draft complete

dlepow · dlepow · commit 4156171e70e6 · 2026-03-04T08:40:21.000-08:00
diff --git a/articles/api-management/api-management-howto-aad.md b/articles/api-management/api-management-howto-aad.md
@@ -73,19 +73,21 @@ API Management supports external identity providers when you configure them in a
 
 To optionally enable access to the developer portal by external users in your Microsoft Entra ID tenant, complete the following steps:
 
-* Add an external identity provider to your Microsoft Entra ID tenant.
-* Enable self-service sign-up.
+1. Add an external identity provider to your Microsoft Entra ID tenant.
+1. Enable self-service sign-up.
 
-### Add an external identity provider to your Microsoft Entra ID tenant
+### 1. Add an external identity provider to your Microsoft Entra ID tenant
 
-For this scenario, you must enable an external identity provider in your workforce tenant. Configuring the external identity provider depends on the specific provider and is outside the scope of this article. For options and links to steps, see [Identity providers for External ID in workforce tenants](/entra/external-id/identity-providers).
+For this scenario, you must enable an external identity provider in your workforce tenant. Configuring the external identity provider depends on the specific provider and is outside the scope of this article. For example, for Google you must create a project in the Google Developers Console, then configure the project credentials in Microsoft Entra. 
 
-### Enable self-service sign-up
+For options and links to steps, see [Identity providers for External ID in workforce tenants](/entra/external-id/identity-providers).
+
+### 2. Enable self-service sign-up
 
 To allow external users to register for access to the developer portal, complete the following steps:
 
-* Enable self-service sign-up for your tenant. 
-* Add your app to the self-service sign-up user flow. 
+a. Enable self-service sign-up for your tenant. 
+b. Add your app to the self-service sign-up user flow. 
 
 For more information and detailed steps, see [Add self-service sign-up user flows for B2B collaboration](/entra/external-id/self-service-sign-up-user-flow).
 
@@ -96,17 +98,17 @@ For more information and detailed steps, see [Add self-service sign-up user flow
 
 To optionally enable access to the developer portal by users from more than one Microsoft Entra ID tenant, complete the following steps:
 
-* Configure app registration for multiple tenants.
-* Update the Microsoft Entra ID identity provider configuration for the developer portal to add another tenant.
+1. Configure app registration for multiple tenants.
+1. Update the Microsoft Entra ID identity provider configuration for the developer portal to add another tenant.
 
-### Configure app registration for multiple tenants
+### 1. Configure app registration for multiple tenants
 
 The app registration must support multiple tenants. You can configure this support in either of the following ways:
 
 * When creating the app registration, set **Supported account types** to **Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant)**. 
 * If you previously configured an app registration for a single tenant, update the **Supported account types** setting on the **Manage** > **Authentication** page of the app registration.
 
-### Update Microsoft Entra ID identity provider configuration for multiple tenants
+### 2. Update Microsoft Entra ID identity provider configuration for multiple tenants
 
 Update the identity provider configuration to add another tenant:
 
diff --git a/articles/api-management/secure-developer-portal-access.md b/articles/api-management/secure-developer-portal-access.md
@@ -6,7 +6,7 @@ author: dlepow
 
 ms.service: azure-api-management
 ms.topic: concept-article
-ms.date: 12/08/2025
+ms.date: 03/04/2026
 ms.author: danlep
 ms.custom: sfi-image-nochange
 ---
@@ -22,21 +22,16 @@ API Management has a fully customizable, standalone, managed [developer portal](
 
 ## Authentication options
 
-* **External users** - To enable access to the developer portal for external users, use external identity providers enabled through [Microsoft Entra External ID](/entra/external-id/external-identities-overview). 
-    * For example, you want users to access the developer portal by using existing social media accounts.  
-    * The service provides features to enable the end user sign-up and sign-in experience. 
+* **Internal users** - To enable access to the developer portal for internal users, use your corporate (workforce) Microsoft Entra ID tenant. Microsoft Entra ID provides a seamless single sign-on (SSO) experience for corporate users who need to access and discover APIs through the developer portal. 
+
+    For steps to enable Microsoft Entra authentication in the developer portal, see [How to authorize developer accounts by using Microsoft Entra ID in Azure API Management](api-management-howto-aad.md).
     
-    Currently, API Management supports external identity providers when configured in your Microsoft Entra ID workforce tenant, not in an external tenant. For more information, see [How to authorize developer accounts by using Microsoft Entra External ID](api-management-howto-entra-external-id.md).
+* **External users** - To enable access to the developer portal for external users, you can configure [external identity providers](/entra/external-id/identity-providers) in your Microsoft Entra ID workforce tenant. For example, you might want users to sign up and sign in to the developer portal by using existing social media accounts. For more information, see [Enable access by external users in your Microsoft Entra ID tenant](api-management-howto-aad.md#enable-access-by-external-users).
 
     [!INCLUDE [api-management-active-directory-b2c-support](../../includes/api-management-active-directory-b2c-support.md)]
 
     [!INCLUDE [active-directory-b2c-end-of-sale-notice-b](../../includes/active-directory-b2c-end-of-sale-notice-b.md)]
 
-* **Internal users** - To enable access to the developer portal for internal users, use your corporate (workforce) Microsoft Entra ID tenant. Microsoft Entra ID provides a seamless single sign-on (SSO) experience for corporate users who need to access and discover APIs through the developer portal. 
-
-    For steps to enable Microsoft Entra authentication in the developer portal, see [How to authorize developer accounts by using Microsoft Entra ID in Azure API Management](api-management-howto-aad.md).
-    
-
 * **Basic authentication** - Use the built-in developer portal [username and password](developer-portal-basic-authentication.md) provider. This option allows developers to register directly in API Management and sign in by using API Management user accounts. User registration through this option is protected by a CAPTCHA service. 
 
     > [!CAUTION]
