Lily's feedback

2025-06-20 12:53:38 +00:00 · 2016-10-05 13:37:34 -07:00
parent 5c0fd59550
commit 882cf979e3
5 changed files with 8 additions and 7 deletions
--- a/windows/keep-secure/vpn-authentication.md
+++ b/windows/keep-secure/vpn-authentication.md
@ -43,7 +43,7 @@ For a UWP VPN plug-in, the app vendor controls the authentication method to be u
 See [EAP configuration](https://msdn.microsoft.com/library/windows/hardware/mt168513.aspx) for EAP XML configuration. 

 >[!NOTE]
->To configure Windows Hello for Business authentication, follow the steps in [EAP configuration](https://msdn.microsoft.com/library/windows/hardware/mt168513.aspx) to create a smart card certificate.
+>To configure Windows Hello for Business authentication, follow the steps in [EAP configuration](https://msdn.microsoft.com/library/windows/hardware/mt168513.aspx) to create a smart card certificate. [Learn more about Windows Hello for Business.](https://technet.microsoft.com/itpro/windows/keep-secure/manage-identity-verification-using-microsoft-passport)

 The following image shows the field for EAP XML in a Microsoft Intune VPN profile. The EAP XML field only appears when you select a built-in connection type (automatic, IKEv2, L2TP, PPTP).

--- a/windows/keep-secure/vpn-auto-trigger-profile.md
+++ b/windows/keep-secure/vpn-auto-trigger-profile.md
@ -61,7 +61,7 @@ When a device has multiple profiles with Always On triggers, the user can specif

 This feature configures the VPN such that it would not get triggered if a user is on a trusted corporate network. The value of this setting is a list of DNS suffices. The VPN stack will look at the DNS suffix on the physical interface and if it matches any in the configured list and the network is private or provisioned by MDM, then VPN will not get triggered.

-Trusted network detection  can be configured using the VPNv2/*ProfileName*/TrustedNetworkDetection setting in the [VPNv2 CCSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx).
+Trusted network detection can be configured using the VPNv2/*ProfileName*/TrustedNetworkDetection setting in the [VPNv2 CSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx).


 ## Configure app-triggered VPN
--- a/windows/keep-secure/vpn-conditional-access.md
+++ b/windows/keep-secure/vpn-conditional-access.md
@ -25,7 +25,7 @@ Conditional Access Platform components used for Device Compliance include the fo

 - [Azure AD Connect Health](https://azure.microsoft.com/documentation/articles/active-directory-Azure ADconnect-health/)

- [Windows Health Attestation Service](https://technet.microsoft.com/en-us/itpro/windows/keep-secure/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices#device-health-attestation)
+- [Windows Health Attestation Service](https://technet.microsoft.com/en-us/itpro/windows/keep-secure/protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices#device-health-attestation) (optional)

 - Azure AD Certificate Authority - It is a requirement that the client certificate used for the cloud-based device compliance solution be issued by an Azure Active Directory-based Certificate Authority (CA).  An Azure AD CA is essentially a mini-CA cloud tenant in Azure. The Azure AD CA cannot be configured as part of an on-premises Enterprise CA. 

--- a/windows/keep-secure/vpn-name-resolution.md
+++ b/windows/keep-secure/vpn-name-resolution.md
@ -31,7 +31,7 @@ There are 3 types of name matches that can  set up for NRPT:

 - Any resolution should attempt to first resolve with the proxy server/DNS server with this entry

-NRPT is set using the **VPNv2/*ProfileName*/DomainNameInformationList** node. This node also configures Web proxy server or domain name servers. 
+NRPT is set using the **VPNv2/*ProfileName*/DomainNameInformationList** node of the [VPNv2 CSP](https://msdn.microsoft.com/library/windows/hardware/dn914776.aspx). This node also configures Web proxy server or domain name servers. 

 [Learn more about NRPT](https://technet.microsoft.com/library/ee649207%28v=ws.10%29.aspx)

@ -66,9 +66,9 @@ The fields in **Add or edit DNS rule** in the Intune profile correspond to the X

 | Field | XML |
 | --- | --- |
-| **Name** | **VPNv2/*ProfileName*/DomainNameInformationList//*dniRowId*/DomainName**  |
-| **Servers (comma separated)** | **VPNv2/*ProfileName*/DomainNameInformationList//*dniRowId*/DnsServers**  |
-| **Proxy server** |  **VPNv2/*ProfileName*/DomainNameInformationList//*dniRowId*/WebServers**  |
+| **Name** | **VPNv2/*ProfileName*/DomainNameInformationList/*dniRowId*/DomainName**  |
+| **Servers (comma separated)** | **VPNv2/*ProfileName*/DomainNameInformationList/*dniRowId*/DnsServers**  |
+| **Proxy server** |  **VPNv2/*ProfileName*/DomainNameInformationList/*dniRowId*/WebServers**  |

 ## Related topics

--- a/windows/keep-secure/vpn-security-features.md
+++ b/windows/keep-secure/vpn-security-features.md
@ -49,6 +49,7 @@ The value of the **EdpModeId** is an Enterprise ID. The networking stack will lo

 Additionally, when connecting with WIP, the admin does not have to specify AppTriggerList and TrafficFilterList rules separately in this profile (unless more advanced configuration is needed) because the WIP policies and App lists automatically take effect.

+[Learn more about Windows Information Protection](protect-enterprise-data-using-wip.md)


 ## Traffic filters