Updated metadata

2025-05-12 21:37:22 +00:00 · 2021-10-19 09:47:15 +05:30 · 2021-10-19 09:47:15 +05:30 · c34b5a85ce
commit c34b5a85ce
parent c3567ef40c
810 changed files with 817 additions and 809 deletions
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@ -0,0 +1,8 @@
+{
+    "markdownlint.config": {
+        "MD028": false,
+        "MD025": {
+            "front_matter_title": ""
+        }
+    }
+}
--- a/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Advanced security audit policy settings
--- a/windows/security/threat-protection/auditing/advanced-security-auditing-faq.yml
+++ b/windows/security/threat-protection/auditing/advanced-security-auditing-faq.yml
@ -16,7 +16,7 @@ metadata:
  ms.collection: M365-security-compliance
  ms.topic: conceptual
  ms.date: 09/06/2021
-  ms.technology: mde
+  ms.technology: windows-sec
    
 title: Advanced security auditing FAQ

--- a/windows/security/threat-protection/auditing/advanced-security-auditing.md
+++ b/windows/security/threat-protection/auditing/advanced-security-auditing.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/6/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Advanced security audit policies
--- a/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md
+++ b/windows/security/threat-protection/auditing/appendix-a-security-monitoring-recommendations-for-many-audit-events.md
@ -11,7 +11,7 @@ ms.date: 09/06/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Appendix A: Security monitoring recommendations for many audit events
--- a/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md
+++ b/windows/security/threat-protection/auditing/apply-a-basic-audit-policy-on-a-file-or-folder.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Apply a basic audit policy on a file or folder
--- a/windows/security/threat-protection/auditing/audit-account-lockout.md
+++ b/windows/security/threat-protection/auditing/audit-account-lockout.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Account Lockout
--- a/windows/security/threat-protection/auditing/audit-application-generated.md
+++ b/windows/security/threat-protection/auditing/audit-application-generated.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Application Generated
--- a/windows/security/threat-protection/auditing/audit-application-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-application-group-management.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Application Group Management
--- a/windows/security/threat-protection/auditing/audit-audit-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-audit-policy-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Audit Policy Change
--- a/windows/security/threat-protection/auditing/audit-authentication-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-authentication-policy-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Authentication Policy Change
--- a/windows/security/threat-protection/auditing/audit-authorization-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-authorization-policy-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Authorization Policy Change
--- a/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md
+++ b/windows/security/threat-protection/auditing/audit-central-access-policy-staging.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Central Access Policy Staging
--- a/windows/security/threat-protection/auditing/audit-certification-services.md
+++ b/windows/security/threat-protection/auditing/audit-certification-services.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Certification Services
--- a/windows/security/threat-protection/auditing/audit-computer-account-management.md
+++ b/windows/security/threat-protection/auditing/audit-computer-account-management.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Computer Account Management
--- a/windows/security/threat-protection/auditing/audit-credential-validation.md
+++ b/windows/security/threat-protection/auditing/audit-credential-validation.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Credential Validation
--- a/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md
+++ b/windows/security/threat-protection/auditing/audit-detailed-directory-service-replication.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Detailed Directory Service Replication
--- a/windows/security/threat-protection/auditing/audit-detailed-file-share.md
+++ b/windows/security/threat-protection/auditing/audit-detailed-file-share.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Detailed File Share
--- a/windows/security/threat-protection/auditing/audit-directory-service-access.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-access.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Directory Service Access
--- a/windows/security/threat-protection/auditing/audit-directory-service-changes.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-changes.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Directory Service Changes
--- a/windows/security/threat-protection/auditing/audit-directory-service-replication.md
+++ b/windows/security/threat-protection/auditing/audit-directory-service-replication.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Directory Service Replication
--- a/windows/security/threat-protection/auditing/audit-distribution-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-distribution-group-management.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Distribution Group Management
--- a/windows/security/threat-protection/auditing/audit-dpapi-activity.md
+++ b/windows/security/threat-protection/auditing/audit-dpapi-activity.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit DPAPI Activity
--- a/windows/security/threat-protection/auditing/audit-file-share.md
+++ b/windows/security/threat-protection/auditing/audit-file-share.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit File Share
--- a/windows/security/threat-protection/auditing/audit-file-system.md
+++ b/windows/security/threat-protection/auditing/audit-file-system.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit File System
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-connection.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Filtering Platform Connection
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-packet-drop.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Filtering Platform Packet Drop
--- a/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-filtering-platform-policy-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Filtering Platform Policy Change
--- a/windows/security/threat-protection/auditing/audit-group-membership.md
+++ b/windows/security/threat-protection/auditing/audit-group-membership.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Group Membership
--- a/windows/security/threat-protection/auditing/audit-handle-manipulation.md
+++ b/windows/security/threat-protection/auditing/audit-handle-manipulation.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Handle Manipulation
--- a/windows/security/threat-protection/auditing/audit-ipsec-driver.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-driver.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit IPsec Driver
--- a/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-extended-mode.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit IPsec Extended Mode
--- a/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-main-mode.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit IPsec Main Mode
--- a/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md
+++ b/windows/security/threat-protection/auditing/audit-ipsec-quick-mode.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit IPsec Quick Mode
--- a/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md
+++ b/windows/security/threat-protection/auditing/audit-kerberos-authentication-service.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Kerberos Authentication Service
--- a/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
+++ b/windows/security/threat-protection/auditing/audit-kerberos-service-ticket-operations.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Kerberos Service Ticket Operations
--- a/windows/security/threat-protection/auditing/audit-kernel-object.md
+++ b/windows/security/threat-protection/auditing/audit-kernel-object.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Kernel Object
--- a/windows/security/threat-protection/auditing/audit-logoff.md
+++ b/windows/security/threat-protection/auditing/audit-logoff.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Logoff
--- a/windows/security/threat-protection/auditing/audit-logon.md
+++ b/windows/security/threat-protection/auditing/audit-logon.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Logon
--- a/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md
+++ b/windows/security/threat-protection/auditing/audit-mpssvc-rule-level-policy-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit MPSSVC Rule-Level Policy Change
--- a/windows/security/threat-protection/auditing/audit-network-policy-server.md
+++ b/windows/security/threat-protection/auditing/audit-network-policy-server.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Network Policy Server
--- a/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
+++ b/windows/security/threat-protection/auditing/audit-non-sensitive-privilege-use.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Non-Sensitive Privilege Use
--- a/windows/security/threat-protection/auditing/audit-other-account-logon-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-account-logon-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Account Logon Events
--- a/windows/security/threat-protection/auditing/audit-other-account-management-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-account-management-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Account Management Events
--- a/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-logonlogoff-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Logon/Logoff Events
--- a/windows/security/threat-protection/auditing/audit-other-object-access-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-object-access-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Object Access Events
--- a/windows/security/threat-protection/auditing/audit-other-policy-change-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-policy-change-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Policy Change Events
--- a/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-privilege-use-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other Privilege Use Events
--- a/windows/security/threat-protection/auditing/audit-other-system-events.md
+++ b/windows/security/threat-protection/auditing/audit-other-system-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Other System Events
--- a/windows/security/threat-protection/auditing/audit-pnp-activity.md
+++ b/windows/security/threat-protection/auditing/audit-pnp-activity.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit PNP Activity
--- a/windows/security/threat-protection/auditing/audit-process-creation.md
+++ b/windows/security/threat-protection/auditing/audit-process-creation.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Process Creation
--- a/windows/security/threat-protection/auditing/audit-process-termination.md
+++ b/windows/security/threat-protection/auditing/audit-process-termination.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Process Termination
--- a/windows/security/threat-protection/auditing/audit-registry.md
+++ b/windows/security/threat-protection/auditing/audit-registry.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Registry
--- a/windows/security/threat-protection/auditing/audit-removable-storage.md
+++ b/windows/security/threat-protection/auditing/audit-removable-storage.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Removable Storage
--- a/windows/security/threat-protection/auditing/audit-rpc-events.md
+++ b/windows/security/threat-protection/auditing/audit-rpc-events.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit RPC Events
--- a/windows/security/threat-protection/auditing/audit-sam.md
+++ b/windows/security/threat-protection/auditing/audit-sam.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit SAM
--- a/windows/security/threat-protection/auditing/audit-security-group-management.md
+++ b/windows/security/threat-protection/auditing/audit-security-group-management.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Security Group Management
--- a/windows/security/threat-protection/auditing/audit-security-state-change.md
+++ b/windows/security/threat-protection/auditing/audit-security-state-change.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Security State Change
--- a/windows/security/threat-protection/auditing/audit-security-system-extension.md
+++ b/windows/security/threat-protection/auditing/audit-security-system-extension.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Security System Extension
--- a/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md
+++ b/windows/security/threat-protection/auditing/audit-sensitive-privilege-use.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Sensitive Privilege Use
--- a/windows/security/threat-protection/auditing/audit-special-logon.md
+++ b/windows/security/threat-protection/auditing/audit-special-logon.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Special Logon
--- a/windows/security/threat-protection/auditing/audit-system-integrity.md
+++ b/windows/security/threat-protection/auditing/audit-system-integrity.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit System Integrity
--- a/windows/security/threat-protection/auditing/audit-token-right-adjusted.md
+++ b/windows/security/threat-protection/auditing/audit-token-right-adjusted.md
@ -6,7 +6,7 @@ author: dansimp
 ms.author: dansimp
 ms.pagetype: security
 ms.prod: m365-security
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit Token Right Adjusted
--- a/windows/security/threat-protection/auditing/audit-user-account-management.md
+++ b/windows/security/threat-protection/auditing/audit-user-account-management.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit User Account Management
--- a/windows/security/threat-protection/auditing/audit-user-device-claims.md
+++ b/windows/security/threat-protection/auditing/audit-user-device-claims.md
@ -12,7 +12,7 @@ ms.sitesec: library
 ms.localizationpriority: none
 author: dansimp
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit User/Device Claims
--- a/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-account-logon-events.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit account logon events
--- a/windows/security/threat-protection/auditing/basic-audit-account-management.md
+++ b/windows/security/threat-protection/auditing/basic-audit-account-management.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit account management
--- a/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md
+++ b/windows/security/threat-protection/auditing/basic-audit-directory-service-access.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit directory service access
--- a/windows/security/threat-protection/auditing/basic-audit-logon-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-logon-events.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit logon events
--- a/windows/security/threat-protection/auditing/basic-audit-object-access.md
+++ b/windows/security/threat-protection/auditing/basic-audit-object-access.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit object access
--- a/windows/security/threat-protection/auditing/basic-audit-policy-change.md
+++ b/windows/security/threat-protection/auditing/basic-audit-policy-change.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit policy change
--- a/windows/security/threat-protection/auditing/basic-audit-privilege-use.md
+++ b/windows/security/threat-protection/auditing/basic-audit-privilege-use.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit privilege use
--- a/windows/security/threat-protection/auditing/basic-audit-process-tracking.md
+++ b/windows/security/threat-protection/auditing/basic-audit-process-tracking.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit process tracking
--- a/windows/security/threat-protection/auditing/basic-audit-system-events.md
+++ b/windows/security/threat-protection/auditing/basic-audit-system-events.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Audit system events
--- a/windows/security/threat-protection/auditing/basic-security-audit-policies.md
+++ b/windows/security/threat-protection/auditing/basic-security-audit-policies.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Basic security audit policies
--- a/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/06/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Basic security audit policy settings
--- a/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md
+++ b/windows/security/threat-protection/auditing/create-a-basic-audit-policy-settings-for-an-event-category.md
@ -15,7 +15,7 @@ audience: ITPro
 ms.collection: M365-security-compliance
 ms.topic: conceptual
 ms.date: 09/07/2021
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # Create a basic audit policy for an event category
--- a/windows/security/threat-protection/auditing/event-1100.md
+++ b/windows/security/threat-protection/auditing/event-1100.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 1100(S): The event logging service has shut down.
--- a/windows/security/threat-protection/auditing/event-1102.md
+++ b/windows/security/threat-protection/auditing/event-1102.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 1102(S): The audit log was cleared.
--- a/windows/security/threat-protection/auditing/event-1104.md
+++ b/windows/security/threat-protection/auditing/event-1104.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 1104(S): The security log is now full.
--- a/windows/security/threat-protection/auditing/event-1105.md
+++ b/windows/security/threat-protection/auditing/event-1105.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 1105(S): Event log automatic backup
--- a/windows/security/threat-protection/auditing/event-1108.md
+++ b/windows/security/threat-protection/auditing/event-1108.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 1108(S): The event logging service encountered an error while processing an incoming event published from %1.
--- a/windows/security/threat-protection/auditing/event-4608.md
+++ b/windows/security/threat-protection/auditing/event-4608.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4608(S): Windows is starting up.
--- a/windows/security/threat-protection/auditing/event-4610.md
+++ b/windows/security/threat-protection/auditing/event-4610.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4610(S): An authentication package has been loaded by the Local Security Authority.
--- a/windows/security/threat-protection/auditing/event-4611.md
+++ b/windows/security/threat-protection/auditing/event-4611.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4611(S): A trusted logon process has been registered with the Local Security Authority.
--- a/windows/security/threat-protection/auditing/event-4612.md
+++ b/windows/security/threat-protection/auditing/event-4612.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4612(S): Internal resources allocated for the queuing of audit messages have been exhausted, leading to the loss of some audits.
--- a/windows/security/threat-protection/auditing/event-4614.md
+++ b/windows/security/threat-protection/auditing/event-4614.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4614(S): A notification package has been loaded by the Security Account Manager.
--- a/windows/security/threat-protection/auditing/event-4615.md
+++ b/windows/security/threat-protection/auditing/event-4615.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4615(S): Invalid use of LPC port.
--- a/windows/security/threat-protection/auditing/event-4616.md
+++ b/windows/security/threat-protection/auditing/event-4616.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4616(S): The system time was changed.
--- a/windows/security/threat-protection/auditing/event-4618.md
+++ b/windows/security/threat-protection/auditing/event-4618.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4618(S): A monitored security event pattern has occurred.
--- a/windows/security/threat-protection/auditing/event-4621.md
+++ b/windows/security/threat-protection/auditing/event-4621.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4621(S): Administrator recovered system from CrashOnAuditFail.
--- a/windows/security/threat-protection/auditing/event-4622.md
+++ b/windows/security/threat-protection/auditing/event-4622.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4622(S): A security package has been loaded by the Local Security Authority.
--- a/windows/security/threat-protection/auditing/event-4624.md
+++ b/windows/security/threat-protection/auditing/event-4624.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4624(S): An account was successfully logged on.
--- a/windows/security/threat-protection/auditing/event-4625.md
+++ b/windows/security/threat-protection/auditing/event-4625.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4625(F): An account failed to log on.
--- a/windows/security/threat-protection/auditing/event-4626.md
+++ b/windows/security/threat-protection/auditing/event-4626.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4626(S): User/Device claims information.
--- a/windows/security/threat-protection/auditing/event-4627.md
+++ b/windows/security/threat-protection/auditing/event-4627.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4627(S): Group membership information.
--- a/windows/security/threat-protection/auditing/event-4634.md
+++ b/windows/security/threat-protection/auditing/event-4634.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4634(S): An account was logged off.
--- a/windows/security/threat-protection/auditing/event-4647.md
+++ b/windows/security/threat-protection/auditing/event-4647.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4647(S): User initiated logoff.
--- a/windows/security/threat-protection/auditing/event-4648.md
+++ b/windows/security/threat-protection/auditing/event-4648.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4648(S): A logon was attempted using explicit credentials.
--- a/windows/security/threat-protection/auditing/event-4649.md
+++ b/windows/security/threat-protection/auditing/event-4649.md
@ -11,7 +11,7 @@ ms.date: 09/07/2021
 ms.reviewer: 
 manager: dansimp
 ms.author: dansimp
-ms.technology: mde
+ms.technology: windows-sec
 ---

 # 4649(S): A replay attack was detected.
--- a/Show More
+++ b/Show More