sync the latest master

Author: JiayueHu

.openpublishing.redirection.json

@@ -11605,6 +11605,11 @@
             "redirect_url": "/azure/storage/common/storage-quickstart-create-account?tabs=powershell",
             "redirect_document_id": false
         },
+        {
+            "source_path": "articles/storage/blobs/data-lake-storage-evaluation.md",
+            "redirect_url": "/azure/storage/blobs/data-lake-storage-upgrade",
+            "redirect_document_id": false
+        },
         {
             "source_path": "articles/sql-data-warehouse/sql-data-warehouse-get-started-load-with-azure-data-factory.md",
             "redirect_url": "/azure/sql-data-warehouse/sql-data-warehouse-load-with-data-factory",
@@ -31641,6 +31646,96 @@
             "redirect_url":  "/azure/azure-monitor/platform/om-agents",
             "redirect_document_id":  true
         },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-quick-collect-windows-computer.md",
+            "redirect_url":  "/azure/azure-monitor/learn/quick-collect-windows-computer",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-quick-create-workspace.md",
+            "redirect_url":  "/azure/azure-monitor/learn/quick-create-workspace",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-quick-create-workspace-cli.md",
+            "redirect_url":  "/azure/azure-monitor/learn/quick-create-workspace-cli",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-quick-create-workspace-posh.md",
+            "redirect_url":  "/azure/azure-monitor/learn/quick-create-workspace-posh",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-service-providers.md",
+            "redirect_url":  "/azure/azure-monitor/platform/service-providers",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-standard-properties.md",
+            "redirect_url":  "/azure/azure-monitor/platform/log-standard-properties",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-template-workspace-configuration.md",
+            "redirect_url":  "/azure/azure-monitor/platform/template-workspace-configuration",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-tutorial-dashboards.md",
+            "redirect_url":  "/azure/azure-monitor/learn/tutorial-logs-dashboards",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-tutorial-response.md",
+            "redirect_url":  "/azure/azure-monitor/learn/tutorial-response",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-tutorial-viewdata.md",
+            "redirect_url":  "/azure/azure-monitor/learn/tutorial-viewdata",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-manage-access.md",
+            "redirect_url":  "/azure/azure-monitor/platform/manage-access",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-manage-cost-storage.md",
+            "redirect_url":  "/azure/azure-monitor/platform/manage-cost-storage",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-manage-del-workspace.md",
+            "redirect_url":  "/azure/azure-monitor/platform/delete-workspace",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-network-performance-monitor-faq.md",
+            "redirect_url":  "/azure/azure-monitor/insights/network-performance-monitor-faq",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-oms-portal-faq.md",
+            "redirect_url":  "/azure/azure-monitor/platform/oms-portal-faq",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-oms-portal-transition.md",
+            "redirect_url":  "/azure/azure-monitor/platform/oms-portal-transition",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-personal-data-mgmt.md",
+            "redirect_url":  "/azure/azure-monitor/platform/personal-data-mgmt",
+            "redirect_document_id":  true
+        },
+        {
+            "source_path":  "articles/log-analytics/log-analytics-powerbi.md",
+            "redirect_url":  "/azure/azure-monitor/platform/powerbi",
+            "redirect_document_id":  true
+        },
         {
             "source_path":  "articles/storage/common/storage-lifecycle-managment-concepts.md",
             "redirect_url":  "/azure/storage/common/storage-lifecycle-management-concepts",

articles/active-directory-b2c/active-directory-b2c-app-registration.md

@@ -8,7 +8,7 @@ manager: mtillman
 ms.service: active-directory
 ms.workload: identity
 ms.topic: conceptual
-ms.date: 11/01/2018
+ms.date: 12/05/2018
 ms.author: davidmu
 ms.component: B2C
 ---
@@ -78,7 +78,4 @@ If your application calls a web API secured by Azure AD B2C, you need to create
 
 ## Next steps
 
-Now that you have an application registered with Azure AD B2C, you can complete one of [the quickstart tutorials](active-directory-b2c-overview.md) to get up and running.
-
-> [!div class="nextstepaction"]
-> [Create an ASP.NET web app with sign-up, sign-in, and password reset](active-directory-b2c-devquickstarts-web-dotnet-susi.md)
+Learn more about how access tokens are used by applications grant permissions to APIs in [Requesting access tokens](active-directory-b2c-access-tokens.md)

articles/active-directory/b2b/media/user-properties/after-redemption-state1.png

@@ -6,7 +6,7 @@ services: active-directory
 ms.service: active-directory
 ms.component: B2B
 ms.topic: conceptual
-ms.date: 05/25/2017
+ms.date: 12/5/2018
 
 ms.author: mimart
 author: msmimart
@@ -23,31 +23,43 @@ Depending on the inviting organization's needs, an Azure AD B2B collaboration us
 
 - State 1: Homed in an external instance of Azure AD and represented as a guest user in the inviting organization. In this case, the B2B user signs in by using an Azure AD account that belongs to the invited tenant. If the partner organization doesn't use Azure AD, the guest user in Azure AD is still created. The requirements are that they redeem their invitation and Azure AD verifies their email address. This arrangement is also called a just-in-time (JIT) tenancy or a "viral" tenancy.
 
-- State 2: Homed in a Microsoft account and represented as a guest user in the host organization. In this case, the guest user signs in with a Microsoft account. The invited user's social identity (google.com or similar), which is not a Microsoft account, is created as a Microsoft account during offer redemption.
+- State 2: Homed in a Microsoft or other account and represented as a guest user in the host organization. In this case, the guest user signs in with a Microsoft account or a social account (google.com or similar). The invited user's identity is created as a Microsoft account in the inviting organization’s directory during offer redemption.
 
-- State 3: Homed in the host organization's on-premises Active Directory and synced with the host organization's Azure AD. During this release, you must use PowerShell to manually change the UserType of such users in the cloud.
+- State 3: Homed in the host organization's on-premises Active Directory and synced with the host organization's Azure AD. You can use Azure AD Connect to sync the partner accounts to the cloud as Azure AD B2B users with UserType = Guest. See [Grant locally-managed partner accounts access to cloud resources](hybrid-on-premises-to-cloud.md).
 
-- State 4: Homed in host organization's Azure AD with UserType = Guest and credentials that the host organization manages.
+- State 4: Homed in the host organization's Azure AD with UserType = Guest and credentials that the host organization manages.
 
   ![Displaying the inviter's initials](media/user-properties/redemption-diagram.png)
 
 
-Now, let's see what an Azure AD B2B collaboration user in State 1 looks like in Azure AD.
+Now, let's see what an Azure AD B2B collaboration user looks like in Azure AD.
 
 ### Before invitation redemption
 
+State 1 and State 2 accounts are the result of inviting guest users to collaborate by using the guest users' own credentials. When the invitation is initially sent to the guest user, an account is created in your directory. This account doesn’t have any credentials associated with it because authentication is performed by the guest user's identity provider. The **Source** property for the guest user account in your directory is set to **Invited user**. 
+
 ![Before offer redemption](media/user-properties/before-redemption.png)
 
 ### After invitation redemption
 
-![After offer redemption](media/user-properties/after-redemption.png)
+After the guest user accepts the invitation, the **Source** property is updated based on the guest user’s identity provider.
+
+For guest users in State 1, the **Source** is **External Azure Active Directory**.
+
+![State 1 guest user after offer redemption](media/user-properties/after-redemption-state1.png)
+
+For guest users in State 2, the **Source** is **Microsoft Account**.
+
+![State 2 guest user after offer redemption](media/user-properties/after-redemption-state2.png)
+
+For guest users in State 3 and State 4, the **Source** property is set to **Azure Active Directory** or **Windows Server Active Directory**, as described in the next section.
 
 ## Key properties of the Azure AD B2B collaboration user
 ### UserType
 This property indicates the relationship of the user to the host tenancy. This property can have two values:
-- Member: This value indicates an employee of the host organization and a user in the organization's payroll. For example, this user expects to have access to internal-only sites. This user would not be considered an external collaborator.
+- Member: This value indicates an employee of the host organization and a user in the organization's payroll. For example, this user expects to have access to internal-only sites. This user is not considered an external collaborator.
 
-- Guest: This value indicates a user who isn't considered internal to the company, such as an external collaborator, partner, customer, or similar user. Such a user wouldn't be expected to receive a CEO's internal memo, or receive company benefits, for example.
+- Guest: This value indicates a user who isn't considered internal to the company, such as an external collaborator, partner, or customer. Such a user isn't expected to receive a CEO's internal memo or receive company benefits, for example.
 
   > [!NOTE]
   > The UserType has no relation to how the user signs in, the directory role of the user, and so on. This property simply indicates the user's relationship to the host organization and allows the organization to enforce policies that depend on this property.
@@ -75,17 +87,17 @@ Typically, an Azure AD B2B user and guest user are synonymous. Therefore, an Azu
 ![Filter guest users](media/user-properties/filter-guest-users.png)
 
 ## Convert UserType
-Currently, it is possible for users to convert UserType from Member to Guest and vice-versa by using PowerShell. However, the UserType property is supposed to represent the user's relationship to the organization. Therefore, the value of this property should change only if the relationship of the user to the organization changes. If the relationship of the user changes, should issues, like whether the user principal name (UPN) should change, be addressed? Should the user continue to have access to the same resources? Should a mailbox be assigned? Therefore, we do not recommend changing the UserType by using PowerShell as an atomic activity. In addition, in case this property becomes immutable by using PowerShell, we do not recommend taking a dependency on this value.
+It's possible to convert UserType from Member to Guest and vice-versa by using PowerShell. However, the UserType property represents the user's relationship to the organization. Therefore, you should change this property only if the relationship of the user to the organization changes. If the relationship of the user changes, should the user principal name (UPN) change? Should the user continue to have access to the same resources? Should a mailbox be assigned? We don't recommend changing the UserType by using PowerShell as an atomic activity. Also, in case this property becomes immutable by using PowerShell, we don't recommend taking a dependency on this value.
 
 ## Remove guest user limitations
 There may be cases where you want to give your guest users higher privileges. You can add a guest user to any role and even remove the default guest user restrictions in the directory to give a user the same privileges as members.
 
-It is possible to turn off the default guest user limitations so that a guest user in the company directory is given the same permissions as a member user.
+It's possible to turn off the default limitations so that a guest user in the company directory has the same permissions as a member user.
 
 ![Remove guest user limitations](media/user-properties/remove-guest-limitations.png)
 
 ## Can I make guest users visible in the Exchange Global Address List?
-Yes. By default, guest objects are not visible in your organization's global address list, but you can use Azure Active Directory PowerShell to make them visible. For details, see **Can I make guest objects visible in the global address list?** in [Guest access in Office 365 Groups](https://support.office.com/article/guest-access-in-office-365-groups-bfc7a840-868f-4fd6-a390-f347bf51aff6#PickTab=FAQ). 
+Yes. By default, guest objects aren't visible in your organization's global address list, but you can use Azure Active Directory PowerShell to make them visible. For details, see **Can I make guest objects visible in the global address list?** in [Guest access in Office 365 Groups](https://support.office.com/article/guest-access-in-office-365-groups-bfc7a840-868f-4fd6-a390-f347bf51aff6#PickTab=FAQ). 
 
 ## Next steps
 

articles/active-directory/b2b/media/user-properties/after-redemption-state2.png

@@ -3,7 +3,7 @@ title: Azure AD v2.0 ASP.NET Core web app quickstart | Microsoft Docs
 description: Learn how to implement Microsoft Sign-In on an ASP.NET Core Web App using OpenID Connect
 services: active-directory
 documentationcenter: dev-center-name
-author: andretms
+author: jmprieur
 manager: mtillman
 editor: ''
 
@@ -14,13 +14,13 @@ ms.devlang: na
 ms.topic: quickstart
 ms.tgt_pltfrm: na
 ms.workload: identity
-ms.date: 11/09/2018
-ms.author: andret
+ms.date: 12/05/2018
+ms.author: jmprieur
 ms.custom: aaddev 
 #Customer intent: As an application developer, I want to know how to write an ASP.NET Core web app that can sign in personal accounts, as well as work and school accounts from any Azure Active Directory instance.
 ---
 
-# Quickstart: Add sign-in with Microsoft to an ASP.NET web app
+# Quickstart: Add sign-in with Microsoft to an ASP.NET Core web app
 
 [!INCLUDE [active-directory-develop-applies-v2](../../../includes/active-directory-develop-applies-v2.md)]
 

articles/active-directory/b2b/media/user-properties/after-redemption.png

@@ -25,7 +25,7 @@ This article helps you to add and remove a group from another group using Azure
 You can add an existing Security group to another existing Security group (also known as nested groups), creating a member group (subgroup) and a parent group. The member group inherits the attributes and properties of the parent group, saving you configuration time.
 
 >[!Important]
->We don't currently support:<ul><li>Adding Security groups to Office 365 groups</li><li>Adding Office 365 groups to Security groups or other Office 365 groups</li><li>Assigning apps to nested groups</li><li>Applying licenses to nested groups</li></ul>
+>We don't currently support:<ul><li>Adding groups to a group synced with on-premises Active Directory</li><li>Adding Security groups to Office 365 groups</li><li>Adding Office 365 groups to Security groups or other Office 365 groups</li><li>Assigning apps to nested groups</li><li>Applying licenses to nested groups</li></ul>
 
 ### To add a group as a member of another group
 

articles/active-directory/b2b/media/user-properties/before-redemption.png

@@ -74,7 +74,7 @@ To register Windows down-level devices, you need to make sure that the Azure AD
 Add the Azure AD device authentication endpoint to the local Intranet zones on your Windows down-level devices to avoid certificate prompts when authenticating the devices:
 https://device.login.microsoftonline.com 
 
-If you are using [Seamless SSO](https://aka.ms/hybrid/sso), also enable “Allow status bar updates via script” on that zone and add the following endpoint:
+If you are using [Seamless SSO](how-to-connect-sso.md), also enable “Allow status bar updates via script” on that zone and add the following endpoint:
 https://autologon.microsoftazuread-sso.com 
 
 ## 9. Install Microsoft Workplace Join on Windows down-level devices

articles/active-directory/b2b/media/user-properties/filter-guest-users.png

@@ -23,7 +23,7 @@ The diagnosis feature has these benefits:
 - It provides a diagnostic procedure that narrows down duplicated attribute sync errors. And it gives specific fixes.
 - It applies a fix for dedicated scenarios from Azure AD to resolve the error in a single step.
 - No upgrade or configuration is required to enable this feature.
-For more information about Azure AD, see [Identity synchronization and duplicate attribute resiliency](https://aka.ms/dupattributeresdocs).
+For more information about Azure AD, see [Identity synchronization and duplicate attribute resiliency](how-to-connect-syncservice-duplicate-attribute-resiliency.md).
 
 ## Problems
 ### A common scenario

articles/active-directory/b2b/media/user-properties/redemption-diagram.png

@@ -86,7 +86,7 @@ You must also be aware of what capabilities will not be available:
 * Transition of Office to passive authentication allows them to support pure SAML 2.0 IdPs, but support will still be on a client-by-client basis
 
 > [!NOTE]
-> For the most updated list read the article https://aka.ms/ssoproviders.
+> For the most updated list read the article [Azure AD federation compatibility list](how-to-connect-fed-compatibility.md).
 > 
 >