schedule backups at
 
@@ -1,9 +1,10 @@
 ---
-title: "What's new in SSMA for Access (AccessToSQL)"
+title: "What's New in SSMA for Access (AccessToSQL)"
 description: Find out about changes to SQL Server Migration Assistant (SSMA) for Access (AccessToSQL) for each release.
 author: cpichuka
 ms.author: cpichuka
-ms.date: 10/16/2024
+ms.reviewer: randolphwest
+ms.date: 04/01/2025
 ms.service: sql
 ms.subservice: ssma
 ms.topic: whats-new
@@ -18,6 +19,10 @@ This article lists SQL Server Migration Assistant (SSMA) for Access changes in e
 
 [!INCLUDE [entra-id](../../includes/entra-id-hard-coded.md)]
 
+## SSMA v10.1
+
+The v10.1 release of SSMA for Access contains minor performance improvements and bug fixes.
+
 ## SSMA v10.0
 
 The v10.0 release of SSMA for Access contains minor performance improvements, bug fixes, and an enhanced help experience.
 
@@ -1,10 +1,10 @@
 ---
-title: "What's new in SSMA for Db2 (Db2ToSQL)"
+title: "What's New in SSMA for Db2 (Db2ToSQL)"
 description: Find out about changes to SQL Server Migration Assistant (SSMA) for Db2 (Db2ToSQL) for each release.
 author: cpichuka
 ms.author: cpichuka
 ms.reviewer: randolphwest
-ms.date: 10/16/2024
+ms.date: 04/01/2025
 ms.service: sql
 ms.subservice: ssma
 ms.topic: whats-new
@@ -19,13 +19,22 @@ This article lists SQL Server Migration Assistant (SSMA) for Db2 changes in each
 
 [!INCLUDE [entra-id](../../includes/entra-id-hard-coded.md)]
 
+## SSMA v10.1
+
+The v10.1 release of SSMA for Db2 contains the following changes:
+
+- Conversion enhancements for identity column from Db2 z/OS to SQL Server 2019
+- Improve conversion of Db2 stored procedure WITH RETURN clause to Azure SQL Database
+- Improve database objects load for Db2
+- Appropriate error handling for conversion of identifier REPLACE(STRING, CHAR,CHAR) in Db2
+
 ## SSMA v10.0
 
-The v10.0 release of SSMA for DB2 contains the following changes:
+The v10.0 release of SSMA for Db2 contains the following changes:
 
 - Improve conversion of FETCH FIRST ROW ONLY syntax
 - Improve conversion support of LOCATE_IN_STRING behavior
-- Support of range-partitioned tables in DB2-ZOS
+- Support of range-partitioned tables in Db2 for z/OS
 - Improve handling of INCLUDE clause in indexes
 
 ## SSMA v9.5
 
@@ -1,10 +1,10 @@
 ---
-title: "What's new in SSMA for MySQL (MySQLToSQL)"
+title: "What's New in SSMA for MySQL (MySQLToSQL)"
 description: Find out about changes to SQL Server Migration Assistant (SSMA) for MySQL (MySQLToSQL) for each release.
 author: cpichuka
 ms.author: cpichuka
 ms.reviewer: randolphwest
-ms.date: 10/16/2024
+ms.date: 04/01/2025
 ms.service: sql
 ms.subservice: ssma
 ms.topic: whats-new
@@ -19,6 +19,10 @@ This article lists SQL Server Migration Assistant (SSMA) for MySQL changes in ea
 
 [!INCLUDE [entra-id](../../includes/entra-id-hard-coded.md)]
 
+## SSMA v10.1
+
+The v10.1 release of SSMA for MySQL contains minor performance improvements and bug fixes.
+
 ## SSMA v10.0
 
 The v10.0 release of SSMA for MySQL contains minor performance improvements, bug fixes, and online help viewer support.