Merge pull request #2857 from MicrosoftDocs/main639077689705053245sync_temp

learn-build-service-prod[bot] · web-flow · commit fa69a35089d4 · 2026-02-27T06:03:03.000Z
For protected branch, push strategy should use PR and merge to target branch method to work around git push error
diff --git a/data-explorer/includes/managed-identity.md b/data-explorer/includes/managed-identity.md
@@ -37,10 +37,10 @@ ms.date: 01/09/2025
       "id": "/subscriptions/00001111-aaaa-2222-bbbb-3333cccc4444/resourceGroups/my-resource-group/providers/Microsoft.ManagedIdentity/userAssignedIdentities/my-managed-identity",
       "location": "eastus",
       "name": "my-managed-identity",
-      "principalId": "00001111-aaaa-2222-bbbb-3333cccc4444",
+      "principalId": "ffffffff-eeee-dddd-cccc-bbbbbbbbbbb0",
       "resourceGroup": "my-resource-group",
       "tags": {},
-      "tenantId": "00001111-aaaa-2222-bbbb-3333cccc4444",
+      "tenantId": "aaaabbbb-0000-cccc-1111-dddd2222eeee",
       "type": "Microsoft.ManagedIdentity/userAssignedIdentities"
     }
     ```
diff --git a/data-explorer/kusto/api/monaco/host-web-ux-in-iframe.md b/data-explorer/kusto/api/monaco/host-web-ux-in-iframe.md
@@ -33,7 +33,7 @@ The `workspace=<guid>` query parameter creates a separate workspace for the embe
 
 ### Handle authentication
 
-When embedding the web UI, the hosting page is responsible for authentication. The following diagrams describe the authentication flow.
+When you embed the web UI, the hosting page is responsible for authentication. The following diagrams describe the authentication flow.
 
 :::image type="content" source="../media/host-web-ux-in-iframe/adx-embed-sequence-diagram.png" lightbox="../media/host-web-ux-in-iframe/adx-embed-sequence-diagram.png" alt-text="Diagram that shows the authentication flow for an embedded web U I iframe.":::
 
@@ -60,7 +60,7 @@ Use the following steps to handle authentication:
     | Graph            | `People.Read`                                               | `People.Read`, `User.ReadBasic.All`, `Group.Read.All`             |
     | Dashboards       | `https://rtd-metadata.azurewebsites.net/user_impersonation` | `https://rtd-metadata.azurewebsites.net/user_impersonation`       |
   
-    For example, the following function maps scopes based on the information in the table.
+    For example, the following function maps the scopes based on the information in the table.
 
     ```javascript
         function mapScope(scope) {
@@ -74,7 +74,7 @@ Use the following steps to handle authentication:
 
 1. Get a [JWT access token](https://tools.ietf.org/html/rfc7519) from the [Perform Single Page Application (SPA) authentication](../rest/authenticate-with-msal.md#perform-single-page-application-spa-authentication) for the scope. This code replaces placeholder CODE-1.
 
-    For example, you can use @azure/MSAL-react to get the access token. The example uses the **mapScope** function you defined earlier.
+    For example, you can use `@azure/MSAL-react` to get the access token. The example uses the **mapScope** function you defined earlier.
 
     ```javascript
     import { useMsal } from "@azure/msal-react";
@@ -91,7 +91,7 @@ Use the following steps to handle authentication:
     ```
 
     > [!IMPORTANT]
-    > You can only use User Principal Name (UPN) for authentication, service principals are not supported.
+    > You can only use User Principal Name (UPN) for authentication, service principals aren't supported.
 
 1. Post a **postToken** message with the access token. This code replaces placeholder CODE-2:
 
@@ -122,9 +122,15 @@ To embed a dashboard, a trust relationship must be established between the host'
 1. Select **requiredResourceAccess**.
 1. In the manifest, add the following entry:
 
+   > [!IMPORTANT]
+   > Replace `<RTD Metadata Service - Application ID>` with the application ID of the **RTD Metadata Service**. To get the application ID of this service, follow these steps:
+   > - Sign in to the Azure portal.
+   > - In the search bar, enter **RTD Metadata Service**, and then select the **Service Principal**: **RTD Metadata Service**.
+   > - On the **Enterprise Application** page for **RTD Metadata Service**, note down the value of the **Application ID**. 
+
     ```json
       {
-        "resourceAppId": "35e917a9-4d95-4062-9d97-5781291353b9",
+        "resourceAppId": "<RTD Metadata Service - Application ID>",
         "resourceAccess": [
             {
                 "id": "388e2b3a-fdb8-4f0b-ae3e-0692ca9efc1c",
@@ -134,16 +140,18 @@ To embed a dashboard, a trust relationship must be established between the host'
       }
     ```
 
-    - `35e917a9-4d95-4062-9d97-5781291353b9` is the application ID of Azure Data Explorer dashboard service.  
-    - `388e2b3a-fdb8-4f0b-ae3e-0692ca9efc1c` is the user_impersonation permission.
+    In the above code, `388e2b3a-fdb8-4f0b-ae3e-0692ca9efc1c` is the user_impersonation permission.
 
 1. In the **Manifest**, save your changes.
 1. Select **API permissions** and validate you have a new entry: **RTD Metadata Service**.
 1. Under Microsoft Graph, add permissions for `People.Read`, `User.ReadBasic.All`, and `Group.Read.All`.
 1. In Azure PowerShell, add the following new service principal for the app:
 
+   > [!IMPORTANT]
+   > Replace `<RTD Metadata Service - Application ID>` with the application ID of the **RTD Metadata Service** you got earlier. 
+
     ```powershell
-    New-MgServicePrincipal -AppId 35e917a9-4d95-4062-9d97-5781291353b9
+    New-MgServicePrincipal -AppId <RTD Metadata Service - Application ID>
     ```
 
 
@@ -158,7 +166,7 @@ To embed a dashboard, a trust relationship must be established between the host'
 >  <iframe src="https://dataexplorer.azure.com/dashboards?[feature-flags]" />
 > ```
 >
-> where `[feature-flags]` is:
+> The `[feature-flags]` is:
 >
 > ```html
 > "f-IFrameAuth": true,
@@ -189,7 +197,7 @@ A feature flag can be used in the URL as a query parameter. To disable adding ot
 | f-ShowPersona | Show the user name from the settings menu, in the top-right corner. | true |
 | f-UseMeControl | Show the user's account information | true |
 | f-IFrameAuth | If true, the web explorer expects the iframe to handle authentication and provide a token via a message. This parameter is required for iframe scenarios. | false |
-| f-PersistAfterEachRun | Usually, browsers persist in the unload event. However, the unload event isn't always triggered when hosting in an iframe. This flag triggers the **persisting local state** event after each query run. This limits any data loss that may occur, to only affect new query text that has never run. | false |
+| f-PersistAfterEachRun | Usually, browsers persist in the `unload` event. However, the `unload` event isn't always triggered when hosting in an iframe. This flag triggers the **persisting local state** event after each query run. This limits any data loss that may occur, to only affect new query text that has never run. | false |
 | f-ShowSmoothIngestion | If true, show the ingestion wizard experience when right-clicking on a database | true |
 | f-RefreshConnection | If true, always refreshes the schema when loading the page and never depends on local storage | false |
 | f-ShowPageHeader | If true, shows the page header that includes the Azure Data Explorer title and settings | true |
@@ -205,7 +213,7 @@ A feature flag can be used in the URL as a query parameter. To disable adding ot
 | f-DisableDashboardDelete | IF true, hides the dashboard delete button | false |
 | f-DisableTileRefresh | IF true, disables tiles refresh button in a dashboard | false |
 | f-DisableDashboardAutoRefresh | IF true, disables tiles auto refresh in a dashboard | false |
-| f-DisableExploreQuery | IF true, disables the explore query button of the tiles | false |
+| f-DisableExploreQuery | IF true, disables the **Explore query** button of the tiles | false |
 | f-DisableCrossFiltering | IF true, disables the cross filtering feature in dashboards | false |
 | f-HideDashboardParametersBar | IF true, hides the parameters bar in a dashboard | false |
 
diff --git a/data-explorer/kusto/management/graph/graph-model-create-or-alter.md b/data-explorer/kusto/management/graph/graph-model-create-or-alter.md
@@ -105,7 +105,7 @@ This command returns a table with the following columns:
 
 |Name|CreationTime|ID|SnapshotsCount|Model|AuthorizedPrincipals|RetentionPolicy|
 |---|---|---|---|---|---|---|
-|SocialNetwork|2025-05-23 14:42:37.5128901|aaaaaaaa-0b0b-1c1c-2d2d-333333333333|0|model from above|[</br>  {</br>    "Type": "Microsoft Entra ID User",</br>    "DisplayName": "Alex Johnson (upn: alex.johnson@contoso.com)",</br>    "ObjectId": "aaaaaaaa-bbbb-cccc-1111-22222222222",</br>    "FQN": "aaduser=aaaaaaaa-bbbb-cccc-1111-22222222222;aaaabbbb-0000-cccc-1111-dddd2222eeee",</br>    "Notes": "",</br>    "RoleAssignmentIdentifier": "a0a0a0a0-bbbb-cccc-dddd-e1e1e1e1e1e1"</br>  }</br>]|{</br>  "SoftDeletePeriod": "3650.00:00:00"</br>}|
+|SocialNetwork|2025-05-23 14:42:37.5128901|aaaaaaaa-0b0b-1c1c-2d2d-333333333333|0|model from above|`[</br>  {</br>    "Type": "Microsoft Entra ID User",</br>    "DisplayName": "Alex Johnson (upn: alex.johnson@contoso.com)",</br>    "ObjectId": "aaaaaaaa-bbbb-cccc-1111-22222222222",</br>    "FQN": "aaduser=aaaaaaaa-bbbb-cccc-1111-22222222222;aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb",</br>    "Notes": "",</br>    "RoleAssignmentIdentifier": "a0a0a0a0-bbbb-cccc-dddd-e1e1e1e1e1e1"</br>  }</br>]`|`{</br>  "SoftDeletePeriod": "3650.00:00:00"</br>}`|
 
 ## Notes
 
diff --git a/data-explorer/kusto/query/graph-exploration-basics.md b/data-explorer/kusto/query/graph-exploration-basics.md
@@ -149,9 +149,9 @@ graph('BloodHound_Entra')
 
 |node_id|labels|label_count|
 |---|---|---|
-|2|[<br>  "AZBase",<br>  "AZServicePrincipal"<br>]|2|
-|4|[<br>  "AZBase",<br>  "AZUser"<br>]|2|
-|5|[<br>  "AZBase",<br>  "AZUser"<br>]|2|
+|2|`[<br>  "AZBase",<br>  "AZServicePrincipal"<br>]`|2|
+|4|`[<br>  "AZBase",<br>  "AZUser"<br>]`|2|
+|5|`[<br>  "AZBase",<br>  "AZUser"<br>]`|2|
 
 **Sample nodes by type**:
 
@@ -172,8 +172,8 @@ graph('BloodHound_Entra')
 
 |node_id|properties|
 |---|---|
-|5|{<br>  "lastseen": "2025-08-11T09:21:19.002Z[UTC]",<br>  "lastcollected": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "enabled": true,<br>  "displayname": "Jack Miller",<br>  "name": "JMILLER@PHANTOMCORP.ONMICROSOFT.COM",<br>  "tenantid": "6c12b0b0-b2cc-4a73-8252-0b94bfca2145",<br>  "objectid": "9a20c327-8cc7-4425-9480-11fb734db194",<br>  "onpremid": "",<br>  "usertype": "Member",<br>  "title": "",<br>  "userprincipalname": "jmiller@phantomcorp.onmicrosoft.com",<br>  "system_tags": "admin_tier_0",<br>  "pwdlastset": "2021-06-16T17:51:03Z[UTC]",<br>  "onpremsyncenabled": false,<br>  "whencreated": "2021-06-16T17:29:16Z[UTC]",<br>  "email": ""<br>}|
-|10|{<br>  "lastseen": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "onpremid": "",<br>  "usertype": "Member",<br>  "title": "",<br>  "lastcollected": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "enabled": true,<br>  "userprincipalname": "cjackson@phantomcorp.onmicrosoft.com",<br>  "system_tags": "admin_tier_0",<br>  "displayname": "Chris Jackson",<br>  "pwdlastset": "2022-07-19T15:18:49Z[UTC]",<br>  "onpremsyncenabled": false,<br>  "name": "CJACKSON@PHANTOMCORP.ONMICROSOFT.COM",<br>  "tenantid": "6c12b0b0-b2cc-4a73-8252-0b94bfca2145",<br>  "whencreated": "2022-07-19T15:01:55Z[UTC]",<br>  "email": "cjackson@phantomcorp.onmicrosoft.com",<br>  "objectid": "bfb6a9c2-f3c8-4b9c-9d09-2924d38895f7"<br>}|
+|5|`{<br>  "lastseen": "2025-08-11T09:21:19.002Z[UTC]",<br>  "lastcollected": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "enabled": true,<br>  "displayname": "Jack Miller",<br>  "name": "JMILLER@PHANTOMCORP.ONMICROSOFT.COM",<br>  "tenantid": "aaaabbbb-0000-cccc-1111-dddd2222eeee",<br>  "objectid": "aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb",<br>  "onpremid": "",<br>  "usertype": "Member",<br>  "title": "",<br>  "userprincipalname": "jmiller@phantomcorp.onmicrosoft.com",<br>  "system_tags": "admin_tier_0",<br>  "pwdlastset": "2021-06-16T17:51:03Z[UTC]",<br>  "onpremsyncenabled": false,<br>  "whencreated": "2021-06-16T17:29:16Z[UTC]",<br>  "email": ""<br>}`|
+|10|`{<br>  "lastseen": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "onpremid": "",<br>  "usertype": "Member",<br>  "title": "",<br>  "lastcollected": "2025-08-11T09:21:07.472380514Z[UTC]",<br>  "enabled": true,<br>  "userprincipalname": "cjackson@phantomcorp.onmicrosoft.com",<br>  "system_tags": "admin_tier_0",<br>  "displayname": "Chris Jackson",<br>  "pwdlastset": "2022-07-19T15:18:49Z[UTC]",<br>  "onpremsyncenabled": false,<br>  "name": "CJACKSON@PHANTOMCORP.ONMICROSOFT.COM",<br>  "tenantid": "aaaabbbb-0000-cccc-1111-dddd2222eeee",<br>  "whencreated": "2022-07-19T15:01:55Z[UTC]",<br>  "email": "cjackson@phantomcorp.onmicrosoft.com",<br>  "objectid": "bbbbbbbb-1111-2222-3333-cccccccccccc"<br>}`|
 
 ### Edge analysis
 
@@ -280,9 +280,9 @@ graph('LDBC_Financial')
 
 |node_id|node_labels|out_degree|
 |---|---|---|
-|Account::236720455413661980|[<br>  "ACCOUNT"<br>]|384|
-|Account::56576470318842045|[<br>  "ACCOUNT"<br>]|106|
-|Account::4890627720347648300|[<br>  "ACCOUNT"<br>]|81|
+|Account::236720455413661980|`[<br>  "ACCOUNT"<br>]`|384|
+|Account::56576470318842045|`[<br>  "ACCOUNT"<br>]`|106|
+|Account::4890627720347648300|`[<br>  "ACCOUNT"<br>]`|81|
 
 ### Relationship pattern analysis
 
@@ -340,7 +340,7 @@ graph('BloodHound_Entra')
 
 |schema_properties|
 |---|
-|{<br>  "onpremsyncenabled": "bool",<br>  "system_tags": "string",<br>  "lastcollected": "string",<br>  "pwdlastset": "string",<br>  "usertype": "string",<br>  "userprincipalname": "string",<br>  "email": "string",<br>  "tenantid": "guid",<br>  "name": "string",<br>  "lastseen": "string",<br>  "displayname": "string",<br>  "enabled": "bool",<br>  "title": "string",<br>  "onpremid": "string",<br>  "objectid": "guid",<br>  "whencreated": "string"<br>}|
+|`{<br>  "onpremsyncenabled": "bool",<br>  "system_tags": "string",<br>  "lastcollected": "string",<br>  "pwdlastset": "string",<br>  "usertype": "string",<br>  "userprincipalname": "string",<br>  "email": "string",<br>  "tenantid": "guid",<br>  "name": "string",<br>  "lastseen": "string",<br>  "displayname": "string",<br>  "enabled": "bool",<br>  "title": "string",<br>  "onpremid": "string",<br>  "objectid": "guid",<br>  "whencreated": "string"<br>}`|
 
 **Find all properties of all nodes by label**:
 
@@ -367,9 +367,9 @@ graph('LDBC_SNB_Interactive')
 
 |label|properties|
 |---|---|
-|TAGCLASS|[<br>  "id",<br>  "node_id",<br>  "lbl",<br>  "name",<br>  "url"<br>]|
-|TAG|[<br>  "id",<br>  "node_id",<br>  "lbl",<br>  "name",<br>  "url"<br>]|
-|FORUM|[<br>  "id",<br>  "creationDate",<br>  "node_id",<br>  "lbl",<br>  "title"<br>]|
+|TAGCLASS|`[<br>  "id",<br>  "node_id",<br>  "lbl",<br>  "name",<br>  "url"<br>]`|
+|TAG|`[<br>  "id",<br>  "node_id",<br>  "lbl",<br>  "name",<br>  "url"<br>]`|
+|FORUM|`[<br>  "id",<br>  "creationDate",<br>  "node_id",<br>  "lbl",<br>  "title"<br>]`|
 
 **Find all properties of all edges by label**:
 
@@ -396,9 +396,9 @@ graph('BloodHound_AD')
 
 |label|properties|
 |---|---|
-|GetChangesAll|[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]|
-|OwnsRaw|[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]|
-|AddKeyCredentialLink|[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]|
+|GetChangesAll|`[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]`|
+|OwnsRaw|`[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]`|
+|AddKeyCredentialLink|`[<br>  "id",<br>  "lbl",<br>  "src",<br>  "dst",<br>  "properties",<br>  "lastseen"<br>]`|
 
 **Find nodes with specific property values**:
 
diff --git a/data-explorer/kusto/query/visualization-timepivot.md b/data-explorer/kusto/query/visualization-timepivot.md
