From 6e005f189f298c66558ab6ac6d7e6ea545114495 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 23 Feb 2017 10:48:28 -0800
Subject: [PATCH] minor updates

---
 ...ti-api-windows-defender-advanced-threat-protection.md | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/windows/keep-secure/custom-ti-api-windows-defender-advanced-threat-protection.md b/windows/keep-secure/custom-ti-api-windows-defender-advanced-threat-protection.md
index df0a22badc..8b4e485dd3 100644
--- a/windows/keep-secure/custom-ti-api-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/custom-ti-api-windows-defender-advanced-threat-protection.md
@@ -45,7 +45,7 @@ All threat intelligence API requests use the following basic URL pattern:
 
 For this URL:
 -	`https://TI.SecurityCenter.Windows.com` is the threat intelligence API endpoint.
--	`{version}` is the target service version. Currently only supported version is: v1.0.
+-	`{version}` is the target service version. Currently, the only supported version is: v1.0.
 -	`{resource}` is resource segment or path, such as:
   -	AlertDefinitions (for specific single resource, add: (id))
   -	IndicatorsOfCompromise (for specific single resource, add: (id))
@@ -54,7 +54,7 @@ For this URL:
 **Quotas**</br>
 Each tenant has a defined quota that limits the number of possible alert definitions, IOCs and another quota for IOCs of Action different than “equals” in the system. If you upload data beyond this quota, you'll encounter an HTTP error status code 507 (Insufficient Storage).
 
-## Threat Intelligence API metadata
+## Threat intelligence API metadata
 The metadata document ($metadata) is published at the service root.
 
 For example, you can view the service document for the v1.0 version using the following URL:
@@ -190,12 +190,11 @@ Authorization: Bearer <access_token>
 Accept: application/json;odata.metadata=none
 ```
 
-If successful, you should get a 200 OK response containing a single indicator of compromise representation (per the specified ID) in the payload, as shown as follows:
+If successful, you should get a 200 OK response containing a single indicator of compromise representation (for the specified ID) in the payload, as shown as follows:
 
 ```json
 HTTP/1.1 200 OK
-content - type: application / json;
-odata.metadata = none
+content - type: application/json;odata.metadata = none
 
 
 {