Apply quotation mark rules from SKILL.md to PowerShell commands

Author: msmbaldwin

articles/key-vault/general/apps-api-keys-secrets.md

@@ -135,9 +135,9 @@ New-AzScheduledQueryRule -ResourceGroupName "<resource-group>" `
     -Action `
         (New-AzScheduledQueryRuleAction -Severity 3 -Trigger `
             (New-AzScheduledQueryRuleTriggerCondition -ThresholdOperator GreaterThan -Threshold 0 -MetricTrigger `
-                (New-AzScheduledQueryRuleMetricTrigger -MetricName "UnauthorizedAccess" -MetricResourceId <log-analytics-workspace-resource-id> -TimeAggregation "Count" -Operator "GreaterThan" -Threshold 0))) `
+                (New-AzScheduledQueryRuleMetricTrigger -MetricName "UnauthorizedAccess" -MetricResourceId "<log-analytics-workspace-resource-id>" -TimeAggregation "Count" -Operator "GreaterThan" -Threshold 0))) `
     -Source `
-        (New-AzScheduledQueryRuleSource -Query "AzureDiagnostics | where ResourceType == 'VAULTS' | where OperationName == 'SecretGet' | where ResultSignature == 'Unauthorized'" -DataSourceId <log-analytics-workspace-resource-id>) `
+        (New-AzScheduledQueryRuleSource -Query "AzureDiagnostics | where ResourceType == 'VAULTS' | where OperationName == 'SecretGet' | where ResultSignature == 'Unauthorized'" -DataSourceId "<log-analytics-workspace-resource-id>") `
     -Schedule `
         (New-AzScheduledQueryRuleSchedule -FrequencyInMinutes 5 -TimeWindowInMinutes 5) `
     -Description "Alert for unauthorized access attempts to Key Vault secrets"

articles/key-vault/general/assign-access-policy.md

@@ -128,13 +128,13 @@ Determine the object ID of the application, group, or user to which you want to
 - Applications and other service principals: use the [Get-AzADServicePrincipal](/powershell/module/az.resources/get-azadserviceprincipal) cmdlet with the `-SearchString` parameter to filter results to the name of the desired service principal:
 
     ```azurepowershell-interactive
-    Get-AzADServicePrincipal -SearchString <search-string>
+    Get-AzADServicePrincipal -SearchString "<search-string>"
     ```
 
 - Groups: use the [Get-AzADGroup](/powershell/module/az.resources/get-azadgroup) cmdlet with the `-SearchString` parameter to filter results to the name of the desired group:
 
     ```azurepowershell-interactive
-    Get-AzADGroup -SearchString <search-string>
+    Get-AzADGroup -SearchString "<search-string>"
     ```
     
     In the output, the object ID is listed as `Id`.
@@ -152,7 +152,7 @@ Determine the object ID of the application, group, or user to which you want to
 Use the [Set-AzKeyVaultAccessPolicy](/powershell/module/az.keyvault/set-azkeyvaultaccesspolicy) cmdlet to assign the access policy:
 
 ```azurepowershell-interactive
-Set-AzKeyVaultAccessPolicy -VaultName <vault-name> -ObjectId <object-id> -PermissionsToSecrets <secrets-permissions> -PermissionsToKeys <keys-permissions> -PermissionsToCertificates <certificate-permissions    
+Set-AzKeyVaultAccessPolicy -VaultName "<vault-name>" -ObjectId "<object-id>" -PermissionsToSecrets <secrets-permissions> -PermissionsToKeys <keys-permissions> -PermissionsToCertificates <certificate-permissions>    
 ```
 
 You need only include `-PermissionsToSecrets`, `-PermissionsToKeys`, and `-PermissionsToCertificates` when assigning permissions to those particular types. The allowable values for `<secret-permissions>`, `<key-permissions>`, and `<certificate-permissions>` are given in the [Set-AzKeyVaultAccessPolicy - Parameters](/powershell/module/az.keyvault/set-azkeyvaultaccesspolicy#parameters) documentation.

articles/key-vault/general/key-vault-recovery.md

@@ -277,7 +277,7 @@ For more information about soft-delete, see [Azure Key Vault soft-delete overvie
 * Delete key vault
 
     ```azurepowershell
-    Remove-AzKeyVault -VaultName '<vault-name>'
+    Remove-AzKeyVault -VaultName "<vault-name>"
     ```
 
 * List all soft-deleted key vaults
@@ -289,19 +289,19 @@ For more information about soft-delete, see [Azure Key Vault soft-delete overvie
 * Recover soft-deleted key-vault
 
     ```azurepowershell
-    Undo-AzKeyVaultRemoval -VaultName <vault-name> -ResourceGroupName <resource-group> -Location <location>
+    Undo-AzKeyVaultRemoval -VaultName "<vault-name>" -ResourceGroupName "<resource-group>" -Location "<location>"
     ```
 
 * Purge soft-deleted key-vault **(WARNING! THIS OPERATION WILL PERMANENTLY DELETE YOUR KEY VAULT)**
 
     ```azurepowershell
-    Remove-AzKeyVault -VaultName <vault-name> -InRemovedState -Location <location>
+    Remove-AzKeyVault -VaultName "<vault-name>" -InRemovedState -Location "<location>"
     ```
 
 * Enable purge-protection on key-vault
 
     ```azurepowershell
-    Update-AzKeyVault -VaultName <vault-name> -ResourceGroupName <resource-group> -EnablePurgeProtection
+    Update-AzKeyVault -VaultName "<vault-name>" -ResourceGroupName "<resource-group>" -EnablePurgeProtection
     ```
 
 ## Certificates (PowerShell)
@@ -315,25 +315,25 @@ For more information about soft-delete, see [Azure Key Vault soft-delete overvie
 * Delete a Certificate
 
   ```azurepowershell
-  Remove-AzKeyVaultCertificate -VaultName <vault-name> -Name '<certificate-name>'
+  Remove-AzKeyVaultCertificate -VaultName "<vault-name>" -Name "<certificate-name>"
   ```
 
 * List all deleted certificates in a key vault
 
   ```azurepowershell
-  Get-AzKeyVaultCertificate -VaultName <vault-name> -InRemovedState
+  Get-AzKeyVaultCertificate -VaultName "<vault-name>" -InRemovedState
   ```
 
 * Recover a certificate in the deleted state
 
   ```azurepowershell
-  Undo-AzKeyVaultCertificateRemoval -VaultName <vault-name> -Name '<certificate-name>'
+  Undo-AzKeyVaultCertificateRemoval -VaultName "<vault-name>" -Name "<certificate-name>"
   ```
 
 * Purge a soft-deleted certificate **(WARNING! THIS OPERATION WILL PERMANENTLY DELETE YOUR CERTIFICATE)**
 
   ```azurepowershell
-  Remove-AzKeyVaultcertificate -VaultName <vault-name> -Name '<certificate-name>' -InRemovedState
+  Remove-AzKeyVaultcertificate -VaultName "<vault-name>" -Name "<certificate-name>" -InRemovedState
   ```
 
 ## Keys (PowerShell)
@@ -347,25 +347,25 @@ For more information about soft-delete, see [Azure Key Vault soft-delete overvie
 * Delete a key
 
   ```azurepowershell
-  Remove-AzKeyVaultKey -VaultName <vault-name> -Name '<key-name>'
+  Remove-AzKeyVaultKey -VaultName "<vault-name>" -Name "<key-name>"
   ```
 
 * List all deleted keys in a key vault
 
   ```azurepowershell
-  Get-AzKeyVaultKey -VaultName <vault-name> -InRemovedState
+  Get-AzKeyVaultKey -VaultName "<vault-name>" -InRemovedState
   ```
 
 * To recover a soft-deleted key
 
     ```azurepowershell
-    Undo-AzKeyVaultKeyRemoval -VaultName <vault-name> -Name <key-name>
+    Undo-AzKeyVaultKeyRemoval -VaultName "<vault-name>" -Name "<key-name>"
     ```
 
 * Purge a soft-deleted key **(WARNING! THIS OPERATION WILL PERMANENTLY DELETE YOUR KEY)**
 
     ```azurepowershell
-    Remove-AzKeyVaultKey -VaultName <vault-name> -Name <key-name> -InRemovedState
+    Remove-AzKeyVaultKey -VaultName "<vault-name>" -Name "<key-name>" -InRemovedState
     ```
 
 ## Secrets (PowerShell)
@@ -379,25 +379,25 @@ For more information about soft-delete, see [Azure Key Vault soft-delete overvie
 * Delete a secret named SQLPassword
 
   ```azurepowershell
-  Remove-AzKeyVaultSecret -VaultName <vault-name> -Name <secret-name>
+  Remove-AzKeyVaultSecret -VaultName "<vault-name>" -Name "<secret-name>"
   ```
 
 * List all deleted secrets in a key vault
 
   ```azurepowershell
-  Get-AzKeyVaultSecret -VaultName <vault-name> -InRemovedState
+  Get-AzKeyVaultSecret -VaultName "<vault-name>" -InRemovedState
   ```
 
 * Recover a secret in the deleted state
 
   ```azurepowershell
-  Undo-AzKeyVaultSecretRemoval -VaultName <vault-name> -Name <secret-name>
+  Undo-AzKeyVaultSecretRemoval -VaultName "<vault-name>" -Name "<secret-name>"
   ```
 
 * Purge a secret in deleted state **(WARNING! THIS OPERATION WILL PERMANENTLY DELETE YOUR KEY)**
 
   ```azurepowershell
-  Remove-AzKeyVaultSecret -VaultName <vault-name> -Name <secret-name> -InRemovedState 
+  Remove-AzKeyVaultSecret -VaultName "<vault-name>" -Name "<secret-name>" -InRemovedState 
   ```
 ---
 

articles/key-vault/general/rbac-guide.md

@@ -147,10 +147,10 @@ To create a role assignment using Azure PowerShell, use the [New-AzRoleAssignmen
 
 ```azurepowershell
 #Assign by User Principal Name
-New-AzRoleAssignment -RoleDefinitionName <role-name> -SignInName <user-principal-name> -Scope <scope>
+New-AzRoleAssignment -RoleDefinitionName "<role-name>" -SignInName <user-principal-name> -Scope "<scope>"
 
 #Assign by Service Principal ApplicationId
-New-AzRoleAssignment -RoleDefinitionName Reader -ApplicationId <application-id> -Scope <scope>
+New-AzRoleAssignment -RoleDefinitionName "Reader" -ApplicationId <application-id> -Scope "<scope>"
 ```
 
 For full details, see [Assign Azure roles using Azure PowerShell](/azure/role-based-access-control/role-assignments-powershell).
@@ -194,10 +194,10 @@ For full details, see [Assign Azure roles using Azure CLI](/azure/role-based-acc
 
 ```azurepowershell
 #Assign by User Principal Name
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Reader' -SignInName <user-principal-name> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Reader" -SignInName <user-principal-name> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>"
 
 #Assign by Service Principal ApplicationId
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Reader' -ApplicationId <application-id> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Reader" -ApplicationId <application-id> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>"
 ```
 For full details, see [Assign Azure roles using Azure PowerShell](/azure/role-based-access-control/role-assignments-powershell).
 
@@ -233,10 +233,10 @@ For full details, see [Assign Azure roles using Azure CLI](/azure/role-based-acc
 
 ```azurepowershell
 #Assign by User Principal Name
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Secrets Officer' -SignInName <user-principal-name> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Secrets Officer" -SignInName <user-principal-name> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>"
 
 #Assign by Service Principal ApplicationId
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Secrets Officer' -ApplicationId <application-id> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Secrets Officer" -ApplicationId <application-id> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>"
 ```
 
 For full details, see [Assign Azure roles using Azure PowerShell](/azure/role-based-access-control/role-assignments-powershell).
@@ -280,10 +280,10 @@ For full details, see [Assign Azure roles using Azure CLI](/azure/role-based-acc
 
 ```azurepowershell
 #Assign by User Principal Name
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Secrets Officer' -SignInName <user-principal-name> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>/secrets/RBACSecret
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Secrets Officer" -SignInName <user-principal-name> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>/secrets/RBACSecret"
 
 #Assign by Service Principal ApplicationId
-New-AzRoleAssignment -RoleDefinitionName 'Key Vault Secrets Officer' -ApplicationId <application-id> -Scope /subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>/secrets/RBACSecret
+New-AzRoleAssignment -RoleDefinitionName "Key Vault Secrets Officer" -ApplicationId <application-id> -Scope "/subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.KeyVault/vaults/<vault-name>/secrets/RBACSecret"
 ```
 
 For full details, see [Assign Azure roles using Azure PowerShell](/azure/role-based-access-control/role-assignments-powershell).

articles/key-vault/general/tutorial-net-virtual-machine.md

@@ -96,8 +96,8 @@ Note the system-assigned identity that's displayed in the following code. The ou
 # [Azure PowerShell](#tab/azurepowershell)
 
 ```azurepowershell
-$vm = Get-AzVM -Name <vm-name>
-Update-AzVM -ResourceGroupName <resource-group> -VM $vm -IdentityType SystemAssigned
+$vm = Get-AzVM -Name "<vm-name>"
+Update-AzVM -ResourceGroupName "<resource-group>" -VM $vm -IdentityType SystemAssigned
 ```
 
 Note the PrincipalId that's displayed in the following code. The output of the preceding command would be: