From ca2b3e9865bbb36217e8ea53700bfcec18ad9a37 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Thu, 16 Dec 2021 22:26:39 -0800 Subject: [PATCH 1/4] Changes to improve Acrolinx score This article had a score of 76, which is too low to merge. These changes should raise the score to about 92. --- .../mdm/policy-csp-networklistmanager.md | 18 ++++++++++-------- 1 file changed, 10 insertions(+), 8 deletions(-) diff --git a/windows/client-management/mdm/policy-csp-networklistmanager.md b/windows/client-management/mdm/policy-csp-networklistmanager.md index 227d198378..8dc3a74c3b 100644 --- a/windows/client-management/mdm/policy-csp-networklistmanager.md +++ b/windows/client-management/mdm/policy-csp-networklistmanager.md @@ -1,6 +1,6 @@ --- title: Policy CSP - NetworkListManager -description: The Policy CSP - NetworkListManager setting creates a new MDM policy that allows admins to configure a list of URIs of HTTPS endpoints that are considered secure. +description: Policy CSP - NetworkListManager is a setting creates a new MDM policy. This setting allows admins to configure a list of URIs of HTTPS endpoints that are considered secure. ms.author: v-nsatapathy ms.topic: article ms.prod: w10 @@ -61,16 +61,18 @@ manager: dansimp This policy setting provides the list of URLs (separated by Unicode character 0xF000) to endpoints accessible only within an enterprise's network. If any of the URLs can be resolved over HTTPS, the network would be considered authenticated. When entering a list of TLS endpoints in Microsoft Endpoint Manager, you must follow this format, even in the UI: -`````` -- The HTTPS endpoint must not have any additional authentication checks, such as login or multifactor authentication. + +`` + +- The HTTPS endpoint must not have any more authentication checks, such as login or multi-factor authentication. + - The HTTPS endpoint must be an internal address not accessible from outside the corporate network. -- The client must trust the server certificate, so the CA certificate that the HTTPS server certificate chains to must be present in the client machine's root certificate store. + +- The client must trust the server certificate. So the CA certificate that the HTTPS server certificate chains to must be present in the client machine's root certificate store. + - A certificate should not be a public certificate. -
- -
@@ -99,7 +101,7 @@ When entering a list of TLS endpoints in Microsoft Endpoint Manager, you must fo -This policy setting provides the string to be used to name the network authenticated against one of the endpoints listed in NetworkListManager/AllowedTlsAuthenticationEndpoints policy. If this setting is used for Trusted Network Detection in an Always On VPN profile, it must be the DNS suffix configured in the TrustedNetworkDetection attribute. +This policy setting provides the string that is to be used to name a network. That network is authenticated against one of the endpoints that are listed in NetworkListManager/AllowedTlsAuthenticationEndpoints policy. If this setting is used for Trusted Network Detection in an _Always On_ VPN profile, it must be the DNS suffix that is configured in the TrustedNetworkDetection attribute.
From 87fa3696cdf5667b1f7ad672af72c399b4f8fa5a Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Thu, 16 Dec 2021 22:27:41 -0800 Subject: [PATCH 2/4] Add image borders and one lightbox --- windows/deployment/update/update-compliance-using.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/deployment/update/update-compliance-using.md b/windows/deployment/update/update-compliance-using.md index aae829eff7..4c35caa25b 100644 --- a/windows/deployment/update/update-compliance-using.md +++ b/windows/deployment/update/update-compliance-using.md @@ -35,17 +35,17 @@ Update Compliance: ## The Update Compliance tile After Update Compliance is successfully [added to your Azure subscription](update-compliance-get-started.md#add-update-compliance-to-your-azure-subscription), you can navigate to your log analytics workspace, select your Update Compliance deployment in the **Solutions** section, and then select **Summary** to see this tile: -![Update Compliance tile no data.](images/UC_tile_assessing.png) +:::image type="content" alt-text="Update Compliance tile no data." source="images/UC_tile_assessing.png"::: When the solution is added, data is not immediately available. Data will begin to be collected after data is sent up that belongs to the Commercial ID associated with the device. This process assumes that Windows diagnostic data is enabled and data sharing is enabled as described in [Enrolling devices in Update Compliance](update-compliance-get-started.md#enroll-devices-in-update-compliance). After Microsoft has collected and processed any device data associated with your Commercial ID, the tile will be replaced with the following summary: -![Update Compliance tile with data.](images/UC_tile_filled.png) +:::image type="content" alt-text="Update Compliance tile with data." source="images/UC_tile_filled.png"::: The summary details the total number of devices that Microsoft has received data from with your Commercial ID. It also provides the number of devices that need attention if any. Finally, it details the last point at which your Update Compliance workspace was refreshed. ## The Update Compliance workspace -![Update Compliance workspace view.](images/UC_workspace_needs_attention.png) +:::image type="content" alt-text="Update Compliance workspace view." source="images/UC_workspace_needs_attention.png" lightbox="images/UC_workspace_needs_attention.png"::: When you select this tile, you will be redirected to the Update Compliance workspace. The workspace is organized with the Overview blade providing a hub from which to navigate to different reports of your devices' data. From 6e5a55aef4537fd5f9f07313ed1e08fc6a65b6c9 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Thu, 16 Dec 2021 22:41:11 -0800 Subject: [PATCH 3/4] Restoring commit after force-push This deletion of a space restores changes that I made in commit https://github.com/MicrosoftDocs/windows-docs-pr/pull/6103/commits/ca2b3e9865bbb36217e8ea53700bfcec18ad9a37 that were wiped by force push a moment later. --- windows/client-management/mdm/policy-csp-networklistmanager.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/client-management/mdm/policy-csp-networklistmanager.md b/windows/client-management/mdm/policy-csp-networklistmanager.md index 8dc3a74c3b..22a950170a 100644 --- a/windows/client-management/mdm/policy-csp-networklistmanager.md +++ b/windows/client-management/mdm/policy-csp-networklistmanager.md @@ -18,7 +18,7 @@ manager: dansimp
-## NetworkListManager policies +## NetworkListManager policies
From 340b0c93c0ba163e14f4578f73f9672f68b2bf14 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Thu, 16 Dec 2021 22:42:10 -0800 Subject: [PATCH 4/4] Restoring changes that were wiped by force-push This deletion of a space restores the changes that I made in commit https://github.com/MicrosoftDocs/windows-docs-pr/pull/6103/commits/87fa3696cdf5667b1f7ad672af72c399b4f8fa5a, which were wiped by a force-push a moment later. --- windows/deployment/update/update-compliance-using.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/deployment/update/update-compliance-using.md b/windows/deployment/update/update-compliance-using.md index 4c35caa25b..9789b8c171 100644 --- a/windows/deployment/update/update-compliance-using.md +++ b/windows/deployment/update/update-compliance-using.md @@ -26,7 +26,7 @@ ms.custom: seo-marvel-apr2020 In this section you'll learn how to use Update Compliance to monitor your device's Windows updates and Microsoft Defender Antivirus status. To configure your environment for use with Update Compliance, refer to [Get started with Update Compliance](update-compliance-get-started.md). -Update Compliance: +Update Compliance: - Provides detailed deployment monitoring for Windows client feature and quality updates. - Reports when devices need attention due to issues related to update deployment. - Shows bandwidth usage and savings for devices that are configured to use [Delivery Optimization](waas-delivery-optimization.md).