Learn Editor: Update overview.md

Author: twright-msft

docs/sql-server/azure-arc/media/overview/architecture.png

@@ -12,30 +12,91 @@ ms.custom: references_regions
 
 # Azure Arc-enabled SQL Server
 
-Azure Arc-enabled SQL Server extends Azure services to SQL Server instances hosted outside of Azure; in your datacenter, on the edge, or in a multicloud environment.
+Azure Arc-enabled SQL Server extends Azure services to SQL Server instances hosted outside of Azure: in your data center, in edge site locations like retail stores, or any public cloud or hosting provider.
 
-To enable Azure services, you must onboard a running SQL Server instance to Azure Arc. The onboarding will install an *Azure  extension for SQL Server* to the [Connected Machine agent](/azure/azure-arc/servers/agent-overview), which in turn will create an Azure resource for each SQL Server instance.  You can see all the Arc-enabled SQL Server resources in the Azure portal under __Azure Arc > SQL Server__. The properties of this resource reflect a subset of the SQL Server configuration settings.
+## Manage your SQL Servers at-scale from a single point of control
 
-Azure Arc-enabled SQL Server doesn't store any customer data.
+Azure Arc enables you to manage all of your SQL Servers from a single point of control: Azure. As you connect your SQL Servers to Azure, you get a single place to view the detailed inventory of your SQL Servers and databases.  You can look at details for a given SQL Server in the Azure Portal such as the name, version, edition, number of cores, and host operating system. At scale, you can query across all of your SQL Servers using Azure Resource Graph Explorer to answer questions like 'How many SQL Servers do I have that are SQL Server 2014? or "What are the names of all the SQL Servers that are running on Linux?"  You can even quickly creates charts from these queries and pin them to customizable dashboards.  Go a level deeper and you can view a list of every database on a SQL Server and do cross-SQL Server queries of databases to get insights into which databases haven't been backed up recently or that are not encrypted.
+
+![arcsqlserverdashboard](media/overview/arcsqlserverdashboard.png)
+
+
+## Best practices assessment
+
+You can optimize the configuration of your SQL Servers for best performance and security by running a best practices assessment.  The assessment report shows you specific ways to improve your configuration to match the best practices established by Microsoft Support through many years of experience learning from real-world usage of SQL Server.  Each suggestion includes the details on how to change the configuration.
+
+## Azure Active Directory authentication
+
+New in SQL Server 2022, you can enable Azure Active Directory for authentication to SQL Server.  This feature requires using Azure Arc-enabled SQL Server to establish the secure connection to Azure Active Directory for performing the authentication.
+
+## Microsoft Defender for Cloud
+
+Microsoft Defender for Cloud helps you discover and mitigate potential database vulnerabilities and alerts you to anomalous activities that may be an indication of a threat to your databases on Arc-enabled SQL Servers
+
+- Vulnerability assessment: Scan databases to discover, track, and remediate vulnerabilities.
+- Threat protection: Receive detailed security alerts and recommended actions based on SQL Advanced Threat Protection to provide to mitigate threats.
+
+When you enable Microsoft Defender through Azure Arc-enabled SQL Server, you can get substantial cost savings on Defender.
+
+## Microsoft Purview
+
+Microsoft Purview provides a unified data governance solution to help manage and govern your on-premises, multi-cloud, and software as a service (SaaS) data. Easily create a holistic, up-to-date map of your data landscape with automated data discovery, sensitive data classification, and end-to-end data lineage. Enable data consumers to access valuable, trustworthy data management.
+
+Azure Arc-enabled SQL Server powers some of the Microsoft Purview features such as access policies and it generally makes it easier for you to get your SQL Servers connected into Purview.
+
+## Pay-as-you-go for SQL Server
+
+Now, with Azure Arc-enabled SQL Serves connected to Azure, you have the option of purchasing SQL Server using a 'pay-as-you-go' model instead of purchasing licenses.  This model is a great alternative if you are looking to save costs on SQL Servers that have variable demand for compute capacity over time such as when you can turn off a SQL Server at night or on weekends, or even just scale down the number of cores that is using during less busy times.  It's also a great option if you only plan to use a SQL Server for a short period of time and then won't need it anymore.  Pay-as-you-go, billed through Azure, is now available for all versions of SQL Server from 2014 to 2022.
 
 ## Architecture
 
-The SQL Server instance can be installed in a virtual or physical machine running Windows or Linux that is connected to Azure Arc via the [Connected Machine agent](/azure/azure-arc/servers/agent-overview). When you register the SQL Server instance, the agent is installed, and the machine is registered automatically.
+The SQL Server instance that you want to enable with Azure Arc can be installed in a virtual or physical machine running Windows or Linux.  The [Azure Connected Machine agent](/azure/azure-arc/servers/agent-overview) and the Azure Extension for SQL Server securely connect to Azure to establish communication channels with multiple Azure services using only outbound HTTPS traffic on TCP port 443 using SSL. The Azure Connected Machine agent can communicate through a configurable HTTPS proxy server over Azure Express Route, Azure Private Link or over the Internet. Review the [overview](azure/azure-arc/servers/agent-overview), [network requirements](azure/azure-arc/servers/network-requirements) and [prerequisites](/azure/azure-arc/servers/prerequisites) for the Azure Connected Machine agent.
+
+Some of the services provided by Azure Arc-enabled SQL Server, such as Microsoft Defender for Cloud and best practices assessment, require the Azure Monitoring agent (AMA) extension to be installed and connected to an Azure Log Analytics workspace for data collection and reporting.
+
+The following diagram illustrates the architecture of Azure Arc-enabled SQL Server.
+
+![architecture](media/overview/architecture.png)
+
+
+## Feature availability depending on license type
 
-The Connected Machine agent communicates outbound securely to Azure Arc over TCP port 443. If the machine connects through a firewall or an HTTP proxy server to communicate over the Internet, review the [network configuration requirements for the Connected Machine agent](/azure/azure-arc/servers/agent-overview#prerequisites).
+Depending on the license type you select, some features will be available:
+| Feature | License only | License with Software Assurance or SQL subscription | Pay-as-you-go |
+| --- |--- | --- | --- |
+| Connect to Azure | Yes | Yes | Yes |
+| SQL Server inventory | Yes | Yes | Yes |
+| Best practices assessment | No | Yes | Yes |
+| Detailed database inventory | No | Yes | Yes |
+| Azure Active Directory authentication | No | Yes | Yes |
+| Microsoft Defender for Cloud | Yes | Yes | Yes |
+| Microsoft Purview | Yes | Yes | Yes |
 
-Azure Arc-enabled SQL Server supports a set of solutions that require Microsoft Monitoring Agent (MMA) to be installed and connected to an Azure Log analytics workspace for data collection and reporting. These solutions include Microsoft Defender for Cloud and On-demand SQL Assessment feature.
+License only includes SQL Server instances that are Developer, Express, or Evaluation Edition.
 
-The following diagram illustrates the architecture of SQL Server on Azure Arc enable servers.
+## Supported Azure regions
 
-:::image type="content" source="media/overview/architecture.png" alt-text="Diagram showing customer infrastructure hosts virtualization and persistent storage. Use the Azure portal or the appropriate CLI to manage the SQL Server instance.":::
+Arc-enabled SQL Server is available in the following regions:
 
-To learn more about these capabilities, you can also refer to this Data Exposed episode.
-> [!VIDEO https://channel9.msdn.com/Shows/Data-Exposed/Understanding-Azure-Arc-Enabled-SQL-Server/player?format=ny]
+- East US
+- East US 2
+- West US 2
+- Central US
+- South Central US
+- UK South
+- France Central
+- West Europe
+- North Europe
+- Japan East
+- Korea Central
+- East Asia
+- Southeast Asia
+- Australia East
 
 ## Next steps
 
-- [Prerequisites](prerequisites.md)
 - [Connect your SQL Server to Azure Arc](connect.md)
-- [Configure your SQL Server instance for periodic environment health check using on-demand SQL assessment](assess.md)
+- [Configure your SQL Server instance for periodic best practices assessments](assess.md)
 - [Configure advanced data security for your SQL Server instance](configure-advanced-data-security.md)
+- [Learn more about Microsoft Defender for Cloud](/azure/defender-for-cloud/defender-for-sql-usage)
+- [Lean more about Microsoft Purview](/azure/purview/register-scan-azure-arc-enabled-sql-server)