Merge pull request #27121 from MicrosoftDocs/main

Publish main to live, Tuesday 3:30PM PST, 12/03

Author: Stacyrch140

copilot/copilot-prompt-gallery.md

@@ -5,7 +5,7 @@ f1.keywords:
 ms.author: camillepack
 author: camillepack
 manager: scotv
-ms.date: 10/20/2024
+ms.date: 12/03/2024
 audience: Admin
 ms.topic: how-to
 ms.service: microsoft-365-copilot
@@ -39,8 +39,10 @@ Copilot Prompt Gallery processes and manages data in a structured manner to ensu
 
 :::image type="content" source="media/copilot-prompt-gallery-diagram.png" alt-text="Diagram showing the data flow for Copilot Prompt Gallery." lightbox="media/copilot-prompt-gallery-diagram.png":::
 
-- Copilot Prompt Gallery is both a website and a feature of Copilot that allows users to discover, manage, use, and share Copilot prompts.
-- A user accesses Copilot Prompt Gallery, either via the Copilot Prompt Gallery website or in Copilot through an app.
-- Copilot Prompt Gallery accesses Microsoft-authored prompts from the public catalog.
-- Copilot Prompt Gallery accesses user-created prompts from user, group, and tenant collections in the Microsoft 365 Substrate data store.
-- The prompts are stored in collections within the Substrate Data Store, which is a storage type that allows applications to store files and data and enables efficient indexing and search. There are collections for users, groups, and tenants, all of which are within the tenant boundary. All data is encrypted, transported via a secure pipeline, and is accessible only via Substrate APIs.
+Copilot Prompt Gallery is both a website and a feature of Copilot that allows users to discover, manage, use, and share Copilot prompts:
+
+1. A user accesses Copilot Prompt Gallery, either via the Copilot Prompt Gallery website or in Copilot through an app.
+2. Copilot Prompt Gallery accesses Microsoft-authored prompts from the public catalog.
+3. Copilot Prompt Gallery accesses user-created prompts from user, group, and tenant collections in the Microsoft 365 Substrate data store.
+
+The prompts are stored in collections within the Substrate Data Store, which is a storage type that allows applications to store files and data and enables efficient indexing and search. There are collections for users, groups, and tenants, all of which are within the tenant boundary. All data is encrypted, transported via a secure pipeline, and is accessible only via Substrate APIs.

copilot/media/copilot-prompt-gallery-diagram.png

@@ -36,15 +36,13 @@ The following workloads are included in ADR. For more information, see:
 - [Office for the Web](m365-dr-workload-office-for-web.md)
 - [Viva Connections](m365-dr-workload-viva-connections.md)
 - [Viva Topics](m365-dr-workload-viva-topics.md)*
-- [Microsoft Purview](m365-dr-workload-purview.md)
-  - [Audit (Standard)](m365-dr-workload-purview.md#purview-audit-standard)
-  - [Audit (Premium)](m365-dr-workload-purview.md#purview-audit-premium)
-  - [Data Retention](m365-dr-workload-purview.md#data-lifecycle-management---data-retention)
-  - [Microsoft Purview Records Management](m365-dr-workload-purview.md#data-lifecycle-management---records-management)
-  - [Sensitivity Labels](m365-dr-workload-purview.md#information-protection---sensitivity-labels)
-  - [Data Loss Prevention](m365-dr-workload-purview.md#information-protection---data-loss-prevention-dlp)
-  - [Office Message Encryption](m365-dr-workload-purview.md#information-protection---office-message-encryption)
-  - [Information Barriers](m365-dr-workload-purview.md#risk-and-compliance---information-barriers)
+- [Microsoft Purview](m365-dr-workload-purview.md)**
+  - [Data Loss Prevention](m365-dr-workload-purview.md#data-security---data-loss-prevention-dlp)
+  - [Information Barriers](m365-dr-workload-purview.md#data-security---information-barriers)
+  - [Information Protection (MIP)](m365-dr-workload-purview.md#data-security---information-protection-mip)
+  - [Audit (Standard)](m365-dr-workload-purview.md#risk--compliance---audit-standard)
+  - [Audit (Premium)](m365-dr-workload-purview.md#risk--compliance---audit-premium)
+  - [Data Lifecycle Management (DLM)](m365-dr-workload-purview.md#risk--compliance---data-lifecycle-management-dlm)
 
 > [!NOTE]
 > *Viva Topics will be retired on February 22, 2025. Therefore, as of October 31, 2024, Viva Topics will no longer be a supported workload in ADR. Starting with the upcoming local region launches in Taiwan and New Zealand, Viva Topics customer data will not be migrated to new local regions, nor will new customers have Viva Topics stored in existing local regions. For more details, please visit [aka.ms/TopicsFebSupport](https://aka.ms/TopicsFebSupport).

microsoft-365/enterprise/advanced-data-residency.md

@@ -3,7 +3,7 @@ title: "Engineering Direct Portal in the Microsoft 365 Admin Center"
 author: kelleyvice-msft
 ms.author: kvice  
 manager: scotv
-ms.date: 10/31/2024
+ms.date: 12/03/2024
 ms.topic: article
 ms.service: microsoft-365-enterprise
 ms.subservice: administration
@@ -93,7 +93,12 @@ In this section:
 - [Validate DKIM Signing Configuration](#validate-dkim-signing-configuration)
 - [Auto Archive Detection](#auto-archive-detection)
 - [Remediate a Compromised Account](#remediate-a-compromised-account)
+
+- [Audit Log Summary](#audit-log-summary)
+
+<!---
 - [Guest Access in Teams](#guest-access-in-teams)
+- -->
 
 ### Visual Mail Flow
 
@@ -326,6 +331,27 @@ This diagnostic is split into multiple sections that detail steps to remediate t
 
 If the user still shows signs of being compromised, reach out to Microsoft Support for further help.
 
+### Audit Log Summary
+
+The audit log summary provides a comprehensive overview or count of the activities tracked within your tenant’s audit log. This diagnostic tool is useful for reviewing admin actions, identifying unusual administrative activity, or investigating potential rogue administrators. 
+
+#### Inputs 
+
+- Search the number of days prior to the current date (max 30 days)
+
+  - If you enter 10, the diagnostic will review the log for up to 10 days prior to the current date
+  
+  - If left blank, the diagnostic will run with the value of 7 days 
+  
+#### Outputs 
+
+The output is split into two sections: 
+
+1. Users with High Activity – Users who have performed a specific action at a much higher rate than the average user will be listed here, along with the count of each action they have taken. 
+
+1. Full User List – All users, along with a list of their activities and corresponding counts, will be displayed here in alphabetical order. Actions performed by apps will be grouped together. 
+
+<!---
 ### Guest Access in Teams
 
 The **Guest Access Diagnostic for Microsoft Teams** helps troubleshoot various issues that may hinder guests from accessing a team, such as inviting guests, accessing team content, and using specific guest features. Since guest settings are managed at both organizational and team levels, this diagnostic checks for any misconfigurations that could impact guest access. It aggregates these issues and presents them in one place, with each misconfigured setting accompanied by guidance for admins. Additionally, the diagnostic assesses the provisioning of guest user accounts. It also allows for optional inputs at org, team and user levels, giving you the flexibility to customize the output you receive.
@@ -364,6 +390,7 @@ In addition, this diagnostic also displays some settings that could affect your
 This diagnostic should assist to resolve your guest access issues and provide a seamless guest experience in Teams.  
 
 If problems persist, reach out to Microsoft support for assistance. 
+-->
 
 ## More information
 

microsoft-365/enterprise/engineering-direct-portal.md

@@ -83,70 +83,97 @@ The following customer data is stored at rest in the _Local Region Geography_:
 
 ## Microsoft Purview
 
-### Purview Audit (Standard)
+### Data Loss Prevention (DLP)
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Service configuration data, audited Activities, audit Records, and audit log query permissions
+- DLP Admin Configuration
+- DLP policies in Compliance Portal
+- DLP monitored activities
+- Violation history
+- Activity Explorer and Microsoft 365 unified audit logs
+- Quarantine storage
+- DLP Alerts and DLP Alert management dashboard
 
-### Purview Audit (Premium)
+### Information Barriers
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- In addition to the customer data stored as part of Purview Audit (Standard), configuration and Customer Data related to high-value crucial events
+- Policy settings
+- Risk indicators
+- Segments Configuration
+
+### Information Protection (MIP)
 
-### Data lifecycle management - Data Retention
+#### Sensitivity labels
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Retention policy settings and retention label definitions
-- Customer Data stored in original locations for the following services:
-  - Exchange email
-  - SharePoint site
-  - OneDrive accounts
-  - Microsoft 365 Groups
-  - Exchange public folders
-  - Microsoft Teams chats and channel messages
-- Customer Data copied and stored in Exchange Online hidden mailboxes
-  - Teams channel messages
-  - Teams chats
-  - Teams private channel messages
-  - SharePoint, OneDrive, Exchange Online and Microsoft Teams follow the data residency commitments for those services. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint](m365-dr-workload-spo.md), and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
-- Training classifiers
-- Disposition data
-- Mappings between retention labels and Data Loss Prevention (DLP) policies
+- Label configuration
+- Labels definition
+- Label policies
+- Custom help page
+- Activity Explorer and Microsoft 365 unified audit logs
+- Label change justification records
 
-### Data lifecycle management - Records Management
+#### Office Message Encryption (OME)
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Record retention label definitions, file plan definitions, event-based retention policy settings, disposition review records and records of deletion
+- Encryption policies
+- Admin settings
+- Encrypted messages
+
+#### Classifiers
 
-### Information Protection - Sensitivity labels
+- Sensitive information types, including Enhanced Data Match (EDM) and Trainable Classifiers, configured by customers
+
+### Audit (Standard)
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Label configuration
-- Labels definition
-- Label policies
-- Custom help page
-- Activity Explorer and Microsoft 365 unified audit logs
-- Label change justification records
+- Service configuration data
+- Audited Activities
+- Audit Records
+- Audit log query permissions
 
-### Information Protection - Data Loss Prevention (DLP)
+### Audit (Premium)
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- DLP admin configuration, DLP policies in Compliance Portal, DLP monitored activities, violation history, Activity Explorer and Microsoft 365 unified audit logs, quarantine storage,  DLP Alerts and DLP Alert management dashboard
+- All data covered under Audit (Standard)
+- Configuration and Customer Data related to high-value crucial events
+
+### Data lifecycle Management (DLM)
 
-### Information Protection - Office Message Encryption
+#### Data Retention
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Encryption policies, admin settings and encrypted messages
+- Retention policy settings and retention label definitions
+- Customer Data stored in original locations for the following services:
+  - Exchange email
+  - SharePoint site
+  - OneDrive accounts
+  - Microsoft 365 Groups
+  - Exchange public folders
+  - Microsoft Teams chats and channel messages
+  - Yammer user and community messages
+- Customer Data copied and stored in Exchange Online hidden mailboxes
+  - Teams channel messages
+  - Teams chats
+  - Teams private channel messages
+  - Yammer user and community messages
+  - SharePoint, OneDrive, Exchange Online and Microsoft Teams follow the data residency commitments for those services. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint](m365-dr-workload-spo.md), and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
+- Training classifiers
+- Disposition data
+- Mappings between retention labels and Data Loss Prevention (DLP) policies
 
-### Risk and compliance - information barriers
+#### Records Management
 
 The following customer data is stored at rest in the _Local Region Geography_:
 
-- Policy settings, risk indicators and admin settings
+- Record retention label definitions
+- File plan definitions
+- Event-based retention policy settings
+- Disposition review records and records of deletion