Merge branch 'main' of https://github.com/microsoft/GlobalSecureAccess

Author: andres-canello

website/docs/Entra Private Access/OnPremSSO.md

@@ -6,7 +6,7 @@ title: "Kerberos SSO to AD resources"
 This article details the minimum configuration required to enable Kerberos single sign on to on-premises resources protected by Active Directory.
 It includes making Domain Controllers available through Private Access and configuring Private DNS to enable DNS resolution to on-premises names.
 
-[Use Kerberos for single sign-on (SSO) to your resources with Microsoft Entra Private Access](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-configure-kerberos-sso)
+[Use Kerberos for single sign-on (SSO) to your resources with Microsoft Entra Private Access](https://learn.microsoft.com/entra/global-secure-access/how-to-configure-kerberos-sso)
 
 
 ### Tips for avoiding SSO issues
@@ -28,4 +28,4 @@ To avoid these kind of issues, that happen to be hard to troubleshoot and discov
 - Type: `REG_DWORD` 
 - Default value: `0 (minutes)` 
 
-More info: https://learn.microsoft.com/entra/global-secure-access/how-to-configure-kerberos-sso#option-1-change-the-default-farkdctimeout-time-on-the-registry
+More info: https://learn.microsoft.com/entra/global-secure-access/how-to-configure-kerberos-sso#option-1-change-the-default-farkdctimeout-time-on-the-registry

website/docs/Entra Private Access/PrivAccessPIM.md

@@ -6,4 +6,4 @@ title: "Protect privileged access with PIM"
 Private Access can be combined with Privileged Identity Management to add an extra security layer to protect critical resources.
 This article explains how to configure PIM to enable just-in-time access to critical resources so elevation of access is required and access expires after a certain time.
 
-[Secure private application access with Privileged Identity Management (PIM) and Global Secure Access](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-configure-global-access-with-pim)
+[Secure private application access with Privileged Identity Management (PIM) and Global Secure Access](https://learn.microsoft.com/entra/global-secure-access/how-to-configure-global-access-with-pim)

website/docs/Entra Private Access/VPNReplacement.md

@@ -49,7 +49,7 @@ You can view the properties from **Quick Access** or navigate to **Enterprise ap
 
 1. Select **Users and groups** from the side menu.
 2. Add users and groups as needed.
-    - For more information, see [Assign users and groups to an application](https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/assign-user-or-group-access-portal?pivots=portal).
+    - For more information, see [Assign users and groups to an application](https://learn.microsoft.com/entra/identity/enterprise-apps/assign-user-or-group-access-portal?pivots=portal).
 
 > [!NOTE]
 > Users must be directly assigned to the app or to the group assigned to the app. Nested groups are not supported.
@@ -61,9 +61,9 @@ As Quick Access provides access to a wide range of resources, assign access to a
 
 Conditional Access policies can be applied to your Quick Access app. To enforce more strict controls for certain applications, you will need to segment access and create specific Enterprise Applications representing those apps.
 
-Creating a Conditional Access policy is covered in detail in [How to create a Conditional Access policy for Private Access apps](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-target-resource-private-access-apps).
+Creating a Conditional Access policy is covered in detail in [How to create a Conditional Access policy for Private Access apps](https://learn.microsoft.com/entra/global-secure-access/how-to-target-resource-private-access-apps).
 
 ## Enable Microsoft Entra Private Access
 
-Once you have your Quick Access app configured, your private resources added, users assigned to the app, you can enable the Private access profile from the **Traffic forwarding** area of Global Secure Access. You can enable the profile before configuring Quick Access, but without the app and profile configured, there's no traffic to forward. To learn how to enable the Private Access traffic forwarding profile, see [How to manage the Private Access traffic forwarding profile](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-manage-private-access-profile).
+Once you have your Quick Access app configured, your private resources added, users assigned to the app, you can enable the Private access profile from the **Traffic forwarding** area of Global Secure Access. You can enable the profile before configuring Quick Access, but without the app and profile configured, there's no traffic to forward. To learn how to enable the Private Access traffic forwarding profile, see [How to manage the Private Access traffic forwarding profile](https://learn.microsoft.com/entra/global-secure-access/how-to-manage-private-access-profile).
 

website/docs/Entra Private Access/per-appAccess.md

@@ -31,7 +31,7 @@ To create a new app, you provide a name, select a connector group, and then add
 1. Enter a name for the app.
 1. Select a Connector group from the dropdown menu.
     > [!IMPORTANT]
-    > You must have at least one active connector in order to create an application. To learn more about connectors, see [Understand the Microsoft Entra private network connector](https://learn.microsoft.com/en-us/entra/global-secure-access/concept-connectors).
+    > You must have at least one active connector in order to create an application. To learn more about connectors, see [Understand the Microsoft Entra private network connector](https://learn.microsoft.com/entra/global-secure-access/concept-connectors).
 1. Select the **Save** button at the bottom of the page to create your app without adding private resources.
 
 ### Add application segment
@@ -88,7 +88,7 @@ You can add fully qualified domain names (FQDN), IP addresses, and IP address ra
 
 ## Assign users and groups
 
-You need to grant access to the app you created by assigning users and/or groups to the app. For more information, see [Assign users and groups to an application.](https://learn.microsoft.com/en-us/entra/identity/enterprise-apps/assign-user-or-group-access-portal?pivots=portal)
+You need to grant access to the app you created by assigning users and/or groups to the app. For more information, see [Assign users and groups to an application.](https://learn.microsoft.com/entra/identity/enterprise-apps/assign-user-or-group-access-portal?pivots=portal)
 
 1. Sign in to the [Microsoft Entra admin center](https://entra.microsoft.com).
 1. Browse to **Global Secure Access** > **Applications** > **Enterprise applications**.
@@ -123,5 +123,5 @@ Conditional Access policies for per-app access are configured at the application
 - Go to **Global Secure Access** > **Applications** > **Enterprise applications**. Select an application and then select **Conditional Access** from the side menu.
 - Go to **Protection** > **Conditional Access** > **Policies**. Select **+ Create new policy**.
 
-For more information, see [Apply Conditional Access policies to Private Access apps](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-target-resource-private-access-apps).
+For more information, see [Apply Conditional Access policies to Private Access apps](https://learn.microsoft.com/entra/global-secure-access/how-to-target-resource-private-access-apps).
 

website/docs/Entra Private Access/powershell.md

@@ -3,12 +3,12 @@ sidebar_position: 60
 title: "Using PowerShell to manage Private Access"
 ---
 
-This is a community-supported PowerShell module which simplifies managing Entra Private Access apps. The module calls the Graph API endpoints to perform common operations.
+This is a community-supported PowerShell module which simplifies managing Microsoft Entra Private Access apps. The module calls the Graph API endpoints to perform common operations.
 https://github.com/andres-canello/GlobalSecureAccess.ps
 
 ==============================================================
 
-NOTE: The commands in this module are being created into Microsoft's Entra PowerShell Beta module https://learn.microsoft.com/en-us/powershell/entra-powershell/installation
+NOTE: The commands in this module are being created in the Microsoft Entra PowerShell Beta module https://learn.microsoft.com/powershell/entra-powershell/installation
 Once I finish, I'll flag this module as deprecated.
 These are the commands already implemented in Entra PS Beta:
 

website/docs/GlobalSecureAccessClients/WindowsClientTroubleshooting.md

@@ -90,7 +90,7 @@ $StartDate = (Get-Date).AddMinutes(-3) ; Get-WinEvent -FilterHashtable @{LogName
 Workaround:
 Disable IPv6 on your client machine (where GSA client runs) *AND* on your connector/s servers. *It's important to disable IPv6 on both.*
 
-[Guidance on disabling IPv6 on Windows](https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/configure-ipv6-in-windows#:~:text=will%20be%20preferred.-,Disable%20IPv6,-Decimal%20255%0AHexadecimal)
+[Guidance on disabling IPv6 on Windows](https://learn.microsoft.com/troubleshoot/windows-server/networking/configure-ipv6-in-windows#:~:text=will%20be%20preferred.-,Disable%20IPv6,-Decimal%20255%0AHexadecimal)
 
 ### Private Access resource access fails
 There are multiple reasons Private Access resources might not work correctly. Here are some troubleshooting steps you can follow.

website/docs/Pre-requisites/Baseline.md

@@ -4,17 +4,17 @@ sidebar_position: 300
 
 For running a Global Secure Access POC you will need the following pre-requisites:
 
-* An Entra ID tenant
+* An Microsoft Entra ID tenant
 * A user with the Global Secure Access administrator, Application Administrator and Conditional Access Administrator roles.
 * At least one test user
 * At least one client device you'll use for user testing. To simulate remote access, this device should only have Internet access.
-  * Windows 10/11 devices need to be either Entra ID Joined or Hybrid Joined.
+  * Windows 10/11 devices need to be either Microsoft Entra ID Joined or Hybrid Joined.
   * Android must have the Microsoft Defender app installed.
 
 * Paid or trial licenses
-  * Entra Suite trial licenses https://aka.ms/EntraSuiteTrial
-  * Get Entra Internet Access trial licenses https://aka.ms/InternetAccessTrial
-  * Get Entra Private Access trial licenses https://aka.ms/PrivateAccessTrial
+  * Microsoft Entra Suite trial licenses https://aka.ms/Microsoft EntraSuiteTrial
+  * Get Microsoft Entra Internet Access trial licenses https://aka.ms/InternetAccessTrial
+  * Get Microsoft Entra Private Access trial licenses https://aka.ms/PrivateAccessTrial
 
 
 

website/docs/Pre-requisites/ConnectorPA.md

@@ -10,11 +10,11 @@ You can organize connectors into connector groups, with each group handling traf
 
 Follow the steps in this article to plan and deploy your connectors in preparation for testing Private Access:
 
-[Understand the Microsoft Entra private network connector](https://learn.microsoft.com/en-us/entra/global-secure-access/concept-connectors)
+[Understand the Microsoft Entra private network connector](https://learn.microsoft.com/entra/global-secure-access/concept-connectors)
 
-[How to configure private network connectors for Microsoft Entra Private Access and Microsoft Entra application proxy](https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-configure-connectors)
+[How to configure private network connectors for Microsoft Entra Private Access and Microsoft Entra application proxy](https://learn.microsoft.com/entra/global-secure-access/how-to-configure-connectors)
 
-> The minimum version of connector required for Private Access is **1.5.3417.0**, however it's recommended to install the [latest available version](https://learn.microsoft.com/en-us/entra/global-secure-access/reference-version-history)
+> The minimum version of connector required for Private Access is **1.5.3417.0**, however it's recommended to install the [latest available version](https://learn.microsoft.com/entra/global-secure-access/reference-version-history)
 
 
 ## Tips for avoiding issues on your POCs

website/docs/RunningPOCs.md

@@ -18,7 +18,7 @@ This guide assumes you are running a POC in a production environment. Running a
 
 ## Private Access
 #### Are you using a VPN today? The best way to start is by testing our "VPN Replacement" scenario.
-This gives you the ability to publish all the same resources that users access through the VPN, protected by Entra ID.
+This gives you the ability to publish all the same resources that users access through the VPN, protected by Microsoft Entra ID.
 From that point onwards, you can start "segmenting access" by creating Enterprise Apps that define access to specific resources that only selected users should access. For example, only administrators should be able to RDP servers.
 
 Review the [VPN Replacement](./Entra%20Private%20Access/VPNReplacement.md) section to understand the recommended configuration for this scenario.
@@ -32,4 +32,4 @@ If you decide to only [publish certain resources using Private Access](./Entra%2
 ## Internet Access
 
 There are several scenarios enabled by Internet Access and Microsoft Access that can be tested as part of a POC.
-Alternatively, coexistence with other solutions can be tested using the guidance provided here: [Secure Access with Global Secure Access Partners](https://learn.microsoft.com/en-us/entra/global-secure-access/concept-cisco-coexistence)
+Alternatively, coexistence with other solutions can be tested using the guidance provided here: [Secure Access with Global Secure Access Partners](https://learn.microsoft.com/entra/global-secure-access/concept-cisco-coexistence)

website/docs/intro.md

@@ -42,7 +42,7 @@ Welcome to our community hub dedicated to Global Secure Access – the unifying
 
 ### Global Secure Access
 
-[Visit the Global Secure Access licensing documentation](https://learn.microsoft.com/en-us/entra/global-secure-access/overview-what-is-global-secure-access#licensing-overview)
+[Visit the Global Secure Access licensing documentation](https://learn.microsoft.com/entra/global-secure-access/overview-what-is-global-secure-access#licensing-overview)
 
 
 ## ⏩ Deployment Guides for Proof of Concepts (PoCs)