Links: Azure - includes - 0

includes/active-directory-app-provisioning.md

@@ -1,4 +1,3 @@
-
 In Azure Active Directory (Azure AD), the term **app provisioning** refers to automatically creating user identities and roles in the cloud ([SaaS](https://azure.microsoft.com/overview/what-is-saas/)) applications that users need access to. In addition to creating user identities, automatic provisioning includes the maintenance and removal of user identities as status or roles change. Common scenarios include provisioning an Azure AD user into applications like [Dropbox](../articles/active-directory/saas-apps/dropboxforbusiness-provisioning-tutorial.md), [Salesforce](../articles/active-directory/saas-apps/salesforce-provisioning-tutorial.md), [ServiceNow](../articles/active-directory/saas-apps/servicenow-provisioning-tutorial.md), and more.
 
 ![Provisioning overview diagram](./media/active-directory-app-provisioning/provisioning-overview.png)
@@ -38,7 +37,7 @@ Azure AD features pre-integrated support for many popular SaaS apps and human re
 
    ![Salesforce logo](./media/active-directory-app-provisioning/gallery-app-logos.png)
 
-   If you want to request a new application for provisioning, you can [request that your application be integrated with our app gallery](../articles/active-directory/azuread-dev/howto-app-gallery-listing.md). For a user provisioning request, we require the application to have a SCIM-compliant endpoint. Please request that the application vendor follow the SCIM standard so we can onboard the app to our platform quickly.
+   If you want to request a new application for provisioning, you can [request that your application be integrated with our app gallery](../articles/active-directory/develop/v2-howto-app-gallery-listing.md). For a user provisioning request, we require the application to have a SCIM-compliant endpoint. Please request that the application vendor follow the SCIM standard so we can onboard the app to our platform quickly.
 
 * **Applications that support SCIM 2.0**. For information on how to generically connect applications that implement SCIM 2.0-based user management APIs, see [Build a SCIM endpoint and configure user provisioning](../articles/active-directory/app-provisioning/use-scim-to-provision-users-and-groups.md).
 
@@ -70,4 +69,4 @@ For pre-integrated applications listed in the gallery, step-by-step guidance is
 
 > [!VIDEO https://www.youtube.com/embed/pKzyts6kfrw]
 
-For other applications that support SCIM 2.0, follow the steps in the article [Build a SCIM endpoint and configure user provisioning](../articles/active-directory/app-provisioning/use-scim-to-provision-users-and-groups.md).
+For other applications that support SCIM 2.0, follow the steps in the article [Build a SCIM endpoint and configure user provisioning](../articles/active-directory/app-provisioning/use-scim-to-provision-users-and-groups.md).

includes/active-directory-b2c-appreg-idp.md

@@ -8,7 +8,7 @@ ms.author: mimart
 # Used by the identity provider (IdP) setup articles under "Custom policy"
 ---
 
-To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](https://aka.ms/b2cappregtraining).
+To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](../articles/active-directory-b2c/app-registrations-training-guide.md).
 
 #### [App registrations](#tab/app-reg-ga/)
 

includes/active-directory-b2c-appreg-native.md

@@ -7,7 +7,7 @@ ms.date: 06/02/2020
 ms.author: mimart
 # Used by articles that register native client applications in the B2C tenant.
 ---
-To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](https://aka.ms/b2cappregtraining).
+To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](../articles/active-directory-b2c/app-registrations-training-guide.md).
 
 #### [App registrations](#tab/app-reg-ga/)
 

includes/active-directory-b2c-appreg-ropc.md

@@ -7,7 +7,7 @@ ms.date: 10/16/2019
 ms.author: mimart
 # Used by the ROPC configuration articles for both user flows and custom policies
 ---
-To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](https://aka.ms/b2cappregtraining).
+To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](../articles/active-directory-b2c/app-registrations-training-guide.md).
 
 #### [App registrations](#tab/app-reg-ga/)
 

includes/active-directory-b2c-appreg-webapi.md

@@ -9,7 +9,7 @@ ms.author: mimart
 ---
 Web API resources need to be registered in your tenant before they can accept and respond to protected resource requests by client applications that present an access token.
 
-To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](https://aka.ms/b2cappregtraining).
+To register an application in your Azure AD B2C tenant, you can use our new unified **App registrations** experience or our legacy  **Applications (Legacy)** experience. [Learn more about the new experience](../articles/active-directory-b2c/app-registrations-training-guide.md).
 
 #### [App registrations](#tab/app-reg-ga/)
 

includes/active-directory-b2c-html-how-to.md

@@ -50,7 +50,7 @@ The following table lists the default page content provided by Azure AD B2C. Dow
 
 ## Hosting the page content
 
-When using your own HTML and CSS files to customize the UI, host your UI content on any publicly available HTTPS endpoint that supports CORS. For example, [Azure Blob storage](../articles/storage/blobs/storage-blobs-introduction.md), [Azure App Services](/azure/app-service/), web servers, CDNs, AWS S3, or file sharing systems.
+When using your own HTML and CSS files to customize the UI, host your UI content on any publicly available HTTPS endpoint that supports CORS. For example, [Azure Blob storage](../articles/storage/blobs/storage-blobs-introduction.md), [Azure App Services](../articles/app-service/index.yml), web servers, CDNs, AWS S3, or file sharing systems.
 
 ## Guidelines for using custom page content
 
@@ -164,4 +164,4 @@ Validate that you're ready by performing the following steps:
 1. For the **Remote URL** box, paste the URL of your HTML file. For example, `https://your-account.blob.core.windows.net/root/azure-ad-b2c/unified.html`
 1. Select **Send Request**.
     The result should be `XHR status: 200`. 
-    If you receive an error, make sure that your CORS settings are correct. You might also need to clear your browser cache or open an in-private browsing session by pressing Ctrl+Shift+P.
+    If you receive an error, make sure that your CORS settings are correct. You might also need to clear your browser cache or open an in-private browsing session by pressing Ctrl+Shift+P.

includes/active-directory-b2c-identity-provider-azure-ad.md

@@ -30,7 +30,7 @@ To enable sign-in for users from a specific Azure AD organization, you need to r
 
 ### Configuring optional claims
 
-If you want to get the `family_name` and `given_name` claims from Azure AD, you can configure optional claims for your application in the Azure portal UI or application manifest. For more information, see [How to provide optional claims to your Azure AD app](/azure/active-directory/develop/active-directory-optional-claims).
+If you want to get the `family_name` and `given_name` claims from Azure AD, you can configure optional claims for your application in the Azure portal UI or application manifest. For more information, see [How to provide optional claims to your Azure AD app](../articles/active-directory/develop/active-directory-optional-claims.md).
 
 1. Sign in to the [Azure portal](https://portal.azure.com). Search for and select **Azure Active Directory**.
 1. From the **Manage** section, select **App registrations**.

includes/active-directory-cloud-provisioning-sso.md

@@ -19,7 +19,7 @@ Cloud provisioning works with Single Sign-on.  Currently there is not an option
 
 ### Step 2: Import the Seamless SSO PowerShell module
 
-1. Download, and install [Azure AD PowerShell](https://docs.microsoft.com/powershell/azure/active-directory/overview).
+1. Download, and install [Azure AD PowerShell](/powershell/azure/active-directory/overview).
 2. Browse to the `%programfiles%\Microsoft Azure Active Directory Connect` folder.
 3. Import the Seamless SSO PowerShell module by using this command: `Import-Module .\AzureADSSO.psd1`.
 
@@ -42,4 +42,4 @@ Cloud provisioning works with Single Sign-on.  Currently there is not an option
 
 ### Step 5. Enable the feature on your tenant
 
-To turn on the feature on your tenant, call `Enable-AzureADSSO -Enable $true`.
+To turn on the feature on your tenant, call `Enable-AzureADSSO -Enable $true`.

includes/active-directory-develop-preview.md

@@ -12,7 +12,7 @@ ms.topic: include
 # Paste the below (without the hashtags) into your article, and then replace *only* "FEATURE_OR_LIBRARY".
 #
 # > [!IMPORTANT]
-# > FEATURE_OR_LIBRARY [!INCLUDE [PREVIEW BOILERPLATE](../../../includes/active-directory-develop-preview.md)]
+# > FEATURE_OR_LIBRARY [!INCLUDE [PREVIEW BOILERPLATE]()]
 #
 ---
 is in public preview. This preview is provided without a service level agreement and isn't recommended for production workloads. Certain features might be unsupported or have constrained capabilities. For more information, see [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).

includes/active-directory-ds-prerequisites.md

@@ -25,5 +25,5 @@ ms.author: maheshu
 > Follow the instructions below, depending on the type of users in your Azure
 > AD directory. Complete both sets of instructions if you have a mix of cloud-only
 > and synced user accounts in your Azure AD directory. You may not be able to carry out the following operations in case you are trying to  use a B2B Guest account (example , your gmail or MSA from a different Identity provider which we allow) because we do not have the password for these users synced to managed domain as these are guest accounts in the directory. The complete information about these accounts including their passwords would be outside of Azure AD and as this information is not in Azure AD hence it does not even get synced to the managed domain. 
-> - [Instructions for cloud-only user accounts](../articles/active-directory-domain-services/active-directory-ds-getting-started-password-sync.md)
-> - [Instructions for user accounts synchronized from an on-premises directory](../articles/active-directory-domain-services/active-directory-ds-getting-started-password-sync-synced-tenant.md)
+> - [Instructions for cloud-only user accounts](../articles/active-directory-domain-services/tutorial-create-instance.md)
+> - [Instructions for user accounts synchronized from an on-premises directory](../articles/active-directory-domain-services/tutorial-configure-password-hash-sync.md)

includes/active-directory-end-user-preview-notice-myprofile.md

@@ -12,5 +12,5 @@ ms.custom: include file
 
 | |
 |--|
-|If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this experience yet. Until this experience is turned on, you must follow the instructions and information in the [My Apps portal help](https://docs.microsoft.com/azure/active-directory/user-help/my-apps-portal-end-user-overview) section.|
-| |
+|If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this experience yet. Until this experience is turned on, you must follow the instructions and information in the [My Apps portal help](../articles/active-directory/user-help/my-apps-portal-end-user-access.md) section.|
+| |

includes/active-directory-end-user-preview-notice-security-info.md

@@ -10,4 +10,4 @@ ms.author: lizross
 ms.custom: include file
 ---
 
-> If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this experience yet. Until this experience is turned on, you must follow the instructions and information in the [Set up my account for two-step verification](https://docs.microsoft.com/azure/active-directory/user-help/multi-factor-authentication-end-user-first-time) section.
+> If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this experience yet. Until this experience is turned on, you must follow the instructions and information in the [Set up my account for two-step verification](../articles/active-directory/user-help/multi-factor-authentication-end-user-first-time.md) section.

includes/active-directory-end-user-preview-notice-security-key.md

@@ -10,4 +10,4 @@ ms.author: lizross
 ms.custom: include file
 ---
 
-> Using a security key as a passwordless authentication method is currently in public preview. If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this feature yet. Until this feature is turned on, you must choose another authentication method from the [**Security Info** page](https://docs.microsoft.com/azure/active-directory/user-help/user-help-security-info-overview). For more information about previews, see [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).
+> Using a security key as a passwordless authentication method is currently in public preview. If what you're seeing on your screen doesn't match what's being covered in this article, it means that your administrator hasn't turned on this feature yet. Until this feature is turned on, you must choose another authentication method from the [**Security Info** page](../articles/active-directory/user-help/security-info-setup-signin.md). For more information about previews, see [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).

includes/active-directory-entitlement-management-request-policy.md

@@ -28,7 +28,7 @@ Follow these steps if you want to allow users in your directory to be able to re
     | **All members (excluding guests)** | Choose this option if you want all member users in your directory to be able to request this access package. This option doesn't include any guest users you might have invited into your directory. |
     | **All users (including guests)** | Choose this option if you want all member users and guest users in your directory to be able to request this access package. |
 
-    Guest users refer to external users that have been invited into your directory with [Azure AD B2B](../articles/active-directory/b2b/what-is-b2b.md). For more information about the differences between member users and guest users, see [What are the default user permissions in Azure Active Directory?](../articles/active-directory/fundamentals/users-default-permissions.md).
+    Guest users refer to external users that have been invited into your directory with [Azure AD B2B](../articles/active-directory/external-identities/what-is-b2b.md). For more information about the differences between member users and guest users, see [What are the default user permissions in Azure Active Directory?](../articles/active-directory/fundamentals/users-default-permissions.md).
 
 1. If you selected **Specific users and groups**, click **Add users and groups**.
 
@@ -42,10 +42,10 @@ Follow these steps if you want to allow users in your directory to be able to re
 
 ## For users not in your directory
 
- **Users not in your directory** refers to users who are in another Azure AD directory or domain. These users may not have yet been invited into your directory. Azure AD directories must be configured to be allow invitations in **Collaboration restrictions**. For more information, see [Enable B2B external collaboration and manage who can invite guests](../articles/active-directory/b2b/delegate-invitations.md).
+ **Users not in your directory** refers to users who are in another Azure AD directory or domain. These users may not have yet been invited into your directory. Azure AD directories must be configured to be allow invitations in **Collaboration restrictions**. For more information, see [Enable B2B external collaboration and manage who can invite guests](../articles/active-directory/external-identities/delegate-invitations.md).
 
 > [!NOTE]
-> A guest user account will be created for a user not yet in your directory whose request is approved or auto-approved. The guest will be invited, but will not receive an invite email. Instead, they will receive an email when their access package assignment is delivered. By default, later when that guest user no longer has any access package assignments, because their last assignment has expired or been cancelled, that guest user account will be blocked from sign in and subsequently deleted. If you want to have guest users remain in your directory indefinitely, even if they have no access package assignments, you can change the settings for your entitlement management configuration. For more information about the guest user object, see [Properties of an Azure Active Directory B2B collaboration user](../articles/active-directory/b2b/user-properties.md).
+> A guest user account will be created for a user not yet in your directory whose request is approved or auto-approved. The guest will be invited, but will not receive an invite email. Instead, they will receive an email when their access package assignment is delivered. By default, later when that guest user no longer has any access package assignments, because their last assignment has expired or been cancelled, that guest user account will be blocked from sign in and subsequently deleted. If you want to have guest users remain in your directory indefinitely, even if they have no access package assignments, you can change the settings for your entitlement management configuration. For more information about the guest user object, see [Properties of an Azure Active Directory B2B collaboration user](../articles/active-directory/external-identities/user-properties.md).
 
 Follow these steps if you want to allow users not in your directory to request this access package:
 
@@ -76,7 +76,7 @@ Follow these steps if you want to allow users not in your directory to request t
 1. Once you've selected all your connected organizations, click **Select**.
 
     > [!NOTE]
-    > All users from the selected connected organizations will be able to request this access package. This includes users in Azure AD from all subdomains associated with the organization, unless those domains are blocked by the Azure B2B allow or deny list. For more information, see [Allow or block invitations to B2B users from specific organizations](../articles/active-directory/b2b/allow-deny-list.md).
+    > All users from the selected connected organizations will be able to request this access package. This includes users in Azure AD from all subdomains associated with the organization, unless those domains are blocked by the Azure B2B allow or deny list. For more information, see [Allow or block invitations to B2B users from specific organizations](../articles/active-directory/external-identities/allow-deny-list.md).
 
 1. Skip down to the [Approval](#approval) section.
 
@@ -231,4 +231,4 @@ For example, if you listed Alice and Bob as the First Approver(s), list Carol an
 
 1. To require requestors to answer this question when requesting access to an access package, click the check box under **Required**.
 
-1. Click Next
+1. Click Next