debuglevel
diff --git a/‎.openpublishing.publish.config.json‎
Lines changed: 13 additions & 1 deletion b/‎.openpublishing.publish.config.json‎
Lines changed: 13 additions & 1 deletion
diff --git a/‎.openpublishing.redirection.json‎
Lines changed: 34 additions & 0 deletions b/‎.openpublishing.redirection.json‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎SECURITY.md‎
Lines changed: 41 additions & 0 deletions b/‎SECURITY.md‎
Lines changed: 41 additions & 0 deletions
diff --git a/‎azure-sql/database/advance-notifications.md‎
Lines changed: 21 additions & 17 deletions b/‎azure-sql/database/advance-notifications.md‎
Lines changed: 21 additions & 17 deletions
diff --git a/‎azure-sql/database/always-encrypted-enclaves-enable-sgx.md‎
Lines changed: 1 addition & 1 deletion b/‎azure-sql/database/always-encrypted-enclaves-enable-sgx.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎azure-sql/database/always-encrypted-enclaves-getting-started.md‎
Lines changed: 5 additions & 5 deletions b/‎azure-sql/database/always-encrypted-enclaves-getting-started.md‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎azure-sql/database/always-encrypted-enclaves-plan.md‎
Lines changed: 1 addition & 1 deletion b/‎azure-sql/database/always-encrypted-enclaves-plan.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎azure-sql/database/arm-templates-content-guide.md‎
Lines changed: 1 addition & 2 deletions b/‎azure-sql/database/arm-templates-content-guide.md‎
Lines changed: 1 addition & 2 deletions
@@ -78,12 +78,24 @@
       "branch": "master",
       "branch_mapping": {}
     },
+    {
+      "path_to_root": "azure-dev-docs-pr",
+      "url": "https://github.com/MicrosoftDocs/azure-dev-docs-pr",
+      "branch": "main",
+      "branch_mapping": {}
+    },
+    {
+      "path_to_root": "terraform_scripts",
+      "url": "https://github.com/Azure/terraform/",
+      "branch": "master",
+      "branch_mapping": {}
+    },
     {
       "path_to_root": "powershell_scripts",
       "url": "https://github.com/Azure/azure-docs-powershell-samples",
       "branch": "master",
       "branch_mapping": {}
-    },
+    },    
     {
       "path_to_root": "quickstart-templates",
       "url": "https://github.com/Azure/azure-quickstart-templates",
 
@@ -59529,6 +59529,40 @@
       "source_path": "docs/relational-databases/system-tables/cdc-change-feed-settings.md",
       "redirect_url": "/sql/relational-databases/system-tables/changefeed-change-feed-settings",
       "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/relational-databases/errors-events/mssqlserver-neg2-database-engine-error.md",
+      "redirect_url": "/troubleshoot/sql/connect/timeout-expired-error",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/relational-databases/errors-events/mssqlserver-1-database-engine-error.md",
+      "redirect_url": "/troubleshoot/sql/connect/network-related-or-instance-specific-error-occurred-while-establishing-connection",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/relational-databases/errors-events/mssqlserver-2-database-engine-error.md",
+      "redirect_url": "/troubleshoot/sql/connect/network-related-or-instance-specific-error-occurred-while-establishing-connection",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/relational-databases/errors-events/mssqlserver-53-database-engine-error.md",
+      "redirect_url": "/troubleshoot/sql/connect/network-related-or-instance-specific-error-occurred-while-establishing-connection",
+    },
+    {
+      "source_path": "azure-sql/database/sql-vulnerability-assessment.md",
+      "redirect_url": "/defender-for-cloud/sql-azure-vulnerability-assessment-overview",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/database-engine/configure-windows/enable-encrypted-connections-to-the-database-engine.md",
+      "redirect_url": "/sql/database-engine/configure-windows/configure-sql-server-encryption",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "docs/relational-databases/performance/parameter-sensitivity-plan-optimization.md",
+      "redirect_url": "/sql/relational-databases/performance/parameter-sensitive-plan-optimization",
+      "redirect_document_id": false
     }
   ]
 }
 
@@ -0,0 +1,41 @@
+<!-- BEGIN MICROSOFT SECURITY.MD V0.0.8 BLOCK -->
+
+## Security
+
+Microsoft takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations, which include [Microsoft](https://github.com/microsoft), [Azure](https://github.com/Azure), [DotNet](https://github.com/dotnet), [AspNet](https://github.com/aspnet), [Xamarin](https://github.com/xamarin), and [our GitHub organizations](https://opensource.microsoft.com/).
+
+If you believe you have found a security vulnerability in any Microsoft-owned repository that meets [Microsoft's definition of a security vulnerability](https://aka.ms/opensource/security/definition), please report it to us as described below.
+
+## Reporting Security Issues
+
+**Please do not report security vulnerabilities through public GitHub issues.**
+
+Instead, please report them to the Microsoft Security Response Center (MSRC) at [https://msrc.microsoft.com/create-report](https://aka.ms/opensource/security/create-report).
+
+If you prefer to submit without logging in, send email to [secure@microsoft.com](mailto:secure@microsoft.com).  If possible, encrypt your message with our PGP key; please download it from the [Microsoft Security Response Center PGP Key page](https://aka.ms/opensource/security/pgpkey).
+
+You should receive a response within 24 hours. If for some reason you do not, please follow up via email to ensure we received your original message. Additional information can be found at [microsoft.com/msrc](https://aka.ms/opensource/security/msrc). 
+
+Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
+
+  * Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+  * Full paths of source file(s) related to the manifestation of the issue
+  * The location of the affected source code (tag/branch/commit or direct URL)
+  * Any special configuration required to reproduce the issue
+  * Step-by-step instructions to reproduce the issue
+  * Proof-of-concept or exploit code (if possible)
+  * Impact of the issue, including how an attacker might exploit the issue
+
+This information will help us triage your report more quickly.
+
+If you are reporting for a bug bounty, more complete reports can contribute to a higher bounty award. Please visit our [Microsoft Bug Bounty Program](https://aka.ms/opensource/security/bounty) page for more details about our active programs.
+
+## Preferred Languages
+
+We prefer all communications to be in English.
+
+## Policy
+
+Microsoft follows the principle of [Coordinated Vulnerability Disclosure](https://aka.ms/opensource/security/cvd).
+
+<!-- END MICROSOFT SECURITY.MD BLOCK -->
@@ -4,7 +4,7 @@ description: Get notification before planned maintenance for Azure SQL Database.
 author: scott-kim-sql
 ms.author: scottkim
 ms.reviewer: wiassaf, mathoma, urosmil
-ms.date: 04/04/2022
+ms.date: 12/01/2022
 ms.service: sql-db-mi
 ms.subservice: service-overview
 ms.topic: how-to
@@ -25,39 +25,43 @@ Notifications can be configured so you can get texts, emails, Azure push notific
 
 ## Configure an advance notification
 
-Advance notifications are available for Azure SQL databases that have their maintenance window configured. 
+Advance notifications are available for Azure SQL databases that have their maintenance window configured and managed instances with any configuration (including the default one). 
 
 Complete the following steps to enable a notification.  
 
 1. Go to the [Planned maintenance](https://portal.azure.com/#blade/Microsoft_Azure_Health/AzureHealthBrowseBlade/plannedMaintenance) page, select **Health alerts**, then **Add service health alert**.
 
     :::image type="content" source="media/advance-notifications/health-alerts.png" alt-text="create a new health alert menu option":::
+    
+2. In the **Scope** section, select subscription. 
 
-2. In the **Actions** section, select **Add action groups**. 
+    :::image type="content" source="media/advance-notifications/select-subscription.png" alt-text="A screenshot of the Azure portal page where you select the subscription where you will be configuring the health alert.":::
 
-    :::image type="content" source="media/advance-notifications/add-action-group.png" alt-text="add an action group menu option":::
+3. In the **Condition** section, configure service(s) to be alerted for, region(s) and criteria. For more generic alert, select all values. To narrow down, select Azure SQL Database or Azure SQL Managed Instance as a service, region(s) where you have those services deployed, and **Planned maintenance** for the event type.
 
-3. Complete the **Create action group** form, then select **Next: Notifications**.  
-
-    :::image type="content" source="media/advance-notifications/create-action-group.png" alt-text="create action group form":::
-
-1. On the **Notifications** tab, select the **Notification type**. The **Email/SMS message/Push/Voice** option offers the most flexibility and is the recommended option. Select the pen to configure the notification.  
-
-    :::image type="content" source="media/advance-notifications/notifications.png" alt-text="configure notifications":::
-
-   1. Complete the *Add or edit notification* form that opens and select **OK**: 
+    :::image type="content" source="media/advance-notifications/define-condition-services.png" alt-text="A screenshot of the Azure portal page where you define conditions for the health alert and define services to be notified for.":::
+    
+    :::image type="content" source="media/advance-notifications/define-condition-regions.png" alt-text="A screenshot of the Azure portal page where you define conditions for the health alert and define regions to be notified for.":::
+    
+    :::image type="content" source="media/advance-notifications/define-condition-event-types.png" alt-text="A screenshot of the Azure portal page where you define conditions for the health alert and define event types to be notified for.":::
+    
+> [!IMPORTANT]
+> Service health is rolling out new experiencs in phases. Some users will see the updated experience, others will still see the classic Service Health portal experience. In case that you still see the classic Service Health portal, for **Region** don't select Global as an option, but rather the specific region or all regions.
 
-   2. Actions and Tags are optional. Here you can configure additional actions to be triggered or use tags to categorize and organize your Azure resources. 
+4. In the **Actions** section, select the existing action group or create a new one. 
 
-   4. Check the details on the **Review + create** tab and select **Create**. 
+    :::image type="content" source="media/advance-notifications/add-action-group.png" alt-text="A screenshot of the Azure portal page where you add or create action groups.":::
 
-7. After selecting create, the alert rule configuration screen opens and the action group will be selected. Give a name to your new alert rule, then choose the resource group for it, and select **Create alert rule**. 
+5. In the **Details** section, define the name for your alert and specify resource group where it should be deployed.
 
-8. Click the **Health alerts** menu item again, and the list of alerts now contains your new alert. 
+    :::image type="content" source="media/advance-notifications/define-alert-details.png" alt-text="A screenshot of the Azure portal page where you define alert details.":::
 
+6. Select **Review + create** and your alert will be created.
 
 You're all set. Next time there's a planned Azure SQL maintenance event, you'll receive an advance notification.
 
+To learn more about creating health alerts, visit [Azure Service Health](/azure/service-health/service-health-portal-update)
+
 ## Receiving notifications
 
 The following table shows the general-information notifications you may receive: 
 
@@ -19,7 +19,7 @@ ms.topic: conceptual
 Configuring the DC-series hardware to enable Intel SGX enclaves is the responsibility of the Azure SQL Database administrator. See [Roles and responsibilities when configuring SGX enclaves and attestation](always-encrypted-enclaves-plan.md#roles-and-responsibilities-when-configuring-sgx-enclaves-and-attestation).
 
 > [!NOTE]
-> Intel SGX is not available in hardware configurations other than DC-series. For example, Intel SGX is not available for Gen5 hardware, and it is not available for databases using the [DTU model](service-tiers-dtu.md).
+> Intel SGX is not available in hardware configurations other than DC-series. For example, Intel SGX is not available for standard-series (Gen5) hardware, and it is not available for databases using the [DTU model](service-tiers-dtu.md).
 
 > [!IMPORTANT]
 > Before you configure the DC-series hardware for your database, check the regional availability of DC-series and make sure you understand its performance limitations. For more information, see [DC-series](service-tiers-sql-database-vcore.md#dc-series).
 
@@ -58,10 +58,10 @@ In this step, you'll create a new Azure SQL Database logical server and a new da
 # [Portal](#tab/azure-portal)
 
 1. Browse to the [Select SQL deployment option](https://portal.azure.com/#create/Microsoft.AzureSQL) page.
-1. If you aren't already signed in to Azure portal, sign in when prompted.
+1. If you aren't already signed in to the Azure portal, sign in when prompted.
 1. Under **SQL databases**, leave **Resource type** set to **Single database**, and select **Create**.
 
-   :::image type="content" source="./media/single-database-create-quickstart/select-deployment.png" alt-text="Add to Azure SQL":::
+   :::image type="content" source="./media/single-database-create-quickstart/select-deployment.png" alt-text="Screenshot of Azure portal, showing the Add to Azure SQL deployment option.":::
 
 1. On the **Basics** tab of the **Create SQL Database** form, under **Project details**, select the desired Azure **Subscription**.
 1. For **Resource group**, select **Create new**, enter a name for your resource group, and select **OK**.
@@ -78,17 +78,17 @@ In this step, you'll create a new Azure SQL Database logical server and a new da
 1. Leave **Want to use SQL elastic pool** set to **No**.
 1. Under **Compute + storage**, select **Configure database**, and select **Change configuration**.
 
-   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-database.png" alt-text="Configure database" lightbox="./media/always-encrypted-enclaves/portal-configure-database.png":::
+   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-database.png" alt-text="Screenshot of Azure portal, hardware configuration, where to configure database." lightbox="./media/always-encrypted-enclaves/portal-configure-database.png":::
 
 1. Select the **DC-series** hardware configuration, and then select **OK**.
 
-   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-dc-series-database.png" alt-text="Configure DC-series database":::
+   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-dc-series-database.png" alt-text="Screenshot of Azure portal, showing Configure DC-series database.":::
 
 1. Select **Apply**. 
 1. Back on the **Basics** tab, verify **Compute + storage** is set to **General Purpose**, **DC, 2 vCores, 32 GB storage**.
 1. Select **Next: Networking** at the bottom of the page.
 
-   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-dc-series-database-basics.png" alt-text="Configure DC-series database - basics":::
+   :::image type="content" source="./media/always-encrypted-enclaves/portal-configure-dc-series-database-basics.png" alt-text="Screenshot of Azure portal, showing Configure DC-series database - basics.":::
 
 1. On the **Networking** tab, for **Connectivity method**, select **Public endpoint**.
 1. For **Firewall rules**, set **Add current client IP address** to **Yes**. Leave **Allow Azure services and resources to access this server** set to **No**.
 
@@ -21,7 +21,7 @@ ms.topic: conceptual
 Intel SGX is a hardware-based trusted execution environment technology. Intel SGX is available for databases that use the [vCore model](service-tiers-sql-database-vcore.md) and [DC-series](service-tiers-sql-database-vcore.md?#dc-series) hardware. Therefore, to ensure you can use Always Encrypted with secure enclaves in your database, you need to either select the DC-series hardware when you create the database, or you can update your existing database to use the DC-series hardware.
 
 > [!NOTE]
-> Intel SGX is not available in hardware other than DC-series. For example, Intel SGX is not available for Gen5 hardware, and it is not available for databases using the [DTU model](service-tiers-dtu.md).
+> Intel SGX is not available in hardware other than DC-series. For example, Intel SGX is not available for standard-series (Gen5) hardware, and it is not available for databases using the [DTU model](service-tiers-dtu.md).
 
 > [!IMPORTANT]
 > Before you configure the DC-series hardware for your database, check the regional availability of DC-series and make sure you understand its performance limitations. For details, see [DC-series](service-tiers-sql-database-vcore.md#dc-series).
 
@@ -7,7 +7,7 @@ ms.reviewer: wiassaf, mathoma
 ms.date: 06/30/2021
 ms.service: sql-db-mi
 ms.subservice: deployment-configuration
-ms.topic: guide
+ms.topic: conceptual
 ms.custom: overview-samples sqldbrb=2
 ---
 
@@ -26,7 +26,6 @@ The following table includes links to Azure Resource Manager templates for Azure
 | [Server](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-logical-server) | This Azure Resource Manager template creates a server for Azure SQL Database. |
 | [Elastic pool](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-elastic-pool-create) | This template allows you to deploy an elastic pool and to assign databases to it. |
 | [Failover groups](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-with-failover-group) | This template creates two servers, a single database, and a failover group in Azure SQL Database.|
-| [Threat Detection](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-threat-detection-db-policy-multiple-databases) | This template allows you to deploy a server and a set of databases with Threat Detection enabled, with an email address for alerts for each database. Threat Detection is part of the SQL Advanced Threat Protection (ATP) offering and provides a layer of security that responds to potential threats over servers and databases.|
 | [Auditing to Azure Blob storage](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-auditing-server-policy-to-blob-storage) | This template allows you to deploy a server with auditing enabled to write audit logs to a Blob storage. Auditing for Azure SQL Database tracks database events and writes them to an audit log that can be placed in your Azure storage account, OMS workspace, or Event Hubs.|
 | [Auditing to Azure Event Hub](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.sql/sql-auditing-server-policy-to-eventhub) | This template allows you to deploy a server with auditing enabled to write audit logs to an existing event hub. In order to send audit events to Event Hubs, set auditing settings with `Enabled` `State`, and set `IsAzureMonitorTargetEnabled` as `true`. Also, configure Diagnostic Settings with the `SQLSecurityAuditEvents` log category on the `master` database (for server-level auditing). Auditing tracks database events and writes them to an audit log that can be placed in your Azure storage account, OMS workspace, or Event Hubs.|
 | [Azure Web App with SQL Database](https://github.com/Azure/azure-quickstart-templates/tree/master/quickstarts/microsoft.web/web-app-sql-database) | This sample creates a free Azure web app and a database in Azure SQL Database at the "Basic" service level.|