Merge pull request #1138 from MicrosoftDocs/partners

Partners

windows/security/threat-protection/TOC.md

@@ -455,8 +455,11 @@
 ##### [Threat protection reports](microsoft-defender-atp/threat-protection-reports.md)
 ##### [Machine health and compliance reports](microsoft-defender-atp/machine-reports.md)
 
-#### [Interoperability]()
+#### [Partners & APIs]()
 ##### [Partner applications](microsoft-defender-atp/partner-applications.md)
+##### [Connected applications](microsoft-defender-atp/connected-applications.md)
+##### [API explorer](microsoft-defender-atp/api-explorer.md)
+
 
 #### [Manage machine configuration]()
 ##### [Ensure your machines are configured properly](microsoft-defender-atp/configure-machines.md)

windows/security/threat-protection/microsoft-defender-atp/api-explorer.md

@@ -0,0 +1,61 @@
+---
+title: API Explorer in Microsoft Defender ATP  
+ms.reviewer: 
+description: Use the API Explorer to construct and perform API queries, test and send requests for any available API
+keywords: api, explorer, send, request, get, post, 
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: conceptual
+---
+
+# API Explorer
+**Applies to:**
+- [Microsoft Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+
+[!include[Prerelease information](prerelease.md)]
+
+The Microsoft Defender ATP API Explorer is a tool that helps you explore various Microsoft Defender ATP APIs interactively. 
+
+The API Explorer makes it easy to construct and perform API queries, test and send requests for any available Microsoft Defender ATP API endpoint. You can also use the API Explorer to perform actions or find data that might not yet be available through the user interface.
+
+The tool is useful during app development because it allows you to perform API queries that respect your user access settings, reducing the need to generate access tokens. 
+
+You can also use the tool to explore the gallery of sample queries, copy result code samples, and generate debug information.
+
+With the API Explorer, you can:
+
+- Run requests for any method and see responses in real-time
+- Quickly browse through the API samples and learn what parameters they support
+- Make API calls with ease; no need to authenticate beyond the management portal sign-in
+
+## Access API Explorer
+From the left navigation menu, select **Partners & APIs** > **API Explorer**.
+
+## Supported APIs 
+API Explorer supports all the APIs offered by Microsoft Defender ATP.
+  
+The list of supported APIs is available in the [APIs documentation](apis-intro.md). 
+
+## Get started with the API Explorer
+1. In the left pane, there is a list of sample requests that you can use. 
+2. Follow the links and click **Run query**. 
+
+Some of the samples may require specifying a parameter in the URL, for example, {machine- id}.
+
+## FAQ
+**Do I need to have an API token to use the API Explorer?** <br>
+Credentials to access an API are not needed since the API Explorer uses the Microsoft Defender ATP management portal token whenever it makes a request.
+
+The logged-in user authentication credential is used to verify that the API Explorer is authorized to access data on your behalf.
+
+Specific API requests are limited based on your RBAC privileges; for example, a request to "Submit indicator" is limited to the security admin role. 

windows/security/threat-protection/microsoft-defender-atp/connected-applications.md

@@ -0,0 +1,45 @@
+---
+title: Connected applications in Microsoft Defender ATP   
+ms.reviewer: 
+description: View connected partner applications to Microsoft Defender ATP
+keywords: partners, applications, third-party, connections, sentinelone, lookout, bitdefender, corrata, morphisec, paloalto, ziften, better mobile
+search.product: eADQiWindows 10XVcnh
+search.appverid: met150
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance 
+ms.topic: conceptual
+---
+
+# Connected applications in Microsoft Defender ATP
+**Applies to:**
+- [Microsoft Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+
+[!include[Prerelease information](prerelease.md)]
+
+Connected applications integrates with the Microsoft Defender ATP platform using APIs. 
+
+Applications use standard OAuth 2.0 protocol to authenticate and provide tokens for use with Microsoft Defender ATP APIs.  In addition, Azure Active Directory (Azure AD) applications allow tenant admins to set explicit control over which APIs can be accessed using the corresponding app.
+ 
+You'll need to follow [these steps](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/apis-intro) to use the APIs with the connected application.
+ 
+## Access the connected application page
+From the left navigation menu, select **Partners & APIs** > **Connected AAD applications**.
+
+ 
+## View connected application details
+The Connected applications page provides information about the Azure AD applications connected to Microsoft Defender ATP in your organization. You can review the usage of the connected applications: last seen, number of requests in the past 24 hours, and request trends in the last 30 days.
+
+![Image of connected apps](images/connected-apps.png)
+ 
+## Edit, reconfigure, or delete a connected application
+The **Open application settings** link opens the corresponding Azure AD application management page in the Azure portal. From the Azure portal, you can manage permissions, reconfigure, or delete the connected applications.
+
+

windows/security/threat-protection/microsoft-defender-atp/preview.md

@@ -42,6 +42,10 @@ Turn on the preview experience setting to be among the first to try upcoming fea
 ## Preview features
 The following features are included in the preview release:
 
+- [Connected Azure AD applications](connected-applications.md)<br> The Connected applications page provides information about the Azure AD applications connected to Microsoft Defender ATP in your organization. 
+
+- [API Explorer](api-explorer.md)<br> The API explorer makes it easy to construct and perform API queries, test and send requests for any available Microsoft Defender ATP API endpoint.
+
 - [Tamper Protection settings in Intune](../windows-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md#turn-tamper-protection-on-or-off-for-your-organization-with-intune)<br/>You can now turn Tamper Protection on (or off) for your organization in the Microsoft 365 Device Management portal (Intune).
 
 - [Microsoft Threat Experts - Experts on Demand](microsoft-threat-experts.md) <BR> You now have the option to consult with Microsoft Threat Experts from several places in the portal to help you in the context of your investigation.