Merge pull request #305086 from MicrosoftDocs/main

Auto Publish – main to live - 2025-09-04 22:00 UTC

Author: learn-build-service-prod[bot]

articles/api-management/enable-availability-zone-support.md

@@ -37,7 +37,7 @@ When you create a new API Management instance in the **Premium** tier in a regio
 - **Manual:** API Management provides manual availability zone support when you explicitly specify which availability zones to use.
 
 > [!IMPORTANT]
-> To ensure the reliability of your API Management instance, we recommend that you use the automatic availability zone support. To achieve maximum zone redundancy, we recommend that you deploy a minimum of three units in each region where you deploy your API Management instances. For more information, see [Reliability in API Management](../reliability/reliability-api-management.md).
+> To ensure the reliability of your API Management instance, we recommend that you use the automatic availability zone support. To achieve maximum zone redundancy, we recommend that you deploy a minimum of two units in each region where you deploy API Management to ensure that an availability zone outage doesn't affect your instance. For more information, see [Reliability in API Management](../reliability/reliability-api-management.md).
 
 ## Manual availability zone support
 

articles/api-management/llm-content-safety-policy.md

@@ -8,7 +8,7 @@ ms.service: azure-api-management
 ms.collection: ce-skilling-ai-copilot
 ms.custom:
 ms.topic: reference
-ms.date: 03/04/2025
+ms.date: 09/03/2025
 ms.update-cycle: 180-days
 ms.author: danlep
 ---
@@ -36,7 +36,7 @@ Use the policy in scenarios such as the following:
 ## Policy statement
 
 ```xml
-<llm-content-safety backend-id="name of backend entity" shield-prompt="true | false" >
+<llm-content-safety backend-id="name of backend entity" shield-prompt="true | false" enforce-on-completions="true | false">
     <categories output-type="FourSeverityLevels | EightSeverityLevels">
         <category name="Hate | SelfHarm | Sexual | Violence" threshold="integer" />
         <!-- If there are multiple categories, add more category elements -->
@@ -56,6 +56,7 @@ Use the policy in scenarios such as the following:
 | -------------- | ----------------------------------------------------------------------------------------------------- | -------- | ------- |
 | backend-id	| Identifier (name) of the Azure AI Content Safety backend to route content-safety API calls to. Policy expressions are allowed.	|  Yes	| N/A |
 | shield-prompt	| If set to `true`, content is checked for user attacks. Otherwise, skip this check. Policy expressions are allowed.	| No	| `false` |
+| enforce-on-completions| If set to `true`, content safety checks are enforced on chat completions for response validation. Otherwise, skip this check. Policy expressions are allowed.	| No	| `false` |
 
 
 ## Elements

articles/iot-edge/quickstart-linux.md

@@ -1,14 +1,16 @@
 ---
 title: "Quickstart: Create an Azure IoT Edge Device on Linux"
-description: Learn to configure an Azure IoT Edge device on Linux. This guide walks you through creating an IoT Hub, registering a device, and deploying a simulated sensor module.
-#customer intent: As a developer, I want to create an IoT Edge device on Linux so that I can deploy and test containerized modules.
+description: Learn how to configure an Azure IoT Edge device on Linux. This guide walks you through creating an IoT Hub, registering a device, and deploying a simulated sensor module.
 author: sethmanheim
 ms.author: sethm
-ms.date: 03/27/2025
+ms.date: 09/04/2025
 ms.topic: quickstart
 ms.service: azure-iot-edge
 services: iot-edge
 ms.custom: mvc, devx-track-azurecli, mode-other, linux-related-content
+
+#customer intent: As a developer, I want to create an IoT Edge device on Linux so that I can deploy and test containerized modules.
+
 ---
 
 # Quickstart: Deploy your first IoT Edge module to a virtual Linux device
@@ -39,7 +41,7 @@ Set up your environment for the Azure CLI.
 A resource group to manage all the resources you use in this quickstart. This quickstart and the following tutorials use the example resource group name **IoTEdgeResources**.
 
    ```azurecli-interactive
-   `az group create --name IoTEdgeResources --location westus2`
+   az group create --name IoTEdgeResources --location westus2
    ```
 
 ## Create an IoT Hub

articles/logic-apps/authenticate-with-managed-identity.md

@@ -1156,7 +1156,7 @@ This example shows the underlying connection resource definition for a connector
     "properties": {
         "alternativeParameterValues": {},
         "api": {
-            "id": "[subscriptionResourceId('Microsoft.Web/locations/managedApis', parameters('location'), 'azureautomation')]"
+            "id": "[subscriptionResourceId('Microsoft.Web/locations/managedApis', parameters('location'), '<connector-name>')]"
         },
         "authenticatedUser": {},
         "connectionState": "Enabled",
@@ -1184,19 +1184,18 @@ This example shows the underlying connection resource definition for a connector
     "location": "[parameters('location')]",
     "kind": "V1",
     "properties": {
-        "alternativeParameterValues":{},
+        "alternativeParameterValues": {},
         "api": {
-            "id": "[subscriptionResourceId('Microsoft.Web/locations/managedApis', parameters('location'), 'azureblob')]"
+            "id": "[subscriptionResourceId('Microsoft.Web/locations/managedApis', parameters('location'), '<connector-name>')]"
         },
         "authenticatedUser": {},
         "connectionState": "Enabled",
         "customParameterValues": {},
         "displayName": "[variables('connections_<connector-name>_name')]",
-        "parameterValueSet":{
+        "parameterValueSet": {
             "name": "managedIdentityAuth",
             "values": {}
-        },
-        "parameterValueType": "Alternative"
+        }
     }
 }
 ```
@@ -1216,8 +1215,8 @@ This example shows the underlying connection resource definition for a connector
 ```json
 {
     "type": "Microsoft.Web/connections",
-    "name": "[variables('connections_<connector-name>_name')]",
     "apiVersion": "[providers('Microsoft.Web','connections').apiVersions[0]]",
+    "name": "[variables('connections_<connector-name>_name')]",
     "location": "[parameters('location')]",
     "kind": "V2",
     "properties": {
@@ -1251,19 +1250,18 @@ This example shows the underlying connection resource definition for a connector
     "location": "[parameters('location')]",
     "kind": "V2",
     "properties": {
-        "alternativeParameterValues":{},
+        "alternativeParameterValues": {},
         "api": {
             "id": "[subscriptionResourceId('Microsoft.Web/locations/managedApis', parameters('location'), '<connector-name>')]"
         },
         "authenticatedUser": {},
         "connectionState": "Enabled",
         "customParameterValues": {},
         "displayName": "[variables('connections_<connector-name>_name')]",
-        "parameterValueSet":{
+        "parameterValueSet": {
             "name": "managedIdentityAuth",
             "values": {}
-        },
-        "parameterValueType": "Alternative"
+        }
     }
 }
 ```

articles/oracle/oracle-db/oracle-database-network-plan.md

@@ -35,11 +35,13 @@ Advanced network features enhance the virtual networking experience, offering im
 * Germany West Central
 * Italy North 
 * Japan East
+* Japan West
 * North Europe
 * South Central US
 * Southeast Asia
 * Spain Central
 * Sweden Central
+* UAE Central
 * UAE North
 * UK South 
 * UK West

articles/oracle/oracle-db/oracle-database-regions.md

@@ -52,6 +52,7 @@ The list below mentions the Azure and corresponding OCI regions with the regiona
 | Sweden Central | 	Sweden Central (Stockholm) | ✓  | | | |  |   Dual    |
 | UK South             | UK South (London)   | ✓   | ✓   | ✓ | ✓| Preview available | Dual|
 | UK West | UK West (Newport)	   | ✓   | ✓  | | ✓| |  Single |
+| UAE Central | UAE Central (Abu Dhabi) | ✓  | | | |  |   Single    |
 | UAE North | UAE North (Dubai) | ✓  | | | |  |   Single    |
 
 

articles/partner-solutions/mongo-db/toc.yml

@@ -19,7 +19,7 @@ items:
   - name: Manage a resource
     href: manage.md
   - name: Troubleshoot a resource
-    href: /troubleshoot/azure/partner-solutions/welcome-native-integrations
+    href: /troubleshoot/azure/partner-solutions/marketplace-purchases-errors
   - name: Get support
     href: https://www.mongodb.com/company/contact
 - name: Reference

articles/partner-solutions/neon/toc.yml

@@ -19,7 +19,7 @@ items:
   - name: Get support
     href: https://neon.tech/docs/introduction/support
   - name: Troubleshoot 
-    href: /troubleshoot/azure/partner-solutions/welcome-native-integrations
+    href: /troubleshoot/azure/partner-solutions/marketplace-purchases-errors
   - name: Connect to compute services
     href: create-service-connection.md
 - name: SDKs and tools

articles/partner-solutions/nginx/toc.yml

@@ -19,5 +19,6 @@ items:
   - name: Get support
     href: https://my.f5.com/manage/s/
   - name: Troubleshoot
-    href: /troubleshoot/azure/partner-solutions/welcome-native-integrations
+    href: /troubleshoot/azure/partner-solutions/marketplace-purchases-errors
+  
 

articles/partner-solutions/palo-alto/manage.md

@@ -2,7 +2,7 @@
 title: Manage a Cloud Next-Generation Firewall (NGFW) by Palo Alto Networks Resource by Using the Azure portal
 description: Manage your Cloud NGFW resource in the Azure portal, including networking, NAT, rulestack settings, logging, Domain Name System (DNS) proxy configuration, and billing plan changes.
 ms.topic: how-to
-ms.date: 06/26/2025
+ms.date: 08/21/2025
 ms.custom:
   - ai-gen-docs-bap
   - ai-gen-desc
@@ -29,9 +29,135 @@ You can view and change settings by selecting one of the following settings cate
 - Properties 
 - Locks
 
+## Networking & NAT
+
+Select **Networking & NAT** under **Settings** in the left pane.
+- In the **Networking** section, you can view networking settings. 
+- To add prefixes to the private traffic range, select **Edit**, select the **Additional Prefixes** checkbox, and then add the prefixes in the resulting text box.
+- In the **Source Network Address Translation (SNAT)** section, you can make changes by selecting the **Edit** button. You can then update the **Public IP Addresses**, select or clear the **Use the above Public IP addresses** checkbox, or update the **Source NAT Public IPs**. 
+- In the **Destination Network Address Translation (DNAT)** section, you can make changes by selecting the **Edit** button. You can then add a frontend setting by selecting the **Add** button and providing a **Name**, **Protocol**, **Frontend IP**, **Frontend Port**, **Backend IP**, and **Backend Port**. You can also modify existing settings in this section. 
+- In the **Private Source NAT** section, you can add a destination address by selecting the **Edit** button and then adding the address in the **Private Source NAT Destination Address** box. Private Source NAT replaces the source IP address with the trusted firewall IP address. 
+
+## Security Policies
+
+To view these settings, select **Security Policies** under **Settings** in the left pane.
+
+The settings that you see on this tab depend on how your security policies are managed.
+
+### Azure Rulestack
+
+If your security policies are managed by an Azure rulestack, you see the settings described in this section. 
+
+1. In **Local Rulestack**, select an existing rulestack from the dropdown list.
+1. To manage settings for a rulestack, select the rulestack name under **Local Rulestack**. This action takes you to the local rulestack page. In the left pane, you see the following settings categories under **Resources**:
+   - Rules
+   - Security Services
+   - Prefix List
+   - FDQN List
+   - Certificates
+   - Deployment
+   - Managed Identity 
+
+#### Rules
+
+Select **Rules** under **Resources** in the left pane of the local rulestack page. A page appears that shows local rules and allows you to add, delete, and configure them. 
+   - To edit a rule, select the checkbox next to it and then select **Edit**. A pane showing the configured parameters for the rule appears. You can edit the parameters. 
+   - To add a rule, select **Add**. A pane that allows you to configure and validate the parameters appears. 
+   - To delete a rule, select the checkbox next to it and then select **Delete**. 
+
+#### Security Services
+
+Select **Security Services** under **Resources** in the left pane of the local rulestack page. 
+   - Under **Advanced Threat Prevention**, you can enable, disable, and configure vulnerability protection, anti-spyware, antivirus, and file blocking profiles.  
+   - Under **Advanced URL Filtering**, you can enable, disable, and configure URL access management profiles. 
+   - Under **DNS Security**, you can enable, disable, and configure DNS security profiles. 
+   - Under **Encrypted Threat Protection**, you can manage egress decryption settings.
+
+#### Prefix List
+
+ Select **Prefix List** under **Resources** in the left pane of the local rulestack page. A page appears that shows prefixes and allows you to add, delete, and configure them.
+   - To edit a prefix, select the checkbox next to it and then select **Edit**. A pane showing the name, description, and address of the prefix appears. You can edit and validate the configuration.
+   - To add a prefix, select the **Add** button. A pane that allows you to enter a name, description, and address appears. You can also validate the parameters. 
+   - To delete a prefix, select the checkbox next to it and then select **Delete**.
+
+#### FQDN List 
+
+Select **FQDN List** under **Resources** in the left pane of the local rulestack page. A page appears that slows FQDNs and allows you to add, delete, and configure them. 
+   - To edit an FQDN, select the checkbox next to it and then select **Edit**. A pane showing the configured name, description, and FQDN appears. You can edit and validate the configuration. 
+   - To add an FQDN, select the **Add** button. A pane that allows you to enter a name, description, and FQDN appears. You can also validate the parameters. 
+   - To delete an FQDN, select the checkbox next to it and then select **Delete**.
+
+#### Certificates
+
+Select **Certificates** under **Resources** in the left pane of the local rulestack page. A page appears that shows certificates and allows you to add, delete, and configure them. 
+   - To add a certificate, select the **Add** button. A pane that allows you to configure the certificate appears. You can select the certificate from a key vault or paste in a URL. You can also add self-signed certificates. 
+   - To edit a certificate, select the checkbox next to it and then select **Edit**. You can edit and validate the configuration.
+   - To delete a certificate, select the checkbox next to it and then select **Delete**. 
+ 
+#### Deployment
+
+Select **Deployment** under **Resources** in the left pane of the local rulestack page. 
+   - On the **Deployment** page, select **Deploy Configuration** to deploy changes that you made to the rulestack. 
+   - Select **Revert** to remove all changes made since the last deployed configuration.
+
+#### Managed Identity
+
+1. Select **Managed Identity** under **Resources** in the left pane of the local rulestack page. 
+1. On the **Managed Identity** page, you can enable or disable managed identity. 
+   - To enable managed identity, select **Enable MI** and then select an identity in the **Identity** list. 
+   - To disable managed identity, clear the **Enable MI** checkbox. 
+
+### Strata Cloud Manager
+
+If your security policies are managed by Strata Cloud Manager, you can view the **SCM Tenant ID** on the **Security Policies** tab.   
+
+### Panorama
+
+If your security policies are managed by Panorama, you can change the **Panorama Registration String** on the **Security Policies** tab.
+
+You can also view the following setting on this tab: 
+
+- Panorama IP 1
+- Panorama IP 2
+- Device Group
+- Template Name
+
+## Log Settings
+
+1. Select **Log Settings** under **Settings** in the left pane.
+1. Select **Edit** to enable **Log Settings**.
+1. Select the **Enable Log Settings** checkbox.
+1. In **Log Settings**, select the settings.
+
+## DNS Proxy
+
+1. Select **DNS Proxy** under **Settings** the left pane.
+1. You can enable or disable **DNS Proxy** by selecting the appropriate option. 
+
+## Rules
+
+1. Select **Rules** under **Settings** in the left pane.
+1. You can view a list of existing rules on the **Rules** page. You can also search for rules. 
+1. To view configured parameters for a rule, double-click the rule. 
+
+> [!NOTE]
+> If your security policies are managed by Panorama, your rules won't appear on this tab. You can view them in Panorama. 
+
+## Properties 
+
+1. Select **Properties** under **Settings** in the left pane.
+1. On the **Properties** page, you can view various properties of the firewall, including essentials like the ID, name, and location, the network profile, DNS settings, and plan data. 
+
+## Locks
+
+1. Select **Locks** under **Settings** in the left pane.
+1. On the **Locks** page, you can view a list of locks. 
+    - To edit a lock, select the **Edit** button next to the lock. You can also delete a lock. 
+    - To add a lock, select **Add** and then enter a **Lock name**, **Lock type**, and, optionally, **Notes**. 
+
 ## Change plan
 
-To change the Cloud NGFW's billing plan, go to **Overview** and select **Change Plan**.
+To change the Cloud NGFW's billing plan, select **Overview** in the left pane and then select **Change Plan**.
 
 ## Delete a resource