updated metadata

windows/security/application-security/index.md

@@ -1,12 +1,6 @@
 ---
 title: Windows application security
 description: Get an overview of application security in Windows
-ms.reviewer:
-manager: aaroncz
-ms.author: paoloma
-author: paolomatarazzo
-ms.prod: windows-client
-ms.technology: itpro-security
 ms.date: 03/09/2023
 ms.topic: article
 ---

windows/security/identity-protection/access-control/access-control.md

@@ -2,7 +2,7 @@
 ms.date: 11/22/2022
 title: Access Control Overview
 description: Description of the access controls in Windows, which is the process of authorizing users, groups, and computers to access objects on the network or computer.
-ms.topic: article
+ms.topic: overview
 appliesto: 
 - ✅ <a href=https://learn.microsoft.com/windows/release-health/supported-versions-windows-client target=_blank>Windows 11</a>
 - ✅ <a href=https://learn.microsoft.com/windows/release-health/supported-versions-windows-client target=_blank>Windows 10</a>

windows/security/identity-protection/hello-for-business/hello-aad-join-cloud-only-deploy.md

@@ -2,7 +2,7 @@
 title: Windows Hello for Business cloud-only deployment
 description: Learn how to configure Windows Hello for Business in a cloud-only deployment scenario.
 ms.date: 06/23/2021
-ms.topic: article
+ms.topic: how-to
 ---
 # Cloud-only deployment
 
@@ -10,7 +10,7 @@ ms.topic: article
 
 ## Introduction
 
-When you Azure Active Directory (Azure AD) join a Windows device, the system prompts you to enroll in Windows Hello for Business by default. If you want to use Windows Hello for Business in your cloud-only environment, then there's no additional configuration needed.
+When you Azure Active Directory (Azure AD) join a Windows device, the system prompts you to enroll in Windows Hello for Business by default. If you want to use Windows Hello for Business in your cloud-only environment, there's no additional configuration needed.
 
 You may wish to disable the automatic Windows Hello for Business enrollment prompts if you aren't ready to use it in your environment. Instructions on how to disable Windows Hello for Business enrollment in a cloud only environment are included below.
 
@@ -27,7 +27,7 @@ Also note that it's possible for federated domains to enable the *Supports MFA*
 
 Check and view this setting with the following MSOnline PowerShell command:
 
-`Get-MsolDomainFederationSettings –DomainName <your federated domain name>`
+`Get-MsolDomainFederationSettings -DomainName <your federated domain name>`
 
 To disable this setting, run the following command. This change impacts ALL Azure AD MFA scenarios for this federated domain.
 

windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise.md

@@ -2,7 +2,7 @@
 title: Windows Hello biometrics in the enterprise 
 description: Windows Hello uses biometrics to authenticate users and guard against potential spoofing, through fingerprint matching and facial recognition.
 ms.date: 01/12/2021
-ms.topic: article
+ms.topic: conceptual
 ---
 
 # Windows Hello biometrics in the enterprise
@@ -72,11 +72,11 @@ To allow facial recognition, you must have devices with integrated special infra
 - Effective, real world FRR with Anti-spoofing or liveness detection: <10%
 
 > [!NOTE]
->Windows Hello face authentication does not currently support wearing a mask during enrollment or authentication. Wearing a mask to enroll is a security concern because other users wearing a similar mask may be able to unlock your device. The product group is aware of this behavior and is investigating this topic further. Please remove a mask if you are wearing one when you enroll or unlock with Windows Hello face authentication. If your working environment doesn’t allow you to remove a mask temporarily, please consider unenrolling from face authentication and only using PIN or fingerprint.
+>Windows Hello face authentication does not currently support wearing a mask during enrollment or authentication. Wearing a mask to enroll is a security concern because other users wearing a similar mask may be able to unlock your device. The product group is aware of this behavior and is investigating this topic further. Please remove a mask if you are wearing one when you enroll or unlock with Windows Hello face authentication. If your working environment doesn't allow you to remove a mask temporarily, please consider unenrolling from face authentication and only using PIN or fingerprint.
 
 ### Iris recognition sensor requirements
 
-To use Iris authentication, you’ll need a [HoloLens 2 device](/hololens/). All HoloLens 2 editions are equipped with the same sensors. Iris is implemented the same way as other Windows Hello technologies and achieves biometrics security FAR of 1/100K.
+To use Iris authentication, you'll need a [HoloLens 2 device](/hololens/). All HoloLens 2 editions are equipped with the same sensors. Iris is implemented the same way as other Windows Hello technologies and achieves biometrics security FAR of 1/100K.
 
 ## Related topics
 

windows/security/identity-protection/hello-for-business/hello-deployment-guide.md

@@ -2,7 +2,7 @@
 title: Windows Hello for Business Deployment Overview
 description: Use this deployment guide to successfully deploy Windows Hello for Business in an existing environment.
 ms.date: 02/15/2022
-ms.topic: article
+ms.topic: overview
 ---
 # Windows Hello for Business Deployment Overview
 

windows/security/identity-protection/hello-for-business/hello-deployment-rdp-certs.md

@@ -3,8 +3,8 @@ title: Deploy certificates for remote desktop sign-in
 description: Learn how to deploy certificates to cloud Kerberos trust and key trust users, to enable remote desktop sign-in with supplied credentials.
 ms.collection: 
   - tier1
-ms.topic: article
-ms.date: 06/20/2023
+ms.topic: how-to
+ms.date: 07/25/2023
 ---
 
 # Deploy certificates for remote desktop (RDP) sign-in

windows/security/identity-protection/hello-for-business/hello-feature-dual-enrollment.md

@@ -1,20 +1,17 @@
 ---
 title: Dual Enrollment
-description: Learn how to configure Windows Hello for Business dual enrollment. Also, learn how to configure Active Directory to support Domain Administrator enrollment.
-ms.date: 09/09/2019
-ms.topic: article
+description: Learn how to configure Windows Hello for Business dual enrollment and how to configure Active Directory to support Domain Administrator enrollment.
+ms.date: 07/05/2023
+ms.topic: conceptual
 ---
 
 # Dual Enrollment
 
 **Requirements**
 
-* Hybrid and On-premises Windows Hello for Business deployments
-* Enterprise joined or Hybrid Azure joined devices
-* Certificate trust
-
-> [!NOTE]
-> This feature was previously known as **Privileged Credential** but was renamed to **Dual Enrollment** to prevent any confusion with the **Privileged Access Workstation** feature.
+- Hybrid and On-premises Windows Hello for Business deployments
+- Enterprise joined or Hybrid Azure joined devices
+- Certificate trust
 
 > [!IMPORTANT]
 > Dual enrollment does not replace or provide the same security as Privileged Access Workstations feature.  Microsoft encourages enterprises to use the Privileged Access Workstations for their privileged credential users.  Enterprises can consider Windows Hello for Business dual enrollment in situations where the Privileged Access feature cannot be used.  Read [Privileged Access Workstations](/windows-server/identity/securing-privileged-access/privileged-access-workstations) for more information.
@@ -65,14 +62,3 @@ You configure Windows 10 or Windows 11 to support dual enrollment using the comp
 5. Restart computers targeted by this Group Policy object.
 
 The computer is ready for dual enrollment.  Sign in as the privileged user first and enroll for Windows Hello for Business. Once completed, sign out and sign in as the non-privileged user and enroll for Windows Hello for Business.  You can now use your privileged credential to perform privileged tasks without using your password and without needing to switch users.
-
-## Related topics
-
-* [Windows Hello for Business](hello-identity-verification.md)
-* [Manage Windows Hello for Business in your organization](hello-manage-in-organization.md)
-* [Why a PIN is better than a password](hello-why-pin-is-better-than-password.md)
-* [Prepare people to use Windows Hello](hello-prepare-people-to-use.md)
-* [Windows Hello and password changes](hello-and-password-changes.md)
-* [Windows Hello errors during PIN creation](hello-errors-during-pin-creation.md)
-* [Event ID 300 - Windows Hello successfully created](/windows/security/identity-protection/hello-for-business/hello-faq)
-* [Windows Hello biometrics in the enterprise](hello-biometrics-in-enterprise.md)

windows/security/identity-protection/hello-for-business/hello-feature-remote-desktop.md

@@ -2,7 +2,7 @@
 title: Remote Desktop
 description: Learn how Windows Hello for Business supports using biometrics with remote desktop
 ms.date: 02/24/2021
-ms.topic: article
+ms.topic: conceptual
 ms.collection:
   - tier1
 ---
@@ -10,6 +10,7 @@ ms.collection:
 # Remote Desktop
 
 **Requirements**
+
 - Hybrid and On-premises Windows Hello for Business deployments
 - Azure AD joined, Hybrid Azure AD joined, and Enterprise joined devices
 
@@ -24,9 +25,8 @@ Microsoft continues to investigate supporting using keys trust for supplied cred
 - Hybrid and On-premises Windows Hello for Business deployments
 - Azure AD joined, Hybrid Azure AD joined, and Enterprise joined devices
 - Biometric enrollments
-- Windows 10, version 1809 or later
 
-Users using earlier versions of Windows 10 could authenticate to a remote desktop using Windows Hello for Business but were limited to using their PIN as their authentication gesture.  Windows 10, version 1809 or later introduces the ability for users to authenticate to a remote desktop session using their Windows Hello for Business biometric gesture.  The feature is on by default, so your users can take advantage of it as soon as they upgrade to Windows 10, version 1809.
+The ability for users to authenticate to a remote desktop session using their Windows Hello for Business biometric is on by default.
 
 ### How does it work
 

windows/security/identity-protection/hello-for-business/hello-identity-verification.md

@@ -2,7 +2,7 @@
 ms.date: 07/05/2023
 title: Windows Hello for Business Deployment Prerequisite Overview
 description: Overview of all the different infrastructure requirements for Windows Hello for Business deployment models
-ms.topic: article
+ms.topic: overview
 ms.collection:
 - tier1
 appliesto: