From 4147f246dc86a36fbd619bd9258c2d578c416cd7 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Wed, 26 Jun 2024 13:52:35 -0700
Subject: [PATCH 01/12] Remove sunscription sections and the relevant pages

---
 _data/sidebars/doc_sidebar.yml             |  26 --
 pages/doc/csp_accounts-service.md          |   2 +-
 pages/doc/csp_api_tokens.md                |   6 +-
 pages/doc/csp_area_differences.md          | 485 ---------------------
 pages/doc/csp_getting_started.md           |  94 ----
 pages/doc/csp_migration.md                 | 418 ------------------
 pages/doc/csp_sign_up_or_log_in.md         |   6 +-
 pages/doc/csp_supported_integrations.md    |   4 +-
 pages/doc/csp_ui_differences.md            |  83 ----
 pages/doc/csp_user_management.md           |   2 +-
 pages/doc/csp_users_account_managing.md    |   2 +-
 pages/doc/integrations_new_changed.md      |   4 +-
 pages/doc/purchase-additional-capacity.md  |   2 +-
 pages/doc/wavefront_introduction.md        |   2 +-
 pages/doc/wavefront_obsolescence_policy.md |   4 +-
 pages/doc/wavefront_release_notes.md       |   4 +-
 16 files changed, 19 insertions(+), 1125 deletions(-)
 delete mode 100644 pages/doc/csp_area_differences.md
 delete mode 100644 pages/doc/csp_getting_started.md
 delete mode 100644 pages/doc/csp_migration.md
 delete mode 100644 pages/doc/csp_ui_differences.md

diff --git a/_data/sidebars/doc_sidebar.yml b/_data/sidebars/doc_sidebar.yml
index 7fc371ae0..90a4d37a8 100755
--- a/_data/sidebars/doc_sidebar.yml
+++ b/_data/sidebars/doc_sidebar.yml
@@ -18,28 +18,6 @@ entries:
     - title: Product FAQ
       output: web
       url: /tobs_faq.html
-
-  - title: Subscription and Commitment 
-    output: web
-    folderitems:
-
-    - title: Subscription Types
-      url: /subscriptions-differences.html
-      output: web
-
-      subfolders:
-
-      - title: Differences Explained
-        output: web
-        subfolderitems:
-        
-          - title: "UI Differences"
-            url: /csp-ui-differences.html
-            output: web
-            
-          - title: "Functionality Differences"
-            url: /csp-differences-by-area.html
-            output: web
             
     - title: Purchase Additional Capacity
       url: /purchase_additional_capacity.html
@@ -904,10 +882,6 @@ entries:
     output: web
     folderitems:
 
-      - title: Get Started with VMware Cloud Services
-        url: /csp_getting_started.html
-        output: web
-
       - title: Sign Up or Log In
         url: /csp_sign_up_or_log_in.html
         output: web
diff --git a/pages/doc/csp_accounts-service.md b/pages/doc/csp_accounts-service.md
index 8b4b6ea80..9c86836db 100644
--- a/pages/doc/csp_accounts-service.md
+++ b/pages/doc/csp_accounts-service.md
@@ -11,7 +11,7 @@ summary: Learn how you can create and manage service accounts.
 
 {% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future."%}
 
-If your service was recently onboarded to VMware Cloud services, you might have some legacy service accounts for backward compatibility. It's strongly recommended that you incrementally switch to using [server to server OAuth apps](csp_server_to_server_apps.html) which authenticate with more secure VMware Cloud services access tokens. See [How to Replace a Service Account with a Server to Server App?](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app).
+If your service was recently onboarded to VMware Cloud services, you might have some legacy service accounts for backward compatibility. It's strongly recommended that you incrementally switch to using [server to server OAuth apps](csp_server_to_server_apps.html) which authenticate with more secure VMware Cloud services access tokens. 
 
 ## What Are Service Accounts?
 
diff --git a/pages/doc/csp_api_tokens.md b/pages/doc/csp_api_tokens.md
index 51c48b476..d88156792 100644
--- a/pages/doc/csp_api_tokens.md
+++ b/pages/doc/csp_api_tokens.md
@@ -17,7 +17,7 @@ To obtain a VMware Cloud services access token, you must make an API call to the
 
 To obtain an Operations for Applications API token, you can also create a service account and generate an API token associated with it.
 
-{% include note.html content="If your original Operations for Applications subscription was recently [onboarded to VMware Cloud services](csp_migration.html), for backward compatibility, you might have some legacy Operations for Applications API tokens that are associated with user accounts and service accounts. It’s recommended that you incrementally replace them with VMware Cloud services API tokens and sever to server OAuth apps."%}
+
 
 ## Manage the VMware Cloud Services API Tokens for Your User Account
 
@@ -66,7 +66,7 @@ For details on how to create, view, and modify the details of the OAuth 2.0 apps
 
 If you want to set up one of the [integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with an **Operations for Applications API token**, you must create a [service account](csp_service_accounts.html) and generate an API token associated with it.
 
-{% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. It is strongly recommended that you gradually [switch to using server to server OAuth apps](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app) which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future. "%}
+{% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. It is strongly recommended that you gradually switch to using server to server OAuth apps which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future. "%}
 
 <!--Bring this back to the warning if we get the flag: Тo temporarily enable service accounts for your service instance, [contact](wavefront_support_feedback.html) our Technical Support team.-->
 
@@ -92,7 +92,7 @@ To generate and manage the API tokens for an existing **service account**:
 
 As a user with the **Admin** service role, you can view and revoke the API tokens of any service account in your service instance.
 
-{% include warning.html content="If your original Operations for Applications subscription was onboarded to VMware Cloud services, for backward compatibility, you might have some legacy Operations for Applications API tokens that are associated with user accounts. It’s recommended that you incrementally [replace them with VMware Cloud services API tokens](csp_migration.html#how-to-replace-an-operations-for-applications-api-token-with-a-vmware-cloud-services-access-token)."%}
+{% include warning.html content="If your original Operations for Applications subscription was onboarded to VMware Cloud services, for backward compatibility, you might have some legacy Operations for Applications API tokens that are associated with user accounts. It’s recommended that you incrementally replace them with VMware Cloud services API tokens."%}
 
 1. Log in to your service instance as an **Admin** user.
 2. Click the gear icon <i class="fa fa-cog"/> on the toolbar and select **Accounts**.
diff --git a/pages/doc/csp_area_differences.md b/pages/doc/csp_area_differences.md
deleted file mode 100644
index c9800637f..000000000
--- a/pages/doc/csp_area_differences.md
+++ /dev/null
@@ -1,485 +0,0 @@
----
-title: Differences Between Original and VMware Cloud Services Subscriptions
-keywords: 
-tags: [introduction]
-sidebar: doc_sidebar
-permalink: csp-differences-by-area.html
-summary: Learn about the functionality differences between VMware Aria Operations for Applications original subscriptions and VMware Cloud services subscriptions.
----
-
-Operations for Applications subscriptions are two types: original subscriptions and VMware Cloud Services subscriptions.
-
-## Examples of the Functionality Differences 
-
-### Users, Roles, and Group Management
-
-Most of the user and account management tasks done in the Operations for Applications UI for original subscriptions, are done in the VMware Cloud services for VMware Cloud services subscriptions. For example, the following tasks related to managing users, roles, and groups can be done from the VMware Cloud Services Console.
-
-  * Invite new users
-  * Assign permissions
-  * Create and edit roles
-  * Create and edit groups
-  * Assign roles to users and groups
-
-  ![A graphic showing the differences in the user and account management tasks for original and onboarded subscriptions. The information displayed is already described in the above bullet list.](images/user-management-comparison.png)
-
-
-### Admin Tasks
-
-Some administrative tasks, done by **Super Admins** and users with the **Accounts** permission in original subscriptions, are done by VMware Cloud **Organization Owners** and VMware Cloud **Organization Administrators** in VMware Cloud services subscriptions. Others can be done by Operations for Applications **Admins** in the Operations for Applications UI.
-
-With the 2023-38 release, we introduce the **Admin** permission and service role, which partially correspond to the **Accounts** permission for original subscriptions. Users with the **Admin** service role can manage service accounts and Operations for Applications API tokens. They can also restrict access to new dashboards and alerts and set the organization settings. For example, they can restrict the access to the object creator only and set default settings, such as display settings, PromQL support, default way of building queries, and define Logs settings. 
-
-{% include warning.html content="Service accounts and the API tokens associated with them will be deprecated in the future. It's strongly recommended that you incrementally switch to using [server to server OAuth apps](csp_server_to_server_apps.html) which authenticate with more secure VMware Cloud services access tokens. For information on how to do this, see [How to Replace a Service Account with a Server to Server App?](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app)." %}
-
-<!--Bring this back to the warning if we get the flag: First sentence: Service accounts are enabled only for a **limited number** of VMware Cloud services subscriptions. 
-Last sentence: Тo temporarily enable service accounts for your service instance, [contact](wavefront_support_feedback.html) our Technical Support team.-->
-
-![A graphic showing the differences in the admin tasks for original and onboarded subscriptions. The information displayed is described in the table below.](images/csp-admin-tasks.png)
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="22%">Task</th><th width="39%">Original Subscription</th><th width="39%">VMware Cloud Services Subscription</th></tr>
-</thead>
-<tr>
-<td>Upgrade from trial
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications <strong>Super Admin</strong></li>
-<li><strong>Where:</strong> From the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications  <strong>Super Admin</strong> service role</li>
-<li><strong>Where:</strong> From the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Purchase more PPS
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications  <strong>Super Admin</strong></li>
-<li><strong>Where:</strong> From the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications <strong>Super Admin</strong> service role</li>
-<li><strong>Where:</strong> From the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Invite new Super Admins
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications  <strong>Super Admin</strong></li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> VMware Cloud <strong>Organization Owner</strong> or <strong>Organization Administrator</strong></li>
-<li><strong>Where:</strong> In the VMware Cloud Services Console</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Create and manage service accounts and their Operations for Applications API tokens
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications users with the <strong>Accounts</strong> permission</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications <strong>Admin</strong> service role</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Restore orphan dashboards and alerts
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications <strong>Super Admin</strong></li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications <strong>Super Admin</strong> service role</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Restrict access to new dashboards and alerts
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications users with the <strong>Accounts</strong> permission</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications <strong>Admin</strong> service role</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-<tr>
-<td>Set the service organization settings
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Operations for Applications users with the <strong>Accounts</strong> permission</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-<td>
-<ul>
-<li><strong>Who:</strong> Users with the Operations for Applications <strong>Admin</strong> service role</li>
-<li><strong>Where:</strong> In the Operations for Applications UI</li>
-</ul>
-</td>
-</tr>
-</tbody>
-</table>
-
-### REST API Access
-
-For original subscriptions, using the Operations for Applications REST API requires an API token associated with a user account or a service account. To generate API tokens for your user account you need the **API Tokens** permission. To generate API tokens for service accounts and to manage the API tokens in your Operations for Applications organization, you need the **Accounts** permission.
-
-When your service is onboarded to VMware Cloud services and you want to access the Operations for Applications REST API, you need a VMware Cloud services **access token**. In a few cases, when setting up a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens), authentication with an Operations for Applications API token is also supported. However, using a VMware Cloud services **access token** is the recommended way as we will deprecate the service accounts in the future. To obtain an **access token**, you can:
-
-* Generate a VMware Cloud services API token associated with your user account and exchange it for an access token.
-
-  ![A graphic showing information how to generate API token for the user account for onboarded and original subscriptions.](images/csp-api-token-user.png)
-
-* Create a server to server app (which is the equivalent of a service account), obtain its OAuth credentials (app ID and app secret), and exchange them for an access token.
-
-   ![A graphic showing information how to generate API token for a service account or server to server app  for onboarded and original subscriptions.](images/csp-api-token-apps.png)
-
-## In-Depth Explanation of the Functionality Differences
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="22%">Functionality</th><th width="39%">Original Subscription</th><th width="39%">VMware Cloud Services Subscription</th></tr>
-</thead>
-<tr>
-<td>User Login
-</td>
-<td>Users log in to their Operations for Applications service instance by using the URL of the service cluster, <code>https://&lt;your_instance&gt;.wavefront.com</code>, and their Operations for Applications accounts. If their corporate domain is configured for SAML SSO with Operations for Applications, users log in with their corporate accounts.
-</td>
-<td>Users log in to their Operations for Applications service instance through the VMware Cloud Services Console with their VMware Cloud services accounts. If their corporate domain is federated with VMware Cloud services, users log in with their corporate accounts. For details, see <a href="csp_sign_up_or_log_in.html#log-in-from-the-vmware-cloud-services-console">Log In from the VMware Cloud Services Console</a>.
-</td>
-</tr>
-<tr>
-<td>User Accounts Management
-</td>
-<td>
-<strong>Who</strong>: Users with the <strong>Accounts</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: You can invite new users with or without assigning roles and permissions. For details, see <a href="user-accounts.html">Manage User Accounts</a>.</p>
-</td>
-<td>
-<strong>Who</strong>: Users with the VMware Cloud <strong>Organization Owner</strong> or <strong>Organization Administrator</strong> role.
-<p><strong>Where</strong>: In the VMware Cloud Services Console.</p>
-<p><strong>How</strong>: To add a user to your Operations for Applications service instance, you must assign that user:
-<ol><li>An organization role for the VMware Cloud organization running the service instance. At a minimum, you must assign the VMware Cloud <strong>Organization Member</strong> role.</li>
-<li>An Operations for Applications service role for your service instance. At a minimum, you must assign the <strong>Viewer</strong> service role.</li>
-<li>Optionally, a custom role with one or more Operations for Applications permissions. A custom role applies to all service instances for which the user has an Operations for Applications service role.</li></ol>
-For details, see <a href="csp_user_management.html">Manage User Accounts</a>.</p>
-</td>
-</tr>
-<tr>
-<td>Service Accounts and Server to Server OAuth Apps Management
-</td>
-<td><strong>Note:</strong> Only service accounts are supported.
-<p><strong>Who</strong>: Users with the <strong>Accounts</strong> permission.</p>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Service accounts authenticate with API tokens. Service accounts can be assigned with roles and permissions, as well as can be added to groups. For details, see <a href="service-accounts.html">Manage Service Accounts</a>.</p>
-</td>
-<td><strong>Note:</strong> Server to server OAuth apps are recommended and fully supported. Service accounts are with limited support and will be deprecated in the future.
-<p><strong>Who</strong>:
-<ul>
-<li>For server to server OAuth apps, users with the VMware Cloud <strong>Organization Owner</strong>, <strong>Organization Administrator</strong>, or <strong>Organization Member</strong> with the <strong>Developer</strong> role assigned. </li>
-<li>For service accounts, users with the <strong>Admin</strong> Operations for Applications service role.</li>
-</ul></p>
-<p><strong>Where</strong>:
-<ul>
-<li>For server to server OAuth apps, in the VMware Cloud Services Console.</li>
-<li>For service accounts, in the Operations for Applications user interface.</li>
-</ul></p>
-<p><strong>How</strong>:
-<ul>
-<li>Server to server OAuth apps authenticate with VMware Cloud services access tokens that can be exchanged from their OAuth credentials. Server to server OAuth app can be assigned with organization roles, service roles, and custom roles, and can belong to one or more VMware Cloud organizations. For details, see <a href="csp_server_to_server_apps.html">Manage Server to Server Apps</a>.</li>
-<li>Service accounts authenticate with Operations for Applications API tokens. Service accounts can be assigned with permissions only, and cannot be added to groups. For details, see <a href="csp_service_accounts.html">Manage Service Accounts</a>.</li>
-</ul></p>
-</td>
-</tr>
-<tr>
-<td id="permissions">Permissions Management
-</td>
-<td><strong>Who</strong>: Users with the <strong>Accounts</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Permissions can be assigned to roles as well as to individual user accounts and service accounts.</p>
-<p>See:
-<ul>
-<li><a href="users_roles.html#create-a-role">Create a Role</a></li>
-<li><a href="users_roles.html#grant-or-revoke-account-permissions-explicitly">Grant or Revoke Account Permissions Explicitly</a></li>
-</ul></p>
-<p><strong>Note</strong>: The permissions list includes the <strong>Accounts</strong>, <strong>SAML IdP Admin</strong>, and <strong>API token</strong> permissions, because they are required for all of the authorization and authentication tasks which are done in the Operations for Applications.</p>
-<p>In addition, the <strong>Accounts</strong> permission grants privileges for managing the Operations for Applications organization settings.</p>
-<p>See the <a href="permissions_overview.html">Permissions Reference</a>. </p>
-</td>
-<td><strong>Who</strong>:
-<ul>
-<li>For assigning permissions to roles, users with the VMware Cloud <strong>Organization Owner</strong> or <strong>Organization Administrator</strong> role.</li>
-<li>For assigning permissions to service accounts, users with the <strong>Admin</strong> Operations for Applications service role.</li>
-</ul>
-<p><strong>Where</strong>:
-<ul>
-<li>For assigning permissions to roles, in the VMware Cloud Services Console.</li>
-<li>For assigning permissions to service accounts, in the Operations for Applications user interface.</li>
-</ul></p>
-<p><strong>How</strong>: Permissions can be assigned only to roles in the VMware Cloud services organization and service accounts - in the Operations for Applications environment.</p>
-<p>See:
-<ul>
-<li><a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">Create, Edit, or Delete a Custom Role</a></li>
-<li><a href="csp_service_accounts.html#grant-or-revoke-permissions">Grant or Revoke Permissions from a Service Account</a></li>
-</ul>
-</p>
-<p><strong>Note</strong>: The <strong>Accounts</strong>, <strong>SAML IdP Admin</strong>, and <strong>API token</strong> permissions don't exist, because most of the authorization and authentication tasks requiring these permissions are done in the VMware Cloud Services Console.</p>
-<p>The <strong>Admin</strong> Operations for Applications permission grants privileges for managing service accounts, Operations for Applications API tokens, and the Operations for Applications organization settings.</p>
-<p>See the <a href="csp_permissions_overview.html">Operations for Applications Permissions in VMware Cloud Services</a>.</p>
-</td>
-</tr>
-<tr>
-<td>Roles Management
-</td>
-<td><strong>Who</strong>: Users with the <strong>Accounts</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Roles can be assigned with permissions. Roles can be assigned to user accounts, service accounts, and groups. For details, see <a href="users_roles.html#manage-roles-and-permissions">Manage Roles and Permissions</a>.</p>
-</td>
-<td>
-<strong>Who</strong>: Users with the VMware Cloud <strong>Organization Owner</strong> or <strong>Organization Administrator</strong> role.
-<p><strong>Where</strong>: In the VMware Cloud Services Console.</p>
-<p><strong>How</strong>: Roles can be assigned with permissions. Roles can be assigned to users, groups, API tokens, and server to server apps. There are:
-<ul>
-<li>Built-in Operations for Applications service roles, which are not editable. Each Operations for Applications permission is represented with a service role. In addition, the <strong>Super Admin</strong> and <strong>Viewer</strong> service roles grant full-administrative and view-only access, respectively.</li>
-<li>Custom roles can be created and assigned with permissions for one or more services.</li>
-</ul>
-For details, see <a href="csp_users_roles.html#manage-roles">Manage Roles</a>.</p>
-</td>
-</tr>
-<tr>
-<td>Groups Management
-</td>
-<td><strong>Who</strong>: Users with the <strong>Accounts</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: A group of user and service accounts can be assigned with one or more roles. For details, see <a href="users_roles.html#create-a-group">Create a Group</a>.</p>
-</td>
-<td>
-<strong>Who</strong>: Users with the VMware Cloud <strong>Organization Owner</strong> or <strong>Organization Administrator</strong> role.
-<p><strong>Where</strong>: In the VMware Cloud Services Console.</p>
-<p><strong>How</strong>: A group of users can be assigned with organization and service roles. A group can be shared with other VMware Cloud organizations. In a federated environment, you can add enterprise groups from your corporate domain. For details, see <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-0BD8A07B-C3C0-4220-8CD0-18FA070D3DAD.html">How do I work with groups</a> in the VMware Cloud services documentation.</p>
-</td>
-</tr>
-<tr>
-<td>Self-Service SAML SSO</td>
-<td>
-<strong>Who</strong>: Users with the <strong>SAML IdP Admin</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Operations for Applications includes predefined authentication integrations. For details, see <a href="auth_self_service_sso.html">Single-Tenant Authentication and Self-Service SAML SSO</a>.</p>
-</td>
-<td>
-<strong>Who</strong>: A user with the VMware Cloud <strong>Organization Owner</strong> role together with an <strong>Enterprise Administrator</strong>.
-<p><strong>Where</strong>: In the VMware Cloud Services Console.</p>
-<p><strong>How</strong>: The VMware Cloud <strong>Organization Owner</strong> user kicks off the self-service federation workflow on behalf of the VMware Cloud organization and invites the <strong>Enterprise Administrator</strong> to complete the setup. For details, see <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html">Setting Up Enterprise Federation with VMware Cloud Services Console</a> in the VMware Cloud services documentation.</p>
-</td>
-</tr>
-<tr>
-<td>Generating API Tokens
-</td>
-<td><strong>Note</strong>: Only Operations for Applications API tokens are supported.
-<p><strong>Who</strong>:
-<ul><li>For API tokens associated with a user account, the corresponding user who must have the <strong>API Tokens</strong> permission.</li>
-<li>For API tokens associated with service accounts, the users with the <strong>Accounts</strong> permission.</li>
-</ul></p>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>:<ul>
-<li>A user with the <strong>API Tokens</strong> permission can generate Operations for Applications API tokens for their own user account. The API tokens inherit all permissions that its associated user account owns.</li>
-<li>Users with the <strong>Accounts</strong> permission can generate Operations for Applications API tokens for service accounts. The API tokens inherit the permissions of their associated service account.</li></ul>
-For details, see <a href="api_tokens.html">Manage API Tokens</a>.</p>
-</td>
-<td><strong>Note</strong>: It is recommended to use VMware Cloud services API tokens and server to server OAuth app credentials for obtaining VMware Cloud services access tokens. Operations for Applications API tokens are with limited support and will be deprecated in a future release. 
-<p><strong>Who</strong>:
-<ul><li>For VMware Cloud services API tokens associated with a user account, the corresponding user.</li>
-<li>For Operations for Applications API tokens associated with service accounts, the users with the <strong>Admin</strong> Operations for Applications service role.</li>
-</ul></p>
-<p><strong>Where</strong>:
-<ul><li>For VMware Cloud services API tokens associated with a user account, in the VMware Cloud Services Console.</li>
-<li>For Operations for Applications API tokens associated with service accounts, in the Operations for Applications user interface.</li>
-</ul>
-</p>
-<p><strong>How</strong>:
-<ul><li>Each user can generate VMware Cloud services API tokens for their user account. An API token can be assigned with roles from the list of roles that the user owns - organization roles, service roles, and custom roles. For details and instructions, see <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html">How do I generate API tokens</a> in the VMware Cloud services documentation.</li>
-<li>Users with the <strong>Admin</strong> service role can generate Operations for Applications API tokens for service accounts. The API tokens inherit the permissions of their associated service account. For details, see <a href="csp_service_accounts.html">Manage Service Accounts</a>.
-</li>
-</ul>
-</p>
-</td>
-</tr>
-<tr>
-<td>API Tokens Management</td>
-<td>
-<strong>Who</strong>:
-<ul><li>For API tokens associated with a user account, the corresponding user.</li>
-<li>For all API tokens in the Operations for Applications service instance, the users with the <strong>Accounts</strong> permission.</li></ul>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>:<ul><li>All users can view and revoke their own tokens. For details, see <a href="api_tokens.html#generate-and-manage-the-api-tokens-for-your-user-account">Generate and Manage the API Tokens for Your User Account</a>.</li>
-<li>Users with the <strong>Accounts</strong> permission can view and revoke any API token in the service instance. For details, see <a href="api_tokens.html#view-and-manage-the-api-tokens-in-your-organization">View and Manage the API Tokens in Your Organization</a>.</li></ul></p>
-</td>
-<td>
-<strong>Who</strong>:
-<ul><li>For VMware Cloud services API tokens associated with a user account, the corresponding user.</li>
-<li>For all VMware Cloud services API tokens in the VMware Cloud organization, the users with the VMware Cloud <strong>Organization Owner</strong> role if the organization is activated for Identity Governance and Administration (IGA).</li>
-<li>For all Operations for Applications API tokens (limited support), the users with the <strong>Admin</strong> Operations for Applications service role.</li></ul>
-<p><strong>Where</strong>:
-<ul><li>For VMware Cloud services API tokens, in the Cloud Services Console.</li>
-<li>For Operations for Applications API tokens (limited support), in the Operations for Applications user interface.</li></ul>
-</p>
-<p><strong>How</strong>:
-<ul>
-<li>All users can view and revoke their own VMware Cloud services API tokens. For details, see <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-1BA71988-387C-42E1-8C98-EE2C1370826B.html">How do I manage my API tokens</a> in the VMware Cloud services documentation.</li>
-<li>Users with the VMware Cloud <strong>Organization Owner</strong> role can monitor the API tokens created in the organization and can set constraints for idle and maximum Time to live (TTL) for all newly created tokens. For details and instructions, see <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html">How do I manage API tokens in my Organization</a> in the VMware Cloud services documentation.</li>
-<li>Users with the <strong>Admin</strong> service role can view and revoke any Operations for Applications API token in the service instance. For details, see <a href="csp_api_tokens.html#manage-the-operations-for-applications-api-tokens-in-your-service-instance">Managing the Operations for Applications API Tokens in Your Service Instance</a>.</li>
-</ul></p>
-</td>
-</tr>
-<tr>
-<td>Operations for Applications REST API Access</td>
-<td>
-<strong>Who</strong>: Everyone who has an Operations for Applications API token associated with a user account or a service account.
-<p><strong>Where</strong>: An API client.</p>
-<p><strong>How</strong>: Interacting with the Operations for Application REST API requires an Operations for Application API token.
-<ul><li>To interact with the REST API by using your user account, you must use your API token. For details, see <a href="using_wavefront_api.html#make-api-calls-by-using-a-user-account-1">Make API Calls by Using a User Account</a>.</li>
-<li>To interact with the REST API by using a service account, you must use an API token associated with that service account. For details, see <a href="using_wavefront_api.html#make-api-calls-by-using-a-service-account">Make API Calls by Using a Service Account</a>.</li></ul></p>
-</td>
-<td>
-<strong>Who</strong>: Everyone who has a VMware Cloud services API token or the credentials of a server to server OAuth app.
-<p><strong>Where</strong>: An API client.</p>
-<p><strong>How</strong>: Interacting with the Operations for Application REST API requires a VMware Cloud services access token.
-<ul><li>To interact with the REST API on behalf of your user account, you must exchange your VMware Cloud services API token for an access token. For details, see <a href="using_wavefront_api.html#make-api-calls-by-using-a-user-account">Make API Calls by Using a User Account</a>.</li>
-<li>To interact with the REST API on behalf of your VMware Cloud organization, you must exchange the OAuth credentials of a server to server app for an access token. For details, see <a href="using_wavefront_api.html#make-api-calls-by-using-a-server-to-server-app">Make API Calls by Using a Server to Server App</a>.</li>
-</ul>
-</p>
-</td>
-</tr>
-<tr>
-<td>Operations for Applications Organization Settings</td>
-<td>
-<strong>Who</strong>: Users with the <strong>Accounts</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: As a user with the <strong>Accounts</strong> permission, you can configure:
-<ul>
-<li>Default display settings, such as getting started progress and default dashboard display.</li>
-<li>Default query language preferences and optionally, allow users to write queries in PromQL. For details, see <a href="wavefront_prometheus.html#set-promql-organization-settings-administrator-only">Set PromQL Organization Settings (Administrator Only)</a>.</li>
-<li>Default groups for new user accounts. New users are assigned to the Everyone system group and to all additional default groups that you specify. For details, see <a href="user-accounts.html#set-the-default-user-group-for-new-users">Set the Default User Group for New Users</a>.</li>
-<li>Default groups for new service accounts. New service accounts are assigned to the Service Accounts system group and to all additional default groups that you specify. For details, see <a href="service-accounts.html#set-the-default-service-accounts-group-for-new-service-accounts">Set the Default Service Accounts Group for New Service Accounts</a>.</li>
-<li>Default permissions for new user accounts. These permissions don't apply to service accounts. For details, see <a href="user-accounts.html#set-default-permissions-for-new-users">Set Default Permissions for New Users</a>.</li>
-<li>Logs settings, if Logs is enabled for your cluster. For details, see <a href="logging_logs_settings.html">Customize Logs Settings</a>.</li>
-<li>Access to newly created dashboards and alerts. For details, see <a href="access.html">Managing Access to Dashboards and Alerts</a>.</li>
-</ul></p>
-</td>
-<td>
-<strong>Who</strong>: Users with the <strong>Admin</strong> Operations for Applications service role.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: As a user with the <strong>Admin</strong> service role, you can configure:
-<ul>
-<li>Default display settings for new accounts, such as getting started progress and default dashboard display.</li>
-<li>Default query language preferences and optionally, allow users to write queries in PromQL. For details, see <a href="wavefront_prometheus.html#set-promql-organization-settings-administrator-only">Set PromQL Organization Settings (Administrator Only)</a>.</li>
-<li>Logs settings, if Logs is enabled for your cluster. For details, see <a href="logging_logs_settings.html">Customize Logs Settings</a>.</li>
-<li>Access to newly created dashboards and alerts. For details, see <a href="csp_access.html">Managing Access to Dashboards and Alerts</a></li>
-</ul></p>
-</td>
-</tr>
-<tr>
-<td>Wavefront Proxy Installation
-</td>
-<td><strong>Note</strong>: The Wavefront proxy authenticates with an Operations for Applications API token.
-<p><strong>Who</strong>: Users with the <strong>Proxies</strong> permission.</p>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: As a user with the <strong>Proxies</strong> permission, you must configure the proxy to authenticate to Operations for Applications with an Operations for Applications API token that have the <strong>Proxies</strong> permission. For details, see <a href="proxies_installing.html#install-a-proxy-from-the-ui">Install a Proxy from the UI</a>.</p>
-</td>
-<td><strong>Note</strong>: The Wavefront proxy authenticates with a VMware Cloud services access token obtained from server to server OAuth app credentials or from a VMware Cloud services API token. Proxy authentication with an Operations for Applications API token is still possible and supported only for a <a href="integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens">limited list of integrations</a>.
-<p><strong>Who</strong>:
-<ul>
-<li>For proxy installation, users with the <strong>Proxies</strong> Operations for Applications service role.</li>
-<li>For creating server to server OAuth apps, users with the VMware Cloud <strong>Organization Owner</strong>, <strong>Organization Administrator</strong>, or <strong>Organization Member</strong> with <strong>Developer</strong> roles.</li>
-<li>For generating an Operations for Applications API token of a service account, users with the <strong>Admin</strong> Operations for Applications service role.</li>
-</ul></p>
-<p><strong>Where</strong>:
-<ul>
-<li>For generating a VMware Cloud services API token or creating a server to server OAuth app, in the VMware Cloud Services Console.</li>
-<li>For proxy installation and generating an Operations for Applications API token for a service account, in the Operations for Applications user interface.</li>
-</ul></p>
-<p><strong>How</strong>: As a user with the <strong>Proxies</strong> service role, you configure the proxy to authenticate to Operations for Applications. The proxy obtains a VMware Cloud services access token with the <strong>Proxies</strong> service role or use an Operations for Applications API token of a service account with the <strong>Proxies</strong> permission. To obtain a VMware Cloud services access token:
-<ul><li>The proxy can use the credentials of a server to server <strong>OAuth app</strong> - ID and secret, together with the VMware Cloud organization long ID.</li>
-<li>The proxy can use the VMware Cloud services <strong>API token</strong> of an active user account.</li></ul>
-In both ways, the access token is directly issued to the proxy. For details, see <a href="proxies_installing.html#proxy-authentication-types">Proxy Authentication Types</a>.</p>
-</td>
-</tr>
-<tr>
-<td>Integrations Installation
-</td>
-<td><strong>Note</strong>: All <a href="label_integrations%20list.html">integrations</a> that use a Wavefront proxy authenticate with an Operations for Applications API token.
-<p><strong>Who</strong>: Users or service accounts with the <strong>Proxies</strong> permission who have an active Operations for Applications API token.</p>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Follow the instructions on the <strong>Setup</strong> tab of the integration that you want to install.</p>
-</td>
-<td><strong>Note</strong>: <a href="integrations_onboarded_subscriptions.html#integrations-that-use-vmware-cloud-services-access-tokens">Most of the integrations</a> that use a Wavefront proxy authenticate with a VMware Cloud services access token. A <a href="integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens">limited list of integrations</a> still use proxy authentication with an Operations for Applications API token.
-<p><strong>Who</strong>: Users with the <strong>Proxies</strong> Operations for Applications service role who must have one of the following:
-<ul>
-<li>A valid VMware Cloud services API token with the <strong>Proxies</strong> service role assigned.</li>
-<li>The credentials of a server to server OAuth app with the <strong>Proxies</strong> service role assigned.</li>
-<li>An Operations for Applications API token associated with a service account that has the <strong>Proxies</strong> permission.</li>
-</ul></p>
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Follow the instructions on the <strong>Setup</strong> tab of the integration that you want to install. </p>
-</td>
-</tr>
-<tr>
-<td>Metrics Security Policy Management
-</td>
-<td><strong>Who</strong>: Users with the <strong>Metrics</strong> permission.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Privileged users can block or allow access to metrics for:
-<ul><li>Accounts (<a href="user-accounts.html">user accounts</a> and <a href="service-accounts.html">service accounts</a>)</li>
-<li><a href="users_roles.html#create-a-group">Groups</a></li>
-<li><a href="users_roles.html#create-a-role">Roles</a></li></ul>
-For details, see <a href="metrics_security.html">Metrics Security Policy Rules</a>.</p>
-</td>
-<td><strong>Who</strong>: Users with the <strong>Metrics</strong> Operations for Applications service role.
-<p><strong>Where</strong>: In the Operations for Applications user interface.</p>
-<p><strong>How</strong>: Privileged users can block or allow access to metrics for:
-<ul><li>Accounts (<a href="csp_user_management.html">user accounts</a>, <a href="csp_server_to_server_apps.html">server to server apps</a>, and <a href="csp_service_accounts.html">service accounts</a>)</li>
-<li><a href="csp_users_roles.html#manage-user-groups">Groups</a></li></ul>
-For details, see <a href="csp_metrics_security.html">Metrics Security Policy Rules</a>.</p>
-</td>
-</tr>
-</tbody>
-</table>
\ No newline at end of file
diff --git a/pages/doc/csp_getting_started.md b/pages/doc/csp_getting_started.md
deleted file mode 100644
index cc5970070..000000000
--- a/pages/doc/csp_getting_started.md
+++ /dev/null
@@ -1,94 +0,0 @@
----
-title: Getting Started with Operations for Applications on VMware Cloud Services
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_getting_started.html
-summary: Learn the basics for administering your service on the VMware Cloud services platform.
----
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. From this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to VMware Cloud services and **original** subscriptions.
-
-Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally [onboarding](csp_migration.html) all original subscriptions to VMware Cloud services. For information about original and VMware Cloud services subscriptions and the differences between them, see [Differences Between Original and VMware Cloud Services Subscriptions](csp-differences-by-area.html).
-
-VMware Cloud services provides features to your Operations for Applications environment, such as:
-- Single sign-on (SSO) with VMware Cloud services accounts.
-- SAML 2.0 SSO identity federation with your enterprise identity provider.
-- Identity access management (IAM) with built-in and custom service roles.
-- Seamless integration with other services from your VMware Cloud services portfolio, for example, VMWare Aria Operations for Logs.
-- Billing and Subscriptions
-
-See the [Advantages of VMware Cloud Services Subscriptions Over Original Subscriptions](subscriptions-differences.html#advantages-of-vmware-cloud-services-subscriptions-over-original-subscriptions).
-
-## What's VMware Cloud Services Console?
-
-The VMware Cloud Services Console lets you manage your entire VMware Cloud services portfolio across hybrid and native public clouds. Operations for Applications is one of the many services that you can access, configure, and consume through this console.
-
-To open the VMware Cloud Services Console:
-
-- In a Web browser, go to `https://console.cloud.vmware.com`.
-- From the Operations for Applications UI, click the **VMware Cloud Services Applications Menu** icon (![applications icon](images/applications-solid.png)) in the top-right corner and select **Cloud Services Console**.
-
-See [Using VMware Cloud Services Console](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-20D62AFF-024B-4901-976D-69BFD71BECC8.html) in the VMware Cloud services documentation.
-
-## What's a VMware Cloud Services Account?
-
-A VMware Cloud services account is a user (human) account in VMware Cloud services with which you can access all of your service instances, including Operations for Applications. A VMware Cloud services account logs in to VMware Cloud services with an email address and a password. A VMware Cloud services account can be one of the following:
-- A VMware account (VMware ID) that you create in the VMware Cloud Services Console.
-
-    You can create a VMware account while [signing up](csp_sign_up_or_log_in.html) to a service with an invitation link.
-- Your corporate account if your enterprise domain is federated. You might still need to create a VMware account and link it to your corporate account if you need to access billing information in the organization. See [What is enterprise federation and how does it work](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html) in the VMware Cloud services documentation.
-
-## What's a VMware Cloud Organization?
-
-VMware Cloud services uses organizations to provide controlled access to one or more services. The VMware Cloud organization is a top-level construct which owns users and cloud services (subscriptions). 
-* You can have multiple VMware Cloud organizations. 
-* Users can belong to multiple organizations. 
-* Multiple service instances can run in the same or in different organizations. 
-
-For example, you can have a multi-tenant Operations for Applications environment with multiple service instances (tenants) in the same organization.
-
-{% include note.html content="You can create a VMware Cloud organization only when you are onboarding a new service instance, for example, when you sign up for an Operations for Applications account."%}
-
-See [How do I manage my Cloud Services organizations](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-CF9E9318-B811-48CF-8499-9419997DC1F8.html) in the VMware Cloud services documentation.
-
-## What's a VMware Cloud Organization Role?
-
-A VMware account can belong to one or more VMware Cloud organizations. A VMware account belongs to a given VMware Cloud organization if the account has an organization role for that organization. There are three VMware Cloud organization roles:
-
-<table>
-<tbody>
-<thead>
-<tr><th width="30%">Role</th><th width="70%">Description</th></tr>
-</thead>
-<tr>
-<td><strong>Organization Owner</strong></td>
-<td>The VMware Cloud <strong>Organization Owner</strong> role has full administrative access to all resources in the organization. They can invite users to the organization and assign role-based access to all users, including themselves. They can also kick off an enterprise domain federation and invite an <strong>Enterprise Administrator</strong>. See <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html">Setting Up Enterprise Federation with VMware Cloud Services Guide</a> in the VMware Cloud services documentation.
-<p>When you create an organization during a service onboarding process, you become its first <strong>Organization Owner</strong>.</p></td>
-</tr>
-<tr><td><strong>Organization Administrator</strong></td>
-<td>The VMware Cloud <strong>Organization Administrator</strong> role has limited administrative access. Users with that role can invite and manage only users that have roles with lower administrative permissions. For example, they can grant or manage access for other users and groups who have the <strong>Organization Member</strong> role, but cannot manage users, groups, or resources who are assigned the <strong>Organization Owner</strong> or <strong>Organization Administrator</strong> role. <p>Users with the <strong>Organization Administrator</strong> role can have additional access if other permissions are explicitly assigned to them. For example, when the <strong>Billing Read-only</strong> check box is selected, users with the <strong>Organization Administrator</strong> role can have read-only access to billing-related information and the option to generate usage consumption reports.</p>
-</td>
-</tr>
-<tr>
-<td><strong>Organization Member</strong></td>
-<td>The VMware Cloud <strong>Organization Member</strong> role has read-only access to the resources in the organization. <p>Users with the <strong>Organization Member</strong> role can have additional access when additional permissions are explicitly assigned to them. For example, when the <strong>Access Log Auditor</strong> check box is selected, they can access all audit data for the organization in the associated vRealize Log Insight Cloud service instance for their organization.</p></td>
-</tr>
-</tbody>
-</table>
-
-See [What organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html) in the VMware Cloud services documentation.
-
-## What Are Service Roles and Custom Roles?
-
-VMware Cloud services includes service-specific built-in roles, including [Operations for Applications service roles](csp_users_roles.html#operations-for-applications-service-roles-built-in). A service role is required to grant certain access to the corresponding service instance in the organization.
-
-While the service roles are built-in and not editable, as a VMware Cloud **Organization Administrator** or **Organization Owner**, you can create [custom roles](csp_users_roles.html#create-edit-or-delete-a-custom-role) with service permissions of your choice, including [Operations for Application permissions](csp_permissions_overview.html#operations-for-applications-permissions). Custom roles are optional and apply to all service instances for which the target user or server to server app has at least one service role.
-
-## What's a Server to Server App?
-
-If you want to use an application for automating management tasks in your service, for example, in Operations for Applications, your application requires direct access to your service, without user authorization.
-
-For that purpose, VMware Cloud services supports server to server apps, which are based on OAuth 2.0 client credentials grant type. You can configure your application to pass the OAuth 2.0 client credentials (id and secret) to the VMware Cloud services REST API and exchange the credentials for a VMware Cloud services access token. Your application can use the VMware Cloud services access token to interact with the Operations for Applications REST API.
-
-See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-
-{% include important.html content="For each server to server app with access to an Operations for Applications service instance, we create a corresponding **internal service account** in that service instance and add it the **Service Accounts** internal system group. So that, when you configure [the access control security settings](csp_access.html#change-the-access-control-security-setting), [ingestion polices](ingestion_policies.html#step-1-specify-the-scope-and-pps-limit), or [metrics security rules](csp_metrics_security.html), the server to server apps that are assigned with Operations for Applications service roles are represented as service accounts together with the [service accounts](csp_service_accounts.html) created in Operations for Applications."%}
diff --git a/pages/doc/csp_migration.md b/pages/doc/csp_migration.md
deleted file mode 100644
index 35b3faf69..000000000
--- a/pages/doc/csp_migration.md
+++ /dev/null
@@ -1,418 +0,0 @@
----
-title: Onboarding Original Subscriptions to VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_migration.html
-summary: Learn about how we migrate the authorization and authentication from Operations for Applications to VMware Cloud services.
----
-
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. We are in the process of incrementally onboarding all original subscriptions to VMware Cloud services.
-
-## What Should I Do Before the Onboarding?
-
-Currently, all original Operations for Applications subscriptions are integrated with VMware Cloud services for billing and subscription management. Therefore, you must already have a [VMware Cloud organization](csp_getting_started.html#whats-a-vmware-cloud-organization) with at least one user with the [VMware Cloud **Organization Owner** role](csp_getting_started.html#whats-a-vmware-cloud-organization-role).
-
-Before the onboarding:
-* Get familiar with the VMware Cloud service platform. See [Getting Started with Operations for Applications on VMware Cloud Services](csp_getting_started.html).
-* Verify that your VMware Cloud **Organization Owner** user can log in to the [VMware Cloud Services Console](https://console.cloud.vmware.com).
-
-    - If you are the VMware Cloud **Organization Owner** user and cannot log in, try using the **Forgot Password** option.
-    - If your VMware Cloud **Organization Owner** user is unreachable or you don't know the name of your VMware Cloud **Organization Owner** user, contact our Technical Support team for assistance.
-* If you have a [SAML SSO integration](auth_self_service_sso.html), as a VMware Cloud **Organization Owner** user, you must federate your currently integrated enterprise domain with your VMware Cloud organization. For details, see the [Setting Up Enterprise Federation with VMware Cloud Services Guide](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html) in the VMware Cloud services documentation.
-
-    {% include warning.html content="If you do not federate your currently integrated enterprise domain, after onboarding to VMware Cloud services all users will lose access to the service."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## What's the Onboarding Process?
-
-The onboarding is done by our team. If you are currently using a SAML SSO integration, you must only federate your enterprise domain before the process starts. The following flowchart shows the overall process.
-
-![Onboarding flowchart. Each stage of the process is described below.](images/csp-onboarding-flow.png)
-
-Here's the process:
-1. You receive a notification in your service UI with the date scheduled for your service onboarding to VMware Cloud services.
-1. If you are using a SAML SSO integration, your VMware Cloud **Organization Owner** user federates your currently integrated enterprise domain with your VMware Cloud organization. That must happen before the scheduled onboarding date.
-1. On the scheduled date, we onboard your service instance to VMware Cloud services, that is, we migrate your users, roles, and groups to your VMware Cloud organization. During the process, there's a banner notification in your service UI.
-
-    {% include important.html content="During the onboarding, you should not to do any changes related to users, roles, groups, and permissions. Such changes might be lost."%}
-1. When the onboarding completes, you can see a banner notification in your service UI and, shortly after that, all active users are logged out.
-1. Each user receives an email with an invitation link to sign up to VMware Cloud services.
-
-    The invitation links are valid for seven days.
-1. Each user redeems the invitation link and [signs up](csp_sign_up_or_log_in.html#sign-up-with-an-email-invitation) to the VMware Cloud Services Console.
-
-    - The users of a non-federated domain must create a password for their VMware Cloud services account.
-    
-    - The users of a federated domain must log in with their existing corporate passwords.
-
-{% include tip.html content="From now on, **all** users [log in](csp_sign_up_or_log_in.html#log-in-from-the-vmware-cloud-services-console) to the service instance from the [VMware Cloud Services Console](https://console.cloud.vmware.com)."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## How Are the Users Migrated to VMware Cloud Services?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, we add all your current users to your VMware Cloud organization running the service.
-
-![An image displaying how users are migrated when your Operations for Applications service is onboarded to VMware Cloud services. The information from the image is explained in the bullet list below.](images/csp-user-accounts-migration.png)
-
-* If a user is a **Super Admin** in Operations for Applications, we assign that user with the **Super Admin** Operations for Applications service role in VMware Cloud services.
-* If a user is assigned with individual permissions in Operations for Applications, we assign that user with the corresponding [Operations for Applications service roles](csp_users_roles.html#operations-for-applications-service-roles-built-in) in VMware Cloud services. For example, if a user has the **Alerts** permission in Operations for Applications, we assign that user with the **Alerts** Operations for Applications service role in VMware Cloud services. There are the following exceptions:
-
-    - The **Accounts** permission is replaced by the [VMware Cloud **Organization Administrator** role](csp_getting_started.html#whats-a-vmware-cloud-organization-role) plus the **Admin** Operations for Applications service role.
-    - The **API Tokens** permission is not replaced by any role, because this privilege is not needed in VMware Cloud services. Each VMware Cloud services user can manage their own VMware Cloud services API tokens.
-    - The **SAML IdP Admin** permission is not replaced by any role, because this privilege is not needed in VMware Cloud services. The VMware Cloud **Organization Owner** initiates enterprise federation for your corporate domain and assigns an **Enterprise Administrator**.
-
-    For details, see the [permissions differences](csp-differences-by-area.html#permissions).
-* If a user does not have any permissions and roles in Operations for Applications, we assign that user with the **Viewer** Operations for Applications service role in VMware Cloud services.
-* If a user is assigned with roles in Operations for Applications, we assign that user with the corresponding custom roles in VMware Cloud services. See [How Are the Roles Migrated to VMware Cloud Services?](#how-are-the-roles-migrated-to-vmware-cloud-services).
-* If a user belongs to a group in Operations for Applications, we add that user to the corresponding group in VMware Cloud services. See [How Are the Groups Migrated to VMware Cloud Services?](#how-are-the-groups-migrated-to-vmware-cloud-services).
-
-{% include tip.html content="From now on, users with the VMware Cloud **Organization Owner** and **Organization Administrator** roles can [manage the Operations for Applications users](csp_user_management.html) in the VMware Cloud Services Console."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## How Are the Groups Migrated to VMware Cloud Services?
-
-Originally, your Operation for Applications service includes the **Everyone** and **Service Accounts** system groups as well as any other custom groups that you have created.
-
-### How Are the Custom Groups Migrated?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, for each group that you have created in Operations for Applications, we create a corresponding group in your VMware Cloud organization running the service.
-
-* The corresponding VMware Cloud groups are with the same names and descriptions as the original Operations for Applications custom groups.
-* All users from a custom group in Operations for Applications are added to the corresponding VMware Cloud group.
-* The service accounts from the custom groups in Operations for Applications **are not** added to any VMware Cloud group.
-
-    {% include important.html content="Currently, VMware Cloud services supports grouping only for user accounts."%}
-* If a custom group in Operations for Applications is assigned with roles, the corresponding VMware Cloud group is assigned with the corresponding VMware Cloud custom roles. See [How Are the Roles Migrated to VMware Cloud Services?](#how-are-the-roles-migrated-to-vmware-cloud-services).
-
-{% include tip.html content="From now on, users with the VMware Cloud **Organization Owner** and **Organization Administrator** roles can [manage the user groups](csp_users_roles.html#manage-user-groups) in the VMware Cloud Services Console."%}
-
-### How Is the Everyone System Group Migrated?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, for the **Everyone** system group in Operations for Applications, we create the corresponding **All Operations for Applications Users** group in your VMware Cloud organization running the service as follows:
-
-* All current users are added to the **All Operations for Applications Users** VMware Cloud group.
-
-    {% include important.html content="New users will **no longer** be added automatically to this group."%}
-* The **All Operations for Applications Users** VMware Cloud group is assigned with the **All Operations for Applications Users** VMware Cloud custom role, which corresponds to the **Everyone** role in Operations for Applications. See [How Are the Roles Migrated to VMware Cloud Services?](#how-are-the-roles-migrated-to-vmware-cloud-services).
-* If the **Everyone** system group in Operations for Applications is assigned with custom roles, the **All Operations for Applications Users** VMware Cloud group is assigned with the corresponding VMware Cloud custom roles. See [How Are the Roles Migrated to VMware Cloud Services?](#how-are-the-roles-migrated-to-vmware-cloud-services).
-* In Operations for Applications, we continue to maintain the **Everyone** system group only as a local **internal** group that is automatically populated with all new users. This group has no roles and permissions.
-
-{% include tip.html content="From now on, it is up to you to add new users to the **All Operations for Applications Users** VMware Cloud group. The **Everyone** internal system group can be used only when managing [access to dashboards and alerts](csp_access.html), [metrics security policy rules](csp_metrics_security.html), and [ingestion policies](ingestion_policies.html)."%}
-
-### What Happens with the Service Accounts System Group?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, we **do not** migrate the **Service Accounts** system group.
-
-{% include important.html content="Currently, VMware Cloud services supports grouping only for user accounts."%}
-
-* The permissions from the roles assigned to the **Service Accounts** system group in Operations for Applications are now directly assigned to the service accounts. See [What Happens with the Service Accounts?](#what-happens-with-the-service-accounts).
-* In Operations for Applications, we continue to maintain the **Service Accounts** system group only as a local **internal** group that is automatically populated with all [service accounts](csp_service_accounts.html) and [server to server OAuth apps](csp_server_to_server_apps.html) that have access to the service instance. This group has no roles and permissions.
-
-{% include tip.html content="From now on, the **Service Accounts** internal system group can be used only when managing [access to dashboards and alerts](csp_access.html), [metrics security policy rules](csp_metrics_security.html), and [ingestion policies](ingestion_policies.html)."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## How Are the Roles Migrated to VMware Cloud Services?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, for each role in Operations for Applications, we create a corresponding [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) in your VMware Cloud organization running the service as follows:
-
-* For each role that you have created in Operations for Applications, we create a corresponding VMware Cloud custom role with the same name and description.
-* For the **Everyone** role that is assigned to the **Everyone** system group in Operations for Applications, we create the **All Operations for Applications Users** VMware Cloud custom role. See [How Is the Everyone System Group Migrated?](#how-is-the-everyone-system-group-migrated).
-* For the **Service Accounts** role that is assigned to the **Service Accounts** system group in Operations for Applications, we **do not** create any VMware Cloud custom role, because this group is not migrated. See [What Happens with Service Accounts System Group?](#what-happens-with-the-service-accounts-system-group).
-* The corresponding VMware Cloud custom roles are assigned with the same [permissions](csp_permissions_overview.html) as the original roles in Operations for Applications. There are the following exceptions:
-
-    - The **Accounts** permission in Operations for Applications is replaced by the **Admin** Operations for Applications permission in VMware Cloud services. In addition, the users with that permission are assigned with the [VMware Cloud **Organization Administrator** role](csp_getting_started.html#whats-a-vmware-cloud-organization-role).
-    - The **API Tokens** permission in Operations for Applications **is not** replaced by any permission in VMware Cloud services. This permission does not exist in VMware Cloud services, because each user can manage their own VMware Cloud services API tokens.
-    - The **SAML IdP Admin** permission in Operations for Applications **is not** replaced with by permission in VMware Cloud services. This permission does not exist in VMware Cloud services, because the VMware Cloud **Organization Owner** initiates enterprise federation for your corporate domain and assigns an **Enterprise Administrator**.
-
-    For details, see the [permissions differences](csp-differences-by-area.html#permissions).
-
-{% include tip.html content="From now on, users with the VMware Cloud **Organization Owner** and **Organization Administrator** roles can [manage the custom roles](csp_users_roles.html#create-edit-or-delete-a-custom-role) in the VMware Cloud Services Console."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## What Happens with the Service Accounts?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, the service accounts **are not** migrated to VMware Cloud services, because VMware Cloud services supports [server to server OAuth apps](csp_server_to_server_apps.html), which are equivalent to the services accounts in Operations for Applications.
-
-{% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future."%}
-
-For backward compatibility, all of your service accounts are **preserved** in Operations for Applications as follows:
-
-* The service accounts no longer belong to groups, because the groups management is migrated to VMware Cloud services.
-* The service accounts no longer have roles, because the roles management is migrated to VMware Cloud services.
-* The service accounts are assigned with their existing permissions, including the permissions that they have inherited from roles and group roles. Exceptions are the **API Tokens** and **SAML IdP Admin** permissions, which no longer exist.
-
-    {% include note.html content="The **Accounts** permission in Operations for Applications corresponds to the [**Admin** Operations for Applications permission](csp_permissions_overview.html) in VMware Cloud services."%}
-* All service accounts still belong to the **Service Accounts** system group, which is now only an **internal** Operations for Applications group that is automatically populated with all [service accounts](csp_service_accounts.html) and [server to server OAuth apps](csp_server_to_server_apps.html) that have access to the service instance. This group has no roles and permissions.
-
-You should incrementally [replace](#how-to-replace-a-service-account-with-a-server-to-server-app) your service accounts in Operations for Applications with server to server OAuth apps in VMware Cloud services.
-
-{% include tip.html content="From now on, users with the VMware Cloud **Organization Owner**, **Organization Administrator**, or **Organization Member** with **Developer** roles can [manage server to server apps](csp_server_to_server_apps.html) in the VMware Cloud Services Console. Users with the **Admin** service role can [manage the service accounts](csp_service_accounts.html) in Operations for Applications. The **Service Accounts** internal system group can be used only when managing [access to dashboards and alerts](csp_access.html), [metrics security policy rules](csp_metrics_security.html), and [ingestion policies](ingestion_policies.html)."%}
-
-### How to Replace a Service Account with a Server to Server App?
-
-Service accounts authenticate with Operations for Applications API tokens, while server to server OAuth apps authenticate with the more secure VMware Cloud services access tokens. Service accounts are supported for a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) but will be deprecated in the future.
-
-<table style="width: 100%;">
-<tbody>
-<tr>
-<td width="50%">
-<p>&nbsp;</p>
-<p>&nbsp;</p>
-<p>&nbsp;</p>
-<p>&nbsp;</p>
-<p>&nbsp;</p>
-<p>&nbsp;</p>
-After onboarding to VMware Cloud services, you should incrementally replace your service accounts in Operations for Applications with server to server OAuth apps in VMware Cloud services.
-
-<br /><br /> The flowchart on the right shows the overall process for creating a server to server OAuth app and replacing a service account with it.
-</td>
-<td width="50%">
-<img src="/images/csp-replace-service-account.png" alt="Flowchart showing how to replace a service account with a server to server app. The process is described in the list below"/>
-</td>
-</tr>
-</tbody>
-</table>
-
-1. Log in to the VMware Cloud Services Console as an **Organization Owner**, **Organization Administrator**, or **Organization Member** with the **Developer** role assigned.
-1. Create a server to server OAuth app. See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-
-    - For the server to server app name and description, you can enter the name and the description of the service account that you want to replace.
-    - For the time to live (TTL) of the access tokens that will be issued to that server to server app, you can configure a value from 1 to 300 minutes. This value defines the period in which the access token should be renewed.
-    - For the scopes of the server to server app, you must configure the roles that correspond to the permissions of the service account that you want to replace:
-
-        <table style="width: 100%;">
-        <tbody>
-        <tr>
-        <td width="30%"><strong>Scope</strong>
-        </td>
-        <td width="70%"><strong>Description</strong>
-        </td>
-        </tr>
-        <tr>
-        <td>
-        <strong>Organization Role</strong>
-        </td>
-        <td><strong>Organization Member</strong> is sufficient in most of the cases.
-        </td>
-        </tr>
-        <tr>
-        <td>
-        <strong>Custom Roles</strong>
-        </td>
-        <td>Optional. Use only if you previously created a <a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">custom role</a> with the necessary <a href="csp_permissions_overview.html">Operations for Applications permissions</a>.
-        </td>
-        </tr>
-        <tr>
-        <td><strong>Service Roles</strong>
-        </td>
-        <td>Required for service access. Assign the <a href="csp_users_roles.html#operations-for-applications-service-roles-built-in">Operations for Applications service roles</a> that correspond to the permissions of the service account that you want to replace.
-        <p>If you already assigned a custom role, you must assign at least the <strong>Viewer</strong> Operations for Applications service role.</p>
-        </td>
-        </tr>
-        </tbody>
-        </table>
-1. Make sure that you save the app credentials (ID and secret) of your newly created server to server app to a secure location.
-
-    {% include important.html content="This is the only time you can see and save the app secret. If you miss to copy it or lose it, you must regenerate the app secret."%}
-1. Add the server to server app to your VMware Cloud organization.
-1. Reconfigure your scripts, API calls, or proxies to exchange the app credentials for an access token, instead of using the API tokens associated with the service account.
-
-    {% include important.html content="Depending on the TTL that you configured for the app access tokens, make sure that your script renews the access token periodically before it expires. The Wavefront proxy does this automatically. "%}
-1. Log in to your service instance as a user with the **Admin** service role and [deactivate or delete](csp_service_accounts.html#deactivate-or-activate-a-service-account) the service account that you replaced.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## What Happens with the Operations for Applications API Tokens?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, the Operations for Applications API tokens **are not** migrated to VMware Cloud services, because Operations for Applications on VMware Cloud services supports authentication with:
-
-* VMware Cloud services API tokens associated with user accounts.
-* Server to server OAuth apps credentials, that is, app ID and app secret. The server to server OAuth app must belong to the organization that is running the Operations for Applications service.
-
-You must exchange a VMware Cloud services API token or the credentials (ID and secret) of server to server OAuth app for a VMware Cloud services **access token**.
-
-For backward compatibility, all of your API tokens are **preserved** in Operations for Applications as follows:
-
-* The Operations for Applications API tokens associated with user accounts are **no longer**  editable. The users can still use, view, and revoke their Operations for Applications API tokens until they expire, but they **cannot** generate new ones.
-* The Operations for Applications API tokens associated with service accounts are editable, because we still support them for a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens).
-
-You should incrementally [replace](#how-to-replace-an-operations-for-applications-api-token-with-a-vmware-cloud-services-access-token) your Operations for Applications API tokens with VMware Cloud services API tokens and server to server OAuth apps.
-
-{% include tip.html content="From now on, all users must generate VMware Cloud services API tokens for their accounts and exchange them for access tokens. Users with the VMware Cloud **Organization Owner**, **Organization Administrator**, or **Organization Member** with **Developer** roles can create server to server OAuth apps and exchange the app credentials for access tokens."%}
-
-### How to View and Manage the Operations for Applications API Tokens?
-
-Users with the **Admin** Operations for Applications service role can [manage](csp_api_tokens.html#manage-the-operations-for-applications-api-tokens-in-your-service-instance) the Operations for Applications API tokens in the service instance.
-
-Each user can view and revoke their own Operations for Applications API tokens:
-
-1. Log in to your service instance.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select your username.
-1. Click the **API Access** tab and view all your Operations for Applications API tokens.
-1. To revoke a token, click the **Revoke** button for the token.
-
-    If you run a script that uses a revoked token, the script returns an authorization error.
-
-### How to Replace an Operations for Applications API Token with a VMware Cloud Services Access Token?
-
-It's recommended to use Operations for Applications API tokens only for a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens). We will update these integrations to authenticate with VMware Cloud services access tokens in a future release.
-
-<table style="width: 100%;">
-<tbody>
-<tr>
-<td markdown="span">
-<br /><br /><br /><br />
-
-You should incrementally replace your Operations for Applications API tokens with the more secure VMware Cloud services access tokens.
-<br /><br />
-To replace an Operations for Applications API token associated with a service account, you must replace the service account with a server to server OAuth app. See [How to Replace a Service Account with a Server to Server App?](#how-to-replace-a-service-account-with-a-server-to-server-app).
-<br /><br />
-The flowchart on the right shows the overall process for replacing an Operations for Applications API token with a VMware Cloud services API token.
-</td>
-<td>
-<img src="/images/csp-replace-api-token.png" alt="Flowchart showing how to replace an Operations for Applications API token with a VMware Cloud services API token. The process is described in the list below"/>
-</td>
-</tr>
-</tbody>
-</table>
-
-
-To replace an Operations for Applications API token associated with your user account:
-
-1. Log in to the VMware Cloud Services Console.
-1. Generate an API token. See [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) in the VMware Cloud services documentation.
-
-    - For the name of the VMware Cloud services API token, you can enter the name of the Operations for Applications API token that you want to replace.
-    - For the time to live (TTL) of the VMware Cloud services API token, you can configure a value from several minutes to several months, or never expire. This value defines the period in which the API token should be renewed.
-    
-        The TTL of the access tokens that will be issued to that API token is 30 minutes and is not configurable.
-    - For the scopes of the API token, you must configure the minimum portion of your roles:
-
-        {% include note.html content="Till now, the Operations for Applications API tokens inherited all your permissions and roles. Now, you can set the VMware Cloud services API token with a subset of the roles that you own."%}
-
-        <table style="width: 100%;">
-        <tbody>
-        <tr>
-        <td width="30%"><strong>Scope</strong>
-        </td>
-        <td width="70%"><strong>Description</strong>
-        </td>
-        </tr>
-        <tr>
-        <td>
-        <strong>Organization Role</strong>
-        </td>
-        <td><strong>Organization Member</strong> is sufficient in most of the cases.
-        </td>
-        </tr>
-        <tr>
-        <td>
-        <strong>Custom Roles</strong>
-        </td>
-        <td>Optional. Use only if you have assigned a <a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">custom role</a>.
-        </td>
-        </tr>
-        <tr>
-        <td><strong>Service Roles</strong>
-        </td>
-        <td>Required for service access.
-        <p>If you already assigned a custom role, you must assign at least the <strong>Viewer</strong> Operations for Applications service role.</p>
-        </td>
-        </tr>
-        </tbody>
-        </table>
-1. Reconfigure your scripts, API calls, or proxies to exchange the newly generated VMware Cloud services API token for an access token, instead of using the Operations for Applications API token.
-
-    {% include important.html content="The TTL of the access tokens associated with user accounts is 30 minutes. Make sure that your script renews the access token periodically before it expires. The Wavefront proxy does this automatically. "%}
-1. [Revoke](#how-to-view-and-manage-the-operations-for-applications-api-tokens) the Operations for Applications API token that you replaced.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## What Happens with the Wavefront Proxies?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, all of the existing Wavefront proxies are **preserved** with their existing Operations for Applications API tokens.
-
-You should incrementally [replace](#how-to-replace-the-operations-for-application-api-token-of-a-wavefront-proxy) the tokens of your proxies to authenticate with the more secure VMware Cloud services access tokens.
-
-{% include tip.html content="From now on, the users with the **Proxies** service role can create and manage the proxies in your Operations for Applications service. New proxies must authenticate with VMware Cloud services access tokens unless used for the [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens."%}
-
-### How to Replace the Operations for Application API Token of a Wavefront Proxy?
-
-{% include important.html content="Make sure the version of your Wavefront proxy is 13.0 or later."%}
-
-1. Log in to the VMware Cloud Services Console.
-1. Obtain OAuth app credentials (recommended) or a VMware Cloud services API token:
-
-    - Create a server to server app with the **Proxies** service role, save its OAuth credentials (app ID and app secret), and add it to your VMware Cloud organization. See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-    
-        Also, obtain the long ID of the VMware Cloud organization. See [View the Organization ID](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-CF9E9318-B811-48CF-8499-9419997DC1F8.html#view-the-organization-id-1) in the VMware Cloud services documentation.
-    - Generate a VMware Cloud services API token with the **Proxies** service role. See [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) in the VMware Cloud services documentation.
-1. Go to the [proxy configurations location](proxies_configuring.html#proxy-file-paths) and edit the `wavefront.conf` file with the OAuth app credentials or your VMware Cloud services API token:
-
-    - Replace the `token` parameter with the `cspAppId`, `cspAppSecret`, and `cspOrgId` parameters:
-
-        ```
-        cspAppId=<OAuth_app_id>
-        cspAppSecret=<OAuth_app_secret>
-        cspOrgId=<Org_long_ID>
-        ```
-    - Replace the `token` parameter with the `cspAPIToken` parameter:
-
-        ```
-        cspAPIToken=<VMware_Cloud_services_API_token>
-        ```
-1. [Revoke](#how-to-view-and-manage-the-operations-for-applications-api-tokens) the Operations for Applications API token that you replaced.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## What Happens with the Integrations?
-
-During the process of onboarding your Operations for Applications service to VMware Cloud services, all of the existing integrations are **preserved** and continue to operate using proxy authentication with Operations for Applications API tokens.
-
-You should incrementally [replace](#how-to-replace-the-operations-for-application-api-token-of-a-wavefront-proxy) the proxy tokens of your [integrations](integrations_onboarded_subscriptions.html#integrations-that-use-vmware-cloud-services-access-tokens) that are updated to use proxy authentication with the more secure VMware Cloud services access token.
-
-{% include tip.html content="From now on, the users with the **Proxies** and **Integrations** service roles can set up integrations in your Operations for Applications service. New integrations must use proxy authentication with VMware Cloud services access tokens except for the [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens."%}
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_migration.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
\ No newline at end of file
diff --git a/pages/doc/csp_sign_up_or_log_in.md b/pages/doc/csp_sign_up_or_log_in.md
index e2e24af67..89ac400d3 100644
--- a/pages/doc/csp_sign_up_or_log_in.md
+++ b/pages/doc/csp_sign_up_or_log_in.md
@@ -7,15 +7,15 @@ summary: Learn how you can sign up and log in to your service instance if it's o
 ---
 Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform.
 
-{% include note.html content="After July 3, 2023, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to VMware Cloud services and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally [onboarding](csp_migration.html) original subscriptions to VMware Cloud services. For information about original and VMware Cloud services subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html). "%}
+{% include note.html content="After July 3, 2023, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to VMware Cloud services and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally onboarding original subscriptions to VMware Cloud services. For information about original and VMware Cloud services subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html). "%}
 
-When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single [VMware Cloud services account](csp_getting_started.html#whats-a-vmware-cloud-services-account) to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
+When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single VMware Cloud services account to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
 
 Here’s how the signup works:
 1.	If you don't belong to the VMware Cloud organization in which the Operations for Applications service instance is running, you can be added to that organization in one the following ways:
 - A VMware Cloud **Organization Owner** or **Organization Administrator** adds you individually. See [How do I add users to my organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-47AA313E-9DAC-447C-B6C8-DF71ED45B0D5.html) in the VMware Cloud services documentation.
 - A VMware Cloud **Organization Owner** and **Enterprise Administrator** federate your corporate domain with VMware Cloud services. See [What is enterprise federation and how does it work](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html) in the VMware Cloud services documentation.
-2. A VMware Cloud **Organization Owner** or **Organization Administrator** grants you access to the organization's resources with an [organization role](csp_getting_started.html#whats-a-vmware-cloud-organization-role).
+2. A VMware Cloud **Organization Owner** or **Organization Administrator** grants you access to the organization's resources with an organization role.
 3. A VMware Cloud **Organization Owner** or **Organization Administrator** grants you access to the Operations for Applications service instance with an [Operations for Applications service role](csp_users_roles.html). In addition, they can grant you a custom role with Operations for Application permissions.
 
     In a multi-tenancy environment, you can have different service and custom roles for the different Operations for Applications service instances (tenants).
diff --git a/pages/doc/csp_supported_integrations.md b/pages/doc/csp_supported_integrations.md
index 1d80a1bc3..f659c898f 100644
--- a/pages/doc/csp_supported_integrations.md
+++ b/pages/doc/csp_supported_integrations.md
@@ -9,7 +9,7 @@ summary: Learn how integration authentication happens, which integrations work w
 
 ## Subscription Types
 
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until [onboarded](csp_migration.html) to VMware Cloud services.
+Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services.
 
 For best performance, when you set up most of our integrations, it is recommended to use the Wavefront proxy. The Wavefront proxy ingests metrics and forwards them to Operations for Applications in a secure, fast, and reliable manner. 
 
@@ -39,7 +39,7 @@ The Wavefront proxy requires a VMware Cloud services access token with the **Pro
 
 For a limited number of integrations, you must still use an Operations for Applications API token, associated with a [service account](csp_service_accounts.html) that has the **Proxies** permission. As a user with the **Admin** service role, you can create a service account with the **Proxies** permission and generate an API token for it. Then, you can install the Wavefront proxy and set up your integration to pass the API token of the service account. 
 
-{% include warning.html content="  It is strongly recommended that you gradually [switch to using server to server OAuth apps](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app) which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future." %}
+{% include warning.html content="  It is strongly recommended that you gradually switch to using server to server OAuth apps which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future." %}
 
 <!--Bring this back to the warning if we get the flag: First sentence: Service accounts are enabled only for a **limited number** of VMware Cloud services subscriptions. 
 
diff --git a/pages/doc/csp_ui_differences.md b/pages/doc/csp_ui_differences.md
deleted file mode 100644
index 06f6efbe6..000000000
--- a/pages/doc/csp_ui_differences.md
+++ /dev/null
@@ -1,83 +0,0 @@
----
-title: UI Differences Between Original and VMware Cloud Services Subscriptions
-keywords: 
-tags: [introduction]
-sidebar: doc_sidebar
-permalink: csp-ui-differences.html
-summary: Learn about the differences in the UI of VMware Aria Operations for Applications original subscriptions and VMware Cloud services subscriptions.
----
-
-Operations for Applications subscriptions are two types: original subscriptions and VMware Cloud services subscriptions.
-
-## Menu Bar
-
-The menu bar differs, because the VMware Cloud services toolbar is added to the top.
-
-  ![An image showing the differences in the menu bar, which are listed below.](images/new-vs-original-toolbar.png)
-
-  From the VMware Cloud services toolbar, you can:
-
-  1. Switch between tenants (service instances) in a multi-tenant Operations for Applications environment.
-  1. See notifications from VMware Cloud services.
-  1. Manage your VMware Cloud services account and switch to other organizations.
-  1. Go to the VMware Cloud Services Console and switch to other service subscriptions.
-
-## Own User Account Settings
-
-When viewing their own user account settings in the Operations for Applications UI, VMware Cloud services subscribers do not have the **Groups, Roles & Permissions** and the **API Access** tabs (1) and can no longer change their password from the Operations for Applications UI (2), because this is done from the VMware Cloud Services Console.
-
-  ![An image showing that the tabs mentioned above and the change password link are removed from the UI for new subscribers.](images/new-vs-original.png)
-
-
-## Gear Icon Menu
-
-The gear icon menu also differs, because many of the tasks for VMware Cloud services subscribers are done by using the VMware Cloud Services Console. 
-
-  For example, for **Super Admin** users with **Super Admin** mode enabled, the gear icon menu looks like this:
- 
-  ![An image showing the differences in the gear icon menu, which are listed below.](images/new-vs-original-menu.png)
-
-   1. The tenant name is missing, because it is shown in the VMware Cloud Services Console when you launch the service instance. In a multi-tenant environment, the current tenant is shown on the top-left of the menu bar and you can click it to switch between tenants.
-   1. The **Self Service SAML** menu item is missing, because the enterprise federation setup is done from the VMware Cloud Services Console.
-   1. The **Accounts** menu item is available only for a **limited number** of VMware Cloud services subscriptions. See the section below.
-   1. The **Super Admin** menu item is replaced with **Orphaned Objects**, because Super Admin users can no longer invite new Super Admin users, but they can still see and recover orphaned objects, such as orphan dashboards and alerts. See the following bullet point.
-   1. The **Sign Out** menu item is missing, because signing out is done from the User/Organization drop-down menu on the top-right of the menu bar.
-
-
-## Accounts Page
-
-Most of the identity and access management tasks for VMware Cloud services subscribers are done by using the VMware Cloud Services Console. Therefore, if you are a user with the **Admin** service role assigned (this role partially covers the **Accounts** permission for original subscriptions), when you click the gear icon on the toolbar and select **Accounts**, you will see only the **Service Accounts** and the **API Tokens** tabs.
-
-{% include warning.html content="You should incrementally switch to using [server to server OAuth apps](csp_server_to_server_apps.html) and [VMware Cloud services API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html). Service accounts and the API tokens associated with them will be deprecated in the future." %}
-
-<!--Include this as a first sentence if we create the flag: This page is available only for a **limited number** of VMware Cloud services subscriptions.-->
-
-  ![An image showing the differences in the Accounts menu and the Service Accounts tab.](images/new-vs-original-accounts.png)
-
-  1. The **User Accounts**, **Groups**, and **Roles** tabs are missing, because the management of users, groups, and roles is done from the VMware Cloud Services Console. By using the **Accounts** menu item, the VMware Cloud services subscribers can manage only service accounts and the Operations for Applications API tokens associated with them.
-  1. VMware Cloud services subscribers cannot assign roles to service accounts and also can’t add them to groups. For VMware Cloud services subscriptions, service accounts are local entities in Operations for Applications, while roles and groups management is centralized in VMware Cloud services. VMware Cloud services subscribers can grant only permissions to service accounts.
-  1. Filtering the service accounts can be done only by permissions, because they don’t have roles and don’t belong to groups.
-
-## Super Admin Page
-
-The **Super Admin** page is replaced with **Orphaned Objects**, because Super Admin users no longer can invite new Super Admin users, but they can still see and recover orphaned objects, such as orphan dashboards and alerts.
-
-  ![An image showing the differences in the add new proxy page.](images/new-vs-original-super-admin.png)
-
-## Add New Wavefront Proxy Page
-
-When adding a Wavefront proxy, VMware Cloud services subscribers have two options for the proxy authorization to Operations for Applications. They can configure the proxy with server to server OAuth app credentials or with a VMware Cloud services API token.
-
-  ![An image showing the differences in the add new proxy page.](images/new-vs-original-proxy.png)
-
-## Organization Settings Page
-
-The options for adding default groups for new user and service accounts as well as for setting the default permissions for new user accounts are removed, because VMware Cloud services subscribers manage users and roles through the VMware Cloud Services Console. Users with the **Super Admin** or **Admin** service role can still set the default display settings and language preferences for new users on the **Organization Settings** page.
-
-  ![An image showing that the options mentioned above are removed from the UI for new subscribers.](images/new-vs-original-new-accounts-defaults.png)
-
-## Metrics Security Policy Rule Creation Page
-
-The option for creating a metrics security policy rule based on roles is removed, because VMware Cloud services subscribers can block or allow access to certain metrics only based on accounts (user accounts and service accounts) and groups.
-
-  ![An image showing that the Roles option is removed from the UI for new subscribers.](images/new-vs-original-metricspolicy.png)
diff --git a/pages/doc/csp_user_management.md b/pages/doc/csp_user_management.md
index 7f01e7864..ebc71eb9c 100644
--- a/pages/doc/csp_user_management.md
+++ b/pages/doc/csp_user_management.md
@@ -16,7 +16,7 @@ VMware Cloud services provides identity access management for the users of your
 
 To add a user to your Operations for Applications service instance, you must assign that user:
 
-1. An [organization role](csp_getting_started.html#whats-a-vmware-cloud-organization-role) for the VMware Cloud organization running the service instance.
+1. An organization role for the VMware Cloud organization running the service instance.
 
     {% include note.html content="If you are a VMware Cloud **Organization Administrator**, you can assign only the VMware Cloud **Organization Member** role. Only a VMware Cloud **Organization Owner** can add VMware Cloud **Organization Owners** and VMware Cloud **Organization Administrators**."%}
 
diff --git a/pages/doc/csp_users_account_managing.md b/pages/doc/csp_users_account_managing.md
index 5de89a129..82ba2e122 100644
--- a/pages/doc/csp_users_account_managing.md
+++ b/pages/doc/csp_users_account_managing.md
@@ -8,7 +8,7 @@ summary: Learn how to manage your password and preferences.
 
 {% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Customize Your Account](users_account_managing.html)."%}
 
-When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single [VMware Cloud services account](csp_getting_started.html#whats-a-vmware-cloud-services-account) to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
+When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single VMware Cloud services account to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
 
 ## Manage Your Password
 
diff --git a/pages/doc/integrations_new_changed.md b/pages/doc/integrations_new_changed.md
index 60bc3c4f3..f15f48889 100644
--- a/pages/doc/integrations_new_changed.md
+++ b/pages/doc/integrations_new_changed.md
@@ -11,7 +11,7 @@ VMware Aria Operations for Applications (formerly known as Tanzu Observability b
 
 ## Announcement
 
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the [VMware Cloud services platform](https://console.cloud.vmware.com/) and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally [onboarding](csp_migration.html) all original subscriptions to VMware Cloud services.
+Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the [VMware Cloud services platform](https://console.cloud.vmware.com/) and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally onboarding all original subscriptions to VMware Cloud services.
 
 For details about the two subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
 
@@ -19,7 +19,7 @@ If your Operations for Applications service **is onboarded** to VMware Cloud ser
 
 {% include note.html content= "The integrations in the **Archived** section are approaching their end-of-life. For that reason, we will not update these integrations to authenticate with VMware Cloud services access tokens." %}
 
-During the process of onboarding an original Operations for Applications service to VMware Cloud services, all of the existing integrations are preserved and continue to operate using Operations for Applications API tokens. You should incrementally switch to integration authentication with the more secure VMware Cloud services access tokens. See [What Happens with the Integrations?](csp_migration.html#what-happens-with-the-integrations).
+During the process of onboarding an original Operations for Applications service to VMware Cloud services, all of the existing integrations are preserved and continue to operate using Operations for Applications API tokens. You should incrementally switch to integration authentication with the more secure VMware Cloud services access tokens. 
 
 {% include note.html content= "Currently, if your service **is onboarded** to VMware Cloud services, direct ingestion by using the Wavefront Output Plugin for Telegraf is not supported. For best performance, use a Wavefront proxy. " %}
 
diff --git a/pages/doc/purchase-additional-capacity.md b/pages/doc/purchase-additional-capacity.md
index fcf9b0d1d..6c3871253 100644
--- a/pages/doc/purchase-additional-capacity.md
+++ b/pages/doc/purchase-additional-capacity.md
@@ -8,7 +8,7 @@ summary: Learn how to add capacity to your current VMware Aria Operations for Ap
 ---
 
 {% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, to purchase additional capacity, you must hold the [**Organization Owner** role](csp_getting_started.html#whats-a-vmware-cloud-organization-role) in the VMware Cloud organization running the service as well as at least one [Operations for Applications service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) for the service instance. If your enterprise domain is federated, to access the organization billing account, you must have a VMware account linked to your corporate account.<br/>
+- For VMware Cloud services subscriptions, to purchase additional capacity, you must hold the **Organization Owner** role in the VMware Cloud organization running the service as well as at least one [Operations for Applications service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) for the service instance. If your enterprise domain is federated, to access the organization billing account, you must have a VMware account linked to your corporate account.<br/>
 - For original Operations for Applications subscriptions, to purchase additional capacity, you must be a **Super Admin** user."%}
 
 ## Supported Contracts
diff --git a/pages/doc/wavefront_introduction.md b/pages/doc/wavefront_introduction.md
index 31861de0a..04b1558ee 100644
--- a/pages/doc/wavefront_introduction.md
+++ b/pages/doc/wavefront_introduction.md
@@ -11,7 +11,7 @@ VMware Aria Operations for Applications (formerly known as Tanzu Observability b
 
 You need an account to get started. 
 
-Starting July 3, 2023, Operations for Applications is a service on the [VMware Cloud services platform](https://console.cloud.vmware.com/). After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until [onboarded](csp_migration.html) to VMware Cloud services. For information about the subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
+Starting July 3, 2023, Operations for Applications is a service on the [VMware Cloud services platform](https://console.cloud.vmware.com/). After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. For information about the subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
 
 ## Intro Videos
 
diff --git a/pages/doc/wavefront_obsolescence_policy.md b/pages/doc/wavefront_obsolescence_policy.md
index 6e6e3b14e..3200c39cc 100644
--- a/pages/doc/wavefront_obsolescence_policy.md
+++ b/pages/doc/wavefront_obsolescence_policy.md
@@ -187,7 +187,7 @@ Starting July 3, 2023, VMware Aria Operations for Applications is a service on t
 
 Starting September 20, 2023, all **new trial** instances of Operations for Applications are **onboarded** to VMware Cloud services.
 
-In October, 2023, we start to incrementally [onboard](csp_migration.html) all **original** subscriptions, which use Operations for Applications authentication and authorization, to VMware Cloud services. 
+In October, 2023, we start to incrementally onboard all **original** subscriptions, which use Operations for Applications authentication and authorization, to VMware Cloud services. 
 
-{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** [your service accounts with server to server apps](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app) and [your Operations for Applications API tokens with VMware Cloud Services access tokens](csp_migration.html#how-to-replace-an-operations-for-applications-api-token-with-a-vmware-cloud-services-access-token), including [the Operations for Application API tokens of your Wavefront proxies](csp_migration.html#how-to-replace-the-operations-for-application-api-token-of-a-wavefront-proxy)." %}
+{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** your service accounts with server to server apps and your Operations for Applications API tokens with VMware Cloud Services access tokens, including the Operations for Application API tokens of your Wavefront proxies." %}
 
diff --git a/pages/doc/wavefront_release_notes.md b/pages/doc/wavefront_release_notes.md
index 3472fdd22..a1dc08ad1 100644
--- a/pages/doc/wavefront_release_notes.md
+++ b/pages/doc/wavefront_release_notes.md
@@ -37,9 +37,9 @@ For information about the two subscription types and how they differ, see [Subsc
 
 ### Onboarding Original VMware Aria Operations for Applications to VMware Cloud Services
 
-In October, 2023, we start to incrementally [**onboard**](csp_migration.html) all original subscriptions to VMware Cloud services. You will receive a notification in your Operations for Applications UI with the date scheduled for your service onboarding to VMware Cloud services. Make sure that you get familiar with the VMware Cloud services platform and prepare for the onboarding. See [What Should I Do Before the Onboarding?](csp_migration.html#what-should-i-do-before-the-onboarding).
+In October, 2023, we start to incrementally **onboard** all original subscriptions to VMware Cloud services. You will receive a notification in your Operations for Applications UI with the date scheduled for your service onboarding to VMware Cloud services. Make sure that you get familiar with the VMware Cloud services platform and prepare for the onboarding. 
 
-{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** [your service accounts with server to server apps](csp_migration.html#how-to-replace-a-service-account-with-a-server-to-server-app) and [your Operations for Applications API tokens with VMware Cloud Services access tokens](csp_migration.html#how-to-replace-an-operations-for-applications-api-token-with-a-vmware-cloud-services-access-token), including [the Operations for Application API tokens of your Wavefront proxies](csp_migration.html#how-to-replace-the-operations-for-application-api-token-of-a-wavefront-proxy)." %}
+{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** your service accounts with server to server apps and your Operations for Applications API tokens with VMware Cloud Services access tokens, including the Operations for Application API tokens of your Wavefront proxies." %}
 
 <!--
 ## 2024-10.x Release Notes

From 94f99c5bba3ab778a4c254eec38a13afc20c2276 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Thu, 27 Jun 2024 13:29:35 -0700
Subject: [PATCH 02/12] Vmware cs removal

---
 _data/sidebars/doc_sidebar.yml             |  12 ---
 pages/doc/2023-52.x_release_notes.md       |   2 +-
 pages/doc/authorization.md                 |   2 -
 pages/doc/authorization_faq.md             |   1 -
 pages/doc/csp_access.md                    |   6 +-
 pages/doc/csp_authorization.md             |  37 -------
 pages/doc/csp_invite-AoA-users_tutorial.md |   2 +-
 pages/doc/csp_permissions_overview.md      | 107 ---------------------
 pages/doc/csp_server_to_server_apps.md     |   6 +-
 pages/doc/csp_sign_up_or_log_in.md         |  83 ----------------
 pages/doc/csp_user_management.md           |  10 +-
 pages/doc/csp_users_account_managing.md    |  88 -----------------
 pages/doc/csp_users_roles.md               |   8 +-
 pages/doc/direct_ingestion.md              |   2 +-
 pages/doc/permissions_overview.md          |   2 +-
 pages/doc/proxies_container.md             |   5 +-
 pages/doc/tobs_faq.md                      |   4 +-
 pages/doc/users_account_managing.md        |   1 -
 pages/doc/wavefront_api_usage.md           |  79 +--------------
 pages/doc/windows_host_tutorial.md         |   2 +-
 20 files changed, 25 insertions(+), 434 deletions(-)
 delete mode 100644 pages/doc/csp_authorization.md
 delete mode 100644 pages/doc/csp_permissions_overview.md
 delete mode 100644 pages/doc/csp_sign_up_or_log_in.md
 delete mode 100644 pages/doc/csp_users_account_managing.md

diff --git a/_data/sidebars/doc_sidebar.yml b/_data/sidebars/doc_sidebar.yml
index 90a4d37a8..5b8cf93f8 100755
--- a/_data/sidebars/doc_sidebar.yml
+++ b/_data/sidebars/doc_sidebar.yml
@@ -882,10 +882,6 @@ entries:
     output: web
     folderitems:
 
-      - title: Sign Up or Log In
-        url: /csp_sign_up_or_log_in.html
-        output: web
-
       - title: Manage Your VMware Cloud Services Account
         url: /csp_users_account_managing.html
         output: web
@@ -895,14 +891,6 @@ entries:
           output: web
           subfolderitems:
 
-          - title: Authorization Model
-            url: /csp_authorization.html
-            output: web
-
-          - title: Permissions Reference
-            url: /csp_permissions_overview.html
-            output: web
-
           - title: Manage Roles and Groups
             url: /csp_users_roles.html
             output: web
diff --git a/pages/doc/2023-52.x_release_notes.md b/pages/doc/2023-52.x_release_notes.md
index ec2ca1047..bbe61ad52 100644
--- a/pages/doc/2023-52.x_release_notes.md
+++ b/pages/doc/2023-52.x_release_notes.md
@@ -40,7 +40,7 @@ Example: An annotated screenshot of the create traces security policy for origin
 
 ### Onboarded Subscriptions
 
-**New Admin Permission and Service Role**: With this release, we introduce the **Admin** [permission](csp_permissions_overview.html#operations-for-applications-permissions) and [service role](csp_users_roles.html#operations-for-applications-service-roles-built-in). **Admin** users can manage the Operations for Applications organization settings.
+**New Admin Permission and Service Role**: With this release, we introduce the **Admin** permission and [service role](csp_users_roles.html#operations-for-applications-service-roles-built-in). **Admin** users can manage the Operations for Applications organization settings.
 
 
 ### Original and Onboarded Subscriptions
diff --git a/pages/doc/authorization.md b/pages/doc/authorization.md
index 25de828b0..121d2bc08 100644
--- a/pages/doc/authorization.md
+++ b/pages/doc/authorization.md
@@ -7,8 +7,6 @@ permalink: authorization.html
 summary: Learn about authorization of groups and users.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see [Authorization Model in Operations for Applications on VMware Cloud Services](csp_authorization.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports both role-based control that use global permissions and object-based access control for individual dashboards and alerts.
 
 Users with the **Accounts** permission can:
diff --git a/pages/doc/authorization_faq.md b/pages/doc/authorization_faq.md
index 9870dea18..d140e0b3c 100644
--- a/pages/doc/authorization_faq.md
+++ b/pages/doc/authorization_faq.md
@@ -7,7 +7,6 @@ permalink: authorization-faq.html
 summary: Before you start managing users, groups, roles, and access, here are some FAQs.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see [Authorization Model in Operations for Applications on VMware Cloud Services](csp_authorization.html)."%}
 
 ### What Are User & Service Accounts?
 
diff --git a/pages/doc/csp_access.md b/pages/doc/csp_access.md
index 0964f9629..bb14f5320 100644
--- a/pages/doc/csp_access.md
+++ b/pages/doc/csp_access.md
@@ -77,7 +77,7 @@ Initially, all users can *view* all dashboards and alerts. In addition, global p
 As a user with the **Admin** or **Super Admin** service role, you can restrict access to new dashboards and alerts:
 
 1. Log in to your service instance.
-1. If you are a **Super Admin** user, [enable Super Admin mode](csp_users_account_managing.html#enable-or-disable-super-admin-mode).
+1. If you are a **Super Admin** user, enable Super Admin mode.
 1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Organization Settings**.
 2. Click the **Security** tab and select **Object Creator**.
 
@@ -109,7 +109,7 @@ A dashboard or alert becomes orphaned if:
 * Only one user had access to it, and that user was removed.
 
 To restore an orphan dashboard or alert:
-1. Log in to your service instance as a user with the **Super Admin** service role and [enable Super Admin mode](csp_users_account_managing.html#enable-or-disable-super-admin-mode).
+1. Log in to your service instance as a user with the **Super Admin** service role and enable Super Admin mode.
 1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Orphaned Objects**.
 1. Select the orphaned dashboard or alert and share it with other users or groups.
 
@@ -117,7 +117,7 @@ To restore an orphan dashboard or alert:
 
 A permanently deleted dashboard does not show in the trash and becomes inaccessible to all users, including the users with the **Super Admin** service role. As a user with the **Super Admin** service role, you can try to restore the dashboard by using the REST API.
 
-1. Log in to your service instance as a user with the **Super Admin** service role and [enable Super Admin mode](csp_users_account_managing.html#enable-or-disable-super-admin-mode).
+1. Log in to your service instance as a user with the **Super Admin** service role and enable Super Admin mode.
 2. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **API Documentation**.
 3. Expand the **Dashboard** category and click the `GET api/v2/dashboard/{id}/history/{version}` request.
 4. Enter the dashboard name as the `"id"` parameter.
diff --git a/pages/doc/csp_authorization.md b/pages/doc/csp_authorization.md
deleted file mode 100644
index 14455dcf8..000000000
--- a/pages/doc/csp_authorization.md
+++ /dev/null
@@ -1,37 +0,0 @@
----
-title: Authorization Model in Operations for Applications on VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_authorization.html
-summary: Learn about authorization of groups, users, and server to server apps to access VMware Aria Operations for Applications on VMware Cloud services.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Authorization Model](authorization.html)."%}
-
-VMware Cloud services supports role-based access control for the services on its platform, including Operations for Applications. Operations for Applications supports object-based access control for individual dashboards and alerts as well as metrics security policy.
-
-## Role-Based Access Control with Global Permissions
-
-[Operations for Applications permissions](csp_permissions_overview.html) always apply to all objects of a certain type. For example, a user with the **Dashboards** permission can view and modify all dashboards.
-
-Users with the VMware Cloud **Organization Owner** or **Organization Administrator** role manage authorization with [roles and groups](csp_users_roles.html). They can:
-* Create **groups** and add users to each group.
-* Create **custom roles** and assign one or more permissions to each role.
-* Assign one or more **service roles** and **custom roles** to groups, users, and server-to-server apps.
-
-## Access Control for Dashboards and Charts
-
-Our fine-grained **[access control](csp_access.html)** allows users with the **Admin** and **Super Admin** service roles to protect sensitive information, for example, to restrict access to certain dashboards to the Finance team.
-
-* **Access control on individual objects** -- While permissions are global and apply, for example, to all dashboards, access control allows you to restrict who can view or view and modify individual objects (dashboards and alerts).
-* **Security setting for new objects** -- In high security environments, users with the **Admin** and **Super Admin** service roles can set a security setting so that all new dashboards and new alerts are accessible only to the creator and to the users with the **Super Admin** service role.
-
-## Metrics Security Policy Rules
-
-Users with the **Super Admin** and **Metrics** service roles can view, create, and manage  [metrics security policy rules](csp_metrics_security.html).
-
-Data protected by a metrics security policy rule can become completely invisible to users.
-* **Not visible in charts**. The chart either includes a warning that some metrics are protected, or, if all metrics are protected, the chart shows only the message.
-* **Not visible in alerts** (if **Secure Metrics Details** is checked for the alert). The alert fires based on the complete set of metrics, and the complete set is shown in notification images by default. A check box allows users with the **Super Admin** service role to [hide alert details](alerts_notifications.html#alert-notification-with-secured-metrics-details) so that confidential metrics are not shown.
-* **Not visible in auto-complete** in Chart Builder, Query Editor, Metrics browser, etc.
diff --git a/pages/doc/csp_invite-AoA-users_tutorial.md b/pages/doc/csp_invite-AoA-users_tutorial.md
index f604b4a7b..1a4101ce7 100644
--- a/pages/doc/csp_invite-AoA-users_tutorial.md
+++ b/pages/doc/csp_invite-AoA-users_tutorial.md
@@ -64,7 +64,7 @@ If you do not have the VMware Cloud **Organization Owner** or **Organization Adm
 
 We provide a number of built-in Operations for Applications service roles.
 
-- A corresponding service role for each [permission](csp_permissions_overview.html#operations-for-applications-permissions).
+- A corresponding service role for each permission.
 - Two special service roles - one that grants full administrative access to the service, and another one that grants read-only access to the service.
 
 For more information, see [Operations for Applications Service Roles (Built-in)](csp_users_roles.html#operations-for-applications-service-roles-built-in).
diff --git a/pages/doc/csp_permissions_overview.md b/pages/doc/csp_permissions_overview.md
deleted file mode 100644
index 0669aec3f..000000000
--- a/pages/doc/csp_permissions_overview.md
+++ /dev/null
@@ -1,107 +0,0 @@
----
-title: Operations for Applications Permissions in VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_permissions_overview.html
-summary: Learn about the permissions in VMware Aria Operations for Applications on VMware Cloud services.
----
-
-All users can perform certain default tasks. However, you must have the appropriate permissions to manage objects. If you do not have permission, UI menu selections and buttons required to perform management tasks are not visible.
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Permissions Reference](permissions_overview.html)."%}
-
-## Default Tasks
-
-All users can:
-
-  * View the dashboards, alerts, metrics, sources, events, maintenance windows, and alert notification pages.
-
-      {% include note.html content="It's possible that [access to dashboards and alerts](csp_access.html#how-access-control-works) is limited." %}
-  * Add dashboards to the list of favorites.
-  * View existing dashboards and charts.
-  * Create and interact with charts – but NOT save charts.
-  * Share links to dashboards and charts with other users.
-  * Access the user profile from the gear icon <i class="fa fa-cog"/> on the toolbar.
-
-Users with the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) have full administrative access to the service.
-
-## Operations for Applications Permissions
-
-VMware Cloud services allows users with the VMware Cloud **Organization Owner** and **Organization Administrator** roles to perform access control for object management based on Operations for Applications permissions. 
-- Permissions can be assigned to roles only, and roles can be assigned to users, user groups, and server to server apps.
-- For each permission, there is a corresponding built-in [Operations for Applications service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) with only that permission assigned.
-- Permissions can be assigned to [custom roles](csp_users_roles.html#create-edit-or-delete-a-custom-role).
-
-<table>
-    <tr>
-      <th width="30%">Permission</th>
-      <th width="70%">Allows to</th>
-    </tr>
-    <tr>
-      <th>Admin</th>
-      <td>Manage the Operations for Applications organization settings: set the default display options, PromQL support, and the default way of building queries for all users of the service instance. Can define logs settings, if the logs feature is enabled. Can restrict access to new dashboards and alerts. Can manage service accounts, if enabled for the service instance.</td>
-    </tr>
-    <tr>
-      <th>Alerts</th>
-      <td>Create, edit, and delete <a href="alerts.html">alerts</a>, <a href="webhooks_alert_notification.html">alert targets</a>, and <a href="maintenance_windows_managing.html">maintenance windows</a>. Also, can manage alert tags and view alert history.</td>
-    </tr>
-    <tr>
-      <th>Applications</th>
-      <td><a href="tracing_apdex.html">Update the threshold (T)</a> of the Application Performance Index (Apdex) score and <a href="trace_sampling_policies.html">create sampling policies</a>.</td>
-    </tr>
-    <tr>
-      <th>Batch Query Priority</th>
-      <td>Queries executed by accounts with this permission are treated at a lower priority level, as if wrapped in the <a href="ts_bestEffort.html">bestEffort() function</a>.</td>
-    </tr>
-    <tr>
-      <th>Charts Embedding</th>
-      <td><a href="ui_sharing.html#embed-a-chart-in-other-uis">Generate HTML snippets of charts</a> in Operations for Applications and embed a corresponding interactive chart outside of Operations for Applications. Embedded chart URLs are associated with a specific user account. If a user embeds a chart and later that user’s account is removed, the embedded chart no longer works.</td>
-    </tr>
-    <tr>
-      <th>Dashboards</th>
-      <td>Create, manage, and delete <a href="ui_dashboards.html">dashboards</a> and <a href="ui_charts.html">charts</a> and manage dashboard tags.</td>
-    </tr>
-    <tr>
-      <th>Derived Metrics</th>
-      <td>Create and manage registered queries. <a href="derived_metrics.html">Derived metrics</a> support reingesting a query.</td>
-    </tr>
-    <tr>
-      <th>Direct Data Ingestion</th>
-      <td><a href="direct_ingestion.html">Directly ingest metrics</a> using the REST API or one of the SDKs, bypassing the proxy. Grant this permission only to users who have a deep understanding of APIs and the Operations for Applications ingestion path.</td>
-    </tr>
-    <tr>
-      <th>Events</th>
-      <td>Create, manage, and close user <a href="events.html">events</a> and manage event tags.</td>
-    </tr>
-    <tr>
-      <th>External Links</th>
-      <td>Create, update, and delete <a href="external_links_managing.html">external links</a>.</td>
-    </tr>
-    <tr>
-      <th>Ingestion Policies</th>
-      <td>Create, edit, and delete <a href="ingestion_policies.html">ingestion policies</a>.</td>
-    </tr>
-    <tr>
-      <th>Integrations</th>
-      <td>Install and uninstall <a href="integrations.html">integration dashboards and alerts</a>.</td>
-    </tr>
-    <tr>
-      <th>Logs</th>
-      <td><a href="logging_log_browser.html">View logs</a> and drill into logs from charts, alerts, and traces. In combination with the <strong>Dashboards</strong> permission, you can <a href="logging_logs_chart.html">create logs charts</a>.
-      <p><strong>Note:</strong> Logs (Beta) is enabled only for selected customers. To participate, contact your Operations for Applications account representative.</p></td>
-    </tr>
-    <tr>
-      <th>Metrics</th>
-      <td>Manually <a href="metrics_managing.html#hide-and-redisplay-metrics">hide and unhide</a> metrics and metric prefixes. Also, can create and modify <a href="metrics_managing.html">metrics security policy rules</a>.
-      <p><strong>Important:</strong> Server to server apps must have this permission to run queries. </p></td>
-    </tr>
-    <tr>
-      <th>Proxies</th>
-      <td>View, create, and manage <a href="proxies_installing.html">proxies</a> and set up external <a href="label_integrations%20list.html">integrations</a> with AWS and other cloud services.</td>
-    </tr>
-    <tr>
-      <th>Sources</th>
-      <td>Manage <a href="sources_managing.html">sources</a> and source tags. If you don’t have this permission, source tags will be rejected with a 403 error.</td>
-    </tr>
-  </table>
\ No newline at end of file
diff --git a/pages/doc/csp_server_to_server_apps.md b/pages/doc/csp_server_to_server_apps.md
index 906f658c0..b0b4ac454 100644
--- a/pages/doc/csp_server_to_server_apps.md
+++ b/pages/doc/csp_server_to_server_apps.md
@@ -9,11 +9,11 @@ summary: Create server to server apps and grant them access to VMware Aria Opera
 
 {% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage Service Accounts](service-accounts.html)."%}
 
-VMware Cloud services supports server to server apps that you can use to automate management of Operations for Applications objects, such as dashboards, alerts, etc. A server to server app can't perform the **UI operations** that all user accounts can [perform by default](csp_permissions_overview.html#default-tasks).
+VMware Cloud services supports server to server apps that you can use to automate management of Operations for Applications objects, such as dashboards, alerts, etc. A server to server app can't perform the **UI operations** that all user accounts can perform by default.
 
 You can also use a server to server app for a [Wavefront proxy authentication](proxies_installing.html#proxy-authentication-types). For example, see our [Windows Host Integration Tutorial](windows_host_tutorial.html), which includes installing a Wavefront proxy with server to server OAuth app credentials.
 
-{% include note.html content="A server to server app must hold roles with certain [permissions](csp_permissions_overview.html#operations-for-applications-permissions) to perform tasks. For example, to run queries, a server to server app must hold the [**Metrics** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) or a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with the **Metrics** permission. To manage dashboards and alerts, the server to server app might need both roles with permissions and [access](csp_access.html)." %}
+{% include note.html content="A server to server app must hold roles with certain permissions to perform tasks. For example, to run queries, a server to server app must hold the [**Metrics** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) or a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with the **Metrics** permission. To manage dashboards and alerts, the server to server app might need both roles with permissions and [access](csp_access.html)." %}
 
 ## What Are Server to Server Apps?
 
@@ -42,7 +42,7 @@ If you build an application or tool that manages proxies or ingests data, then t
 
    If you plan to assign the server to server app a custom role, you must assign that server to server app at least one Operations for Applications service role, for example **Viewer**.
 
-1. Optionally, assign the server to server app a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an [Operations for Applications permission](csp_permissions_overview.html#operations-for-applications-permissions).
+1. Optionally, assign the server to server app a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an Operations for Applications permission.
 
     {% include important.html content="In a multi-tenant Operations for Applications environment, custom roles apply to **all** service instances (tenants) to which the server to server app has access, that is, for which the server to server app has at least one service role."%}
     
diff --git a/pages/doc/csp_sign_up_or_log_in.md b/pages/doc/csp_sign_up_or_log_in.md
deleted file mode 100644
index 89ac400d3..000000000
--- a/pages/doc/csp_sign_up_or_log_in.md
+++ /dev/null
@@ -1,83 +0,0 @@
----
-title: Sign Up or Log In to Your Service Instance on VMware Cloud Services
-tags: [getting started]
-sidebar: doc_sidebar
-permalink: csp_sign_up_or_log_in.html
-summary: Learn how you can sign up and log in to your service instance if it's onboarded to VMware Cloud services.
----
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform.
-
-{% include note.html content="After July 3, 2023, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to VMware Cloud services and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally onboarding original subscriptions to VMware Cloud services. For information about original and VMware Cloud services subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html). "%}
-
-When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single VMware Cloud services account to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
-
-Here’s how the signup works:
-1.	If you don't belong to the VMware Cloud organization in which the Operations for Applications service instance is running, you can be added to that organization in one the following ways:
-- A VMware Cloud **Organization Owner** or **Organization Administrator** adds you individually. See [How do I add users to my organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-47AA313E-9DAC-447C-B6C8-DF71ED45B0D5.html) in the VMware Cloud services documentation.
-- A VMware Cloud **Organization Owner** and **Enterprise Administrator** federate your corporate domain with VMware Cloud services. See [What is enterprise federation and how does it work](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html) in the VMware Cloud services documentation.
-2. A VMware Cloud **Organization Owner** or **Organization Administrator** grants you access to the organization's resources with an organization role.
-3. A VMware Cloud **Organization Owner** or **Organization Administrator** grants you access to the Operations for Applications service instance with an [Operations for Applications service role](csp_users_roles.html). In addition, they can grant you a custom role with Operations for Application permissions.
-
-    In a multi-tenancy environment, you can have different service and custom roles for the different Operations for Applications service instances (tenants).
-4. After you’ve been added to an organization, you receive an email notification with information about the VMware Cloud organization to which you were added, your organization role, and any other roles. You can now [sign up](#sign-up-with-an-email-invitation) in the VMware Cloud Services Console.
-
-    {% include note.html content="The invitation link is valid for seven days."%}
-5. From now on, you can [log in](#log-in-from-the-vmware-cloud-services-console) to your service instance from the VMware Cloud Services Console.
-
-## Sign Up with an Email Invitation
-
-If you received an email notification with information that you are added to a VMware Cloud organization with Operations for Applications access, follow these steps:
-
-1. Click the **VMware Aria Operations for Applications** link in your email notification.
-2. Authenticate yourself to VMware Cloud services. 
-    - If your account is not federated, sign in with your VMware account credentials.
-    
-      If you don't have a VMware account, you must create one.
-    - If your account is federated, sign in with your corporate credentials.
-  
-      {% include note.html content="As a user of a federated account, you must create a VMware account only if you want to file a support ticket or perform billing and subscription-related operations."%}
-3. On the **Organization** tab of the **Services** page, locate the **VMware Aria Operations for Applications** tile from the list of the services available to the organization.
-4. In the **VMware Aria Operations for Applications** tile, click **Launch Service**.
-
-   <table>
-   <tr>
-   <td>If you belong to multiple tenants, from the drop-down menu, select the tenant to which you want to log in.</td>
-   <td><img src="/images/csp_multi_tenancy.png" alt="Drop-down menu with several tenants."></td>
-   </tr>
-   </table>
-
-    You are redirected to your service instance and you're logged in with your VMware Cloud services account.
-    
-From now on, you can log in to your service instance from the [VMware Cloud Services Console](#log-in-from-the-vmware-cloud-services-console).
-
-## Log In from the VMware Cloud Services Console
-
-You can log in to the VMware Cloud Services Console and launch your service instance. If you have access to multiple Operations for Applications service instances, you can select the tenant to which you want to log in, because VMware Cloud Services also supports a multi-tenancy login.
-
-1. In a Web browser, go to [https://console.cloud.vmware.com/](https://console.cloud.vmware.com/).
-2. Authenticate yourself.
-  - If your account is not federated, sign in with your VMware account credentials. 
-  - If your account is federated, sign in with your corporate credentials.
-3. If you belong to multiple organizations, switch to the organization in which the Operations for Applications service instance runs. See [How do I access another one of my organizations](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-432417CF-CE0C-48EB-BEBB-8C27751577D1.html) in the VMware Cloud services documentation.
-4. On the **Organization** tab of the **Services** page, locate the **VMware Aria Operations for Applications** tile from the list of the services available to the organization.
-5. In the **VMware Aria Operations for Applications** tile, click **Launch service**.
-
-    <table>
-    <tr>
-    <td>If you belong to multiple tenants, from the drop-down menu, select the tenant to which you want to log in.</td>
-    <td><img src="/images/csp_multi_tenancy.png" alt="Drop-down menu with several tenants."></td>
-    </tr>
-    </table>
-
-You are redirected to your Operations for Applications service instance and you're logged in with your VMware Cloud services account.
-
-<table>
-<tr>
-<td>If you belong to multiple tenants, from the drop-down menu in the top-left corner of the menu bar, you can switch between tenants.</td>
-<td><img src="/images/to_multi_tenancy.png" alt="Drop-down menu with several tenants."></td>
-</tr>
-</table>
-
-## Learn More!
-
-See [Manage Your VMware Cloud Services Account](csp_users_account_managing.html) for customizing your user preferences.
diff --git a/pages/doc/csp_user_management.md b/pages/doc/csp_user_management.md
index ebc71eb9c..ad8777d69 100644
--- a/pages/doc/csp_user_management.md
+++ b/pages/doc/csp_user_management.md
@@ -30,7 +30,7 @@ To add a user to your Operations for Applications service instance, you must ass
 
     {% include important.html content="Make sure that you assign the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) to at least one user of your Operations for Applications service instance. There are some Super Admin tasks that no one else can perform. "%}
 
-1. Optionally, a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an [Operations for Applications permission](csp_permissions_overview.html#operations-for-applications-permissions).
+1. Optionally, a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an Operations for Applications permission.
 
     {% include important.html content="In a multi-tenant Operations for Applications environment, custom roles apply to **all** service instances (tenants) to which the user has access, that is, for which the user has at least one Operations for Applications service role."%}
 
@@ -42,7 +42,7 @@ When you are adding an individual user or a list of users to the VMware Cloud or
 
 For details, see [How do I add users to my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-47AA313E-9DAC-447C-B6C8-DF71ED45B0D5.html).
 
-The newly added users receive an invitation email with an account activation link to [sign up](csp_sign_up_or_log_in.html) to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
+The newly added users receive an invitation email with an account activation link to sign up to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
 
 ### Creating or Editing a Group
 
@@ -52,7 +52,7 @@ You can add users who already belong to the VMware Cloud organization as well as
 
 For details, see [How do I work with groups](hhttps://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-0BD8A07B-C3C0-4220-8CD0-18FA070D3DAD.html) in the VMware Cloud services documentation.
 
-The newly added users receive an invitation email with an account activation link to [sign up](csp_sign_up_or_log_in.html) to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
+The newly added users receive an invitation email with an account activation link to sign up to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
 
 ### Editing a User's Roles
 
@@ -70,10 +70,10 @@ For details, see [How do I change user roles](https://docs.vmware.com/en/VMware-
 
 ## Sign Out a User
 
-As a user with the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in), you can sign out other users by using the [REST API](wavefront_api.html). To sign out a user while you [enabled Super Admin mode](csp_users_account_managing.html#enable-or-disable-super-admin-mode), simply run a POST request with the `logout` API call. For example:
+As a user with the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in), you can sign out other users by using the [REST API](wavefront_api.html). To sign out a user while you enabled Super Admin mode, simply run a POST request with the `logout` API call. For example:
 
 ```
 POST https://<your_instance>.wavefront.com/api/logout/{identifier}
 ```
 
-You must specify the `{identifier}`, which is the email address of the user that you want to log out. If you are not logged in to your service instance, when you run the POST request, you must also provide a valid [API token](csp_users_account_managing.html#generate-an-api-token).
\ No newline at end of file
+You must specify the `{identifier}`, which is the email address of the user that you want to log out. If you are not logged in to your service instance, when you run the POST request, you must also provide a valid API token.
\ No newline at end of file
diff --git a/pages/doc/csp_users_account_managing.md b/pages/doc/csp_users_account_managing.md
deleted file mode 100644
index 82ba2e122..000000000
--- a/pages/doc/csp_users_account_managing.md
+++ /dev/null
@@ -1,88 +0,0 @@
----
-title: Manage Your VMware Cloud Services Account
-keywords: administration
-sidebar: doc_sidebar
-permalink: csp_users_account_managing.html
-summary: Learn how to manage your password and preferences.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Customize Your Account](users_account_managing.html)."%}
-
-When your Operations for Applications instance is onboarded to VMware Cloud services, you use a single VMware Cloud services account to access your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications.
-
-## Manage Your Password
-
-It's a best practice to change your password every few months. See [How do I reset my password](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-8FD73719-36EE-4414-B3A2-AA1B9687BE4D.html) in the VMware Cloud services documentation.
-
-{% include note.html content="If you log in with a corporate account, you cannot update your password following these instructions. Your company prompts you to update your password at regular intervals. Contact your Enterprise Administrator to explicitly update your password." %}
-
-## Configure Your Preferences
-
-In your user profile page in Operations for Applications, you can configure several preferences, for example, select our light theme or chart title size.
-1. Log in to your service instance.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select your user name.
-1. On the **User Information** page, make the necessary changes.
-
-    {% include note.html content="Some preferences, managed by the users with the **Super Admin** service role, are preset for all users of the service instance." %}
-
-In your user profile page in the VMware Cloud Services Console, you can configure several preferences, such as language and regional format, dark or light theme, motion reduction, and What's New banner appearance.
-1. In the Operations for Applications UI or in the VMware Cloud Services Console, click your user name on the menu bar and select **My Account**.
-1. On the **Preferences** tab, in the corresponding panel for language, appearance, accessibility, etc., click **Edit**.
-1. Make the necessary changes and click **Save**.
-
-## Speed Up Chart Display with the Chart Sampling Preference
-
-Our rendering engine is fast, but it still takes time to render thousands of series. You can limit the number of time series that charts display with the chart sampling preference.
-
-1. Log in to your service instance.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select your user name.
-1. On the **User Information** tab, under **Display Settings** make the necessary changes.
-
-You can limit the number of time series to 100 for new charts by changing the **Sampling** default in your preferences.
-
-![sampling preference](images/sampling_preference.png)
-
-
-## Examine Your Groups, Roles, and Permissions
-
-If you can't perform a certain task, it's possible that you don't have the necessary permissions.
-
-A VMware Cloud **Organization Owner** or **Organization Administrator** usually assigns [service roles and custom roles](csp_users_roles.html) to groups and individual users.
-
-Permissions are additive:
-* If you belong to a group with two roles, you get the permissions from both roles.
-* If you belong to two groups, you get the permissions from the roles assigned to both groups.
-* If roles were assigned to you explicitly, you get the corresponding permissions as well.
-
-To view your roles, see what access you have to services, and request additional roles, see [How do I manage my roles in an Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-528C2CE3-6335-43A2-99F1-B722464F0A1D.html) in the VMware Cloud services documentation.
-
-## Enable or Disable Super Admin Mode
-
-If you hold the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in), you can temporarily enable Super Admin mode and perform your Super Admin tasks.
-
-{% include note.html content="To avoid making unintentional changes in the system, after performing your current Super Admin tasks, disable the Super Admin mode." %}
-
-* To enable or disable the Super Admin mode, from the gear icon <i class="fa fa-cog"/> on the toolbar, turn on or off the **Super Admin Mode** toggle.
-
-<table>
-    <tbody>
-        <tr>
-            <td width="70%">As a result:
-            <ul>
-            <li>When the Super Admin mode is <strong>enabled</strong>, you have full administrative privileges for the Operations for Applications service. See the <a href="csp_users_roles.html#operations-for-applications-service-roles-built-in">Super Admin service role</a> for details.</li>
-            <li>When the Super Admin mode is <strong>disabled</strong>, you have only the permissions from your other roles if any.</li>
-            </ul></td>
-            <td width="30%"><img src="/images/super_admin_mode.png" alt="A screenshot of the drop-down menu with the Super Admin Mode toggle.">
-            </td>
-        </tr>
-    </tbody>
-</table>
-
-## Generate an API Token
-
-Operations for Applications allows users to interact with the service instance using the [REST API](wavefront_api.html).
-
-Before you can invoke the Operations for Applications API using `curl` or from an API client, you must have a VMware Cloud services access token with the relevant organization and service access. To obtain an access token, you must first generate a VMware Cloud services API token with relevant roles, and then exchange that API token for an access token.
-
-You [manage your VMware Cloud services API tokens](csp_api_tokens.html#manage-the-vmware-cloud-services-api-tokens-for-your-user-account) in the VMware Cloud Services Console.
-
diff --git a/pages/doc/csp_users_roles.md b/pages/doc/csp_users_roles.md
index 2e70d3304..dd15b2e6a 100644
--- a/pages/doc/csp_users_roles.md
+++ b/pages/doc/csp_users_roles.md
@@ -41,7 +41,7 @@ The VMware Cloud Services Console **Roles** page lists all service roles and cus
 ### Operations for Applications Service Roles (Built-in)
 
 The VMware Cloud Services Console **Roles** page includes the following built-in Operations for Applications service roles:
-- A corresponding Operations for Applications service role for each [Operations for Applications permission](csp_permissions_overview.html#operations-for-applications-permissions), that is, each of the following service roles has only one permission assigned:
+- A corresponding Operations for Applications service role for each Operations for Applications permission, that is, each of the following service roles has only one permission assigned:
 
   * **Admin**
   * **Alerts**
@@ -68,7 +68,7 @@ The VMware Cloud Services Console **Roles** page includes the following built-in
   </tr>
   <tr>
     <th>Super Admin</th>
-    <td>When users with that service role <a href="csp_users_account_managing.html#enable-or-disable-super-admin-mode">enable Super Admin mode</a>, they:<ul>
+    <td>When users with that service role enable Super Admin mode, they:<ul>
     <li>Have all Operations for Applications permissions.</li>
     <li>Have access to all dashboards and alerts.</li>
     <li>Can <a href="csp_access.html#make-orphan-dashboards-or-alerts-visible">restore orphan dashboards and alerts</a>.</li>
@@ -79,7 +79,7 @@ The VMware Cloud Services Console **Roles** page includes the following built-in
     <th>Viewer</th>
     <td>Users with that service role:<ul>
     <li>Don't have any Operations for Applications permissions.</li>
-    <li>Can perform only the <a href="csp_permissions_overview.html#default-tasks">default tasks</a>.</li>
+    <li>Can perform only the default tasks.</li>
     </ul>
     <p><strong>Tip:</strong> Assign the <strong>Viewer</strong> service role individually or in combination with custom roles.</p></td>
   </tr>
@@ -87,7 +87,7 @@ The VMware Cloud Services Console **Roles** page includes the following built-in
 
 ### Create, Edit, or Delete a Custom Role
 
-Custom roles let you combine service permissions of your choice, for example, [Operations for Applications permissions](csp_permissions_overview.html#operations-for-applications-permissions). A custom role can have permissions for one or multiple services in your organization. For example, you can have a custom role that grants administrative permissions for one service and read-only permissions for another service.
+Custom roles let you combine service permissions of your choice, for example, Operations for Applications permissions. A custom role can have permissions for one or multiple services in your organization. For example, you can have a custom role that grants administrative permissions for one service and read-only permissions for another service.
 
 {% include important.html content="The Operations for Applications permissions in a custom role apply to **all** Operations for Applications service instances to which the target user account or server to server app has access. Therefore, to obtain the Operations for Applications permissions from a custom role for a given Operations for Applications service instance, the user account or server to server app assigned with that custom role must have at least one Operations to Applications service role for that service instance, for example, the **Viewer** service role."%}
 
diff --git a/pages/doc/direct_ingestion.md b/pages/doc/direct_ingestion.md
index f3afa9e02..7244f2461 100644
--- a/pages/doc/direct_ingestion.md
+++ b/pages/doc/direct_ingestion.md
@@ -38,7 +38,7 @@ Because some customers wanted to send data directly to the Operations for Applic
 The following examples illustrate how to send data directly to the Operations for Applications service.
 * A token is required. Referred to as `<TOKEN>` in the examples. Depends on your [subscription type](subscriptions-differences.html):
 
-    - For VMware Cloud services subscriptions, a VMware Cloud services access token is required. You can retrieve an access token by exchanging your [user API token](csp_users_account_managing.html#generate-an-api-token) or [server to server OAuth credentials](csp_server_to_server_apps.html#how-server-to-server-apps-work).
+    - For VMware Cloud services subscriptions, a VMware Cloud services access token is required. You can retrieve an access token by exchanging your user API token or [server to server OAuth credentials](csp_server_to_server_apps.html#how-server-to-server-apps-work).
     - For original subscriptions, an [API token](api_tokens.html) is required. The API token can be associated to a user account or service account.
 
 * You must know your Operations for Applications service instance name. This doc page uses `mydomain.wavefront.com`.
diff --git a/pages/doc/permissions_overview.md b/pages/doc/permissions_overview.md
index 1cf6937d2..e87c21aaf 100644
--- a/pages/doc/permissions_overview.md
+++ b/pages/doc/permissions_overview.md
@@ -7,7 +7,7 @@ permalink: permissions_overview.html
 summary: Learn about the permissions in the service.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see [Operations for Applications permissions in VMware Cloud services](csp_permissions_overview.html)."%}
+{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see Operations for Applications permissions in VMware Cloud services."%}
 
 Permissions allow access control for the feature sets in VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront). [Super Admin users](authorization-faq.html#who-is-the-super-admin-user) and users with the **Accounts** permission can manage permissions for groups and accounts.
 
diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index b67fb2551..e415ad31c 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -295,8 +295,5 @@ Example: Run a command like the following for testing (see the Docker documentat
 
 You must specify:
 * WAVEFRONT_URL: The URL of your Operations for Applications service (e.g., https://example.wavefront.com)
-* Authentication parameters for your [subscription type](subscriptions-differences.html) and authentication type:
-    * For VMware Cloud services subscriptions and authentication with a [server to server OAuth app](csp_server_to_server_apps.html), CSP_APP_ID and CSP_APP_SECRET are the server to server app credentials (ID and secret). The server to server app must be assigned with the **Proxies** service role and must be added to the VMware Cloud organization running the Operations for Applications service instance. CSP_ORG_ID is the ID of the VMware Cloud organization.
-    * For VMware Cloud services subscriptions and authentication with an [API token](csp_users_account_managing.html#generate-an-api-token), CSP_API_TOKEN is the VMware Cloud services API token. The API token and its associated user account must be assigned with the **Proxies** service role.
-    * For original subscriptions, WAVEFRONT_TOKEN is the [Operations for Applications API token](api_tokens.html). The user account or service account associated with the API token must be assigned with the **Proxies** permission.
+* WAVEFRONT_TOKEN is the [Operations for Applications API token](api_tokens.html). The user account or service account associated with the API token must be assigned with the **Proxies** permission.
 * The port that the proxy is using; 2878 by default.
\ No newline at end of file
diff --git a/pages/doc/tobs_faq.md b/pages/doc/tobs_faq.md
index a34a87e1c..d43fe9824 100644
--- a/pages/doc/tobs_faq.md
+++ b/pages/doc/tobs_faq.md
@@ -52,9 +52,7 @@ By default, all users can view dashboards and alerts. They can also edit dashboa
 
 <p><span style="font-size: 1.1em; font-weight: 600">Action</span></p>
 
-1. Check your permissions. See:
-   * [Examine Groups, Roles, and Permissions in Operations for Applications](users_account_managing.html#examine-groups-roles-and-permissions) -- Applicable for original subscribers.
-   * [Examine Your Groups, Roles, and Permissions in VMware Cloud services](csp_users_account_managing.html#examine-your-groups-roles-and-permissions) -- Applicable for new subscribers.
+1. Check your permissions. See [Examine Groups, Roles, and Permissions in Operations for Applications](users_account_managing.html#examine-groups-roles-and-permissions).
 2. If you don't have the permissions you need, ask a user with the proper administration permissions or to grant you the permissions.
 3. If that doesn't solve the problem, the individual dashboard or alert you're trying to edit might be protected by access control. The creator of the alert or dashboard or a Super Admin user can grant access.
 
diff --git a/pages/doc/users_account_managing.md b/pages/doc/users_account_managing.md
index 15b227736..150ac0b5f 100644
--- a/pages/doc/users_account_managing.md
+++ b/pages/doc/users_account_managing.md
@@ -5,7 +5,6 @@ sidebar: doc_sidebar
 permalink: users_account_managing.html
 summary: Learn how to manage your passwords and preferences.
 ---
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Manage Your VMware Cloud Services Account](csp_users_account_managing.html)."%}
 
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports administrator-level customization for all users of an instance, and user-level customization, discussed on this page. 
 
diff --git a/pages/doc/wavefront_api_usage.md b/pages/doc/wavefront_api_usage.md
index d464ace16..804268616 100644
--- a/pages/doc/wavefront_api_usage.md
+++ b/pages/doc/wavefront_api_usage.md
@@ -9,84 +9,11 @@ summary: Learn how to use the REST API outside of the in-product API documentati
 
 The [REST API](wavefront_api.html) enables you to interact with the VMware Aria Operations for Applications service (formerly known as Tanzu Observability by Wavefront) by using standard REST API tools. You can use the REST API to automate commonly executed operations, for example, to tag sources automatically.
 
-When you make REST API calls outside the REST API documentation UI, you must use a token to authenticate. The token that you need depends on your [subscription type](subscriptions-differences.html).
-
-* For VMware Cloud services subscriptions, invoking the Operations for Application REST API requires a VMware Cloud services access token.
-
-   - User accounts use VMware Cloud services API tokens to retrieve access tokens. See [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) in the VMware Cloud services documentation.
-
-   - Server to server apps, which correspond to service accounts in Operations for Applications, use OAuth 2.0 client credentials (ID and secret) to retrieve access tokens. See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-
-* For original subscriptions, invoking the Operations for Application REST API requires an Operations for Application API token. An API token can be associated with a user account or service account See [Manage API Tokens](api_tokens.html). 
+When you make REST API calls outside the REST API documentation UI, you must use a token to authenticate. An API token can be associated with a user account or service account See [Manage API Tokens](api_tokens.html). 
 
 {% include note.html content="If you want to use the `curl` examples from the REST API UI to run them remotely, you must replace the CSRF token with your token. You must use:  `-H 'Authorization: Bearer <your_token>` in your API calls."%}
 
-
-## VMware Cloud Services Subscriptions
-
-Invoking the REST API of an Operations for Applications subscription on VMware Cloud services requires a VMware Cloud services access token.
-
-### Make API Calls by Using a User Account
-
-If you want to use [your own user account](csp_users_account_managing.html) to make REST API calls, generate a VMware Cloud services API token associated with your user account and exchange it for an access token.
-
-1. Log in to the VMware Cloud Services Console.
-1. Click your username, select **My Account** and, on the **API Tokens** tab, [generate a new token](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html).
-1. Copy and save the newly generated API token in a secure place.
-
-   {% include note.html content="For security reasons once the API token is generated and you click **Continue**, only the token name is exposed in the UI. This means that you will no longer be able to reuse the token by copying the credentials from this page. If you lose the information about a token, you must either regenerate it or use a new one."%}
-
-1. Exchange the newly generated API token for an access token.
-
-   1. Go to the [Authentication VMware Cloud services APIs](https://console.cloud.vmware.com/csp/gateway/authn/api/swagger-ui.html#/Authentication/getAccessTokenByApiRefreshTokenUsingPOST).
-   2. In the `POST/am/api/auth/api-tokens/authorize` request, click **Try it out**.
-   3. For the **api_token** parameter, enter the value of the newly generated API token.
-   4. Deselect the **Send empty value** check box for the **passcode** parameter.
-   5. Click **Execute**.
-   6. From the response body, copy the value of the `"access_token"` parameter.
-
-4. If you use `curl`, and want to get information about all cloud integrations in your environment, run:
-
-    ```
-   curl 'https://<your_instance>/api/v2/cloudintegration' -H 'Authorization: Bearer <access_token>'
-    ```
-   
-   Here, `<your_instance>` is the name of your Operations for Applications service instance, and `<access_token>` is the access token for your user account.
-
-
-### Make API Calls by Using a Server to Server App
-
-If you want to use a [**server to server app**](csp_server_to_server_apps.html) to make the REST API calls, obtain the OAuth credentials (ID and secret) associated with the server to server app and exchange them for an access token.
-
-1. Create a server to server app in VMware Cloud services.
-1. Assign one or more roles to the server to server app to grant it the Operations for Applications access it needs.
-1. Obtain the OAuth 2.0 client credentials of the server to server app and save them to a secure place.
-1. Add the app to your VMware Cloud organization running the Operations for Applications service.
-1. Encode the server to server OAuth 2.0 client credentials (ID and secret) to Base64 format.
-1. Exchange the Base64 encoded OAuth 2.0 client credentials for an access token.
-
-   1. Navigate to the [Authentication VMware Cloud services APIs](https://console.cloud.vmware.com/csp/gateway/authn/api/swagger-ui.html#/Authentication/getTokenForAuthorizationGrantTypeUsingPOST).
-   1. In the `POST/am/api/auth/token` request, click **Try it out**.
-   1. For the **username** parameter, enter the Base64 encoded ID of the server to server app.
-   1. For the **password** parameter, enter the Base64 encoded secret of the server to server app.
-   1. For the **grant_type** parameter, select **client_credentials**.
-   1. Click **Execute**.
-   1. From the response body, copy the value of the `"access_token"` parameter.
-
-1. If you use `curl`, and want to get information about all cloud integrations in your environment, run:
-
-      ```
-      curl 'https://<your_instance>/api/v2/cloudintegration' -H 'Authorization: Bearer <access_token>'
-      ```
-      Here, `<your_instance>` is the name of your Operations for Applications service instance, and `<access_token>` is the access token for the server to server app.
-
-  For more information, see [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-
-## Original Subscriptions
-
-Invoking the REST API of an original Operations for Applications subscription requires an Operations for Applications API token.
-
-### Make API Calls by Using a User Account
+## Make API Calls by Using a User Account
 
 If you want to use [your own user account](users_account_managing.html) to make REST API calls, use an API token associated with your user account:
 
@@ -101,7 +28,7 @@ If you want to use [your own user account](users_account_managing.html) to make
    
    Here, `<your_instance>` is the name of your Operations for Applications service instance, and `<your_api_token>` is the API token for your user account.
   
-### Make API Calls by Using a Service Account
+## Make API Calls by Using a Service Account
 
 If you want to use a [service account](service-accounts.html) to make REST API calls, use an API token associated with that service account.
 
diff --git a/pages/doc/windows_host_tutorial.md b/pages/doc/windows_host_tutorial.md
index e296e3976..6861faf43 100644
--- a/pages/doc/windows_host_tutorial.md
+++ b/pages/doc/windows_host_tutorial.md
@@ -74,7 +74,7 @@ You will need the organization ID when you install the Wavefront proxy.
 
 ### Step 3: Navigate to Operations for Applications
 
-To install the Wavefront proxy, set up an integration, and install integration dashboards, you must have the **Proxies** and **Integrations** permissions. For more information see [Operations for Applications Permissions in VMware Cloud Services](csp_permissions_overview.html).
+To install the Wavefront proxy, set up an integration, and install integration dashboards, you must have the **Proxies** and **Integrations** permissions. For more information see Operations for Applications Permissions in VMware Cloud Services.
 
 1. In the VMware Cloud Services Console, click VMware Cloud Services.
 2. Search for Operations for Applications and click the **VMware Aria Operations for Applications** tile.

From 07d895930593125769a0bfc788e5387a98770445 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Thu, 27 Jun 2024 14:16:15 -0700
Subject: [PATCH 03/12] Remove admin Vmware cs section and pages.

---
 _data/sidebars/doc_sidebar.yml             |  50 ---
 pages/doc/2023-52.x_release_notes.md       |   6 +-
 pages/doc/access.md                        |   2 -
 pages/doc/accounts-service.md              |   2 -
 pages/doc/accounts.md                      |   2 -
 pages/doc/api_tokens.md                    |   2 +-
 pages/doc/auth_ss_sso.md                   |   2 -
 pages/doc/authentication-model.md          |   2 -
 pages/doc/authentication.md                |   2 -
 pages/doc/csp_access.md                    | 169 --------
 pages/doc/csp_accounts-service.md          | 128 ------
 pages/doc/csp_api_tokens.md                | 111 -----
 pages/doc/csp_authentication.md            |  36 --
 pages/doc/csp_invite-AoA-users_tutorial.md |   6 +-
 pages/doc/csp_metrics_security.md          |   6 -
 pages/doc/csp_security_policy.md           | 482 ---------------------
 pages/doc/csp_server_to_server_apps.md     |  57 ---
 pages/doc/csp_supported_integrations.md    |   4 +-
 pages/doc/csp_user_management.md           |  79 ----
 pages/doc/csp_users_roles.md               | 126 ------
 pages/doc/direct_ingestion.md              |   6 +-
 pages/doc/ingestion_policies.md            |   7 +-
 pages/doc/integrations_cloudhealth.md      |  12 -
 pages/doc/integrations_grafana.md          |   5 +-
 pages/doc/integrations_tmc.md              |  12 +-
 pages/doc/integrations_tmc_howto.md        |   4 -
 pages/doc/logging_log_alerts.md            |   2 +-
 pages/doc/logging_overview.md              |   2 +-
 pages/doc/proxies_installing.md            |  26 +-
 pages/doc/purchase-additional-capacity.md  |   4 +-
 pages/doc/security_policy.md               |   2 -
 pages/doc/users_roles.md                   |   2 -
 32 files changed, 21 insertions(+), 1337 deletions(-)
 delete mode 100644 pages/doc/csp_access.md
 delete mode 100644 pages/doc/csp_accounts-service.md
 delete mode 100644 pages/doc/csp_api_tokens.md
 delete mode 100644 pages/doc/csp_authentication.md
 delete mode 100644 pages/doc/csp_metrics_security.md
 delete mode 100644 pages/doc/csp_security_policy.md
 delete mode 100644 pages/doc/csp_server_to_server_apps.md
 delete mode 100644 pages/doc/csp_user_management.md
 delete mode 100644 pages/doc/csp_users_roles.md

diff --git a/_data/sidebars/doc_sidebar.yml b/_data/sidebars/doc_sidebar.yml
index 5b8cf93f8..3e48ae75a 100755
--- a/_data/sidebars/doc_sidebar.yml
+++ b/_data/sidebars/doc_sidebar.yml
@@ -877,56 +877,6 @@ entries:
         url: /wavefront_clis.html
         output: web
 
-
-  - title: Administering VMware Cloud Services Subscriptions
-    output: web
-    folderitems:
-
-      - title: Manage Your VMware Cloud Services Account
-        url: /csp_users_account_managing.html
-        output: web
- 
-        subfolders:
-        - title: Authorization and User Management
-          output: web
-          subfolderitems:
-
-          - title: Manage Roles and Groups
-            url: /csp_users_roles.html
-            output: web
-          
-          - title: Manage User Accounts
-            url: /csp_user_management.html
-            output: web
-
-          - title: Manage Server to Server Apps
-            url: /csp_server_to_server_apps.html
-            output: web
-
-          - title: Manage Service Accounts
-            url: /csp_service_accounts.html
-            output: web
-
-          - title: Manage Tokens
-            url: /csp_api_tokens.html
-            output: web
-            
-        - title: Manage Access to Objects
-          output: web
-          subfolderitems:
-
-          - title: Manage Access to Dashboards and Alerts
-            url: /csp_access.html
-            output: web
-
-          - title: Security Policy Rules
-            url: /csp_metrics_security.html
-            output: web
-            
-      - title: Authentication Model
-        url: /csp_authentication.html
-        output: web
-
   - title: Administering Original Subscriptions
     output: web
     folderitems:
diff --git a/pages/doc/2023-52.x_release_notes.md b/pages/doc/2023-52.x_release_notes.md
index bbe61ad52..fc36e7e90 100644
--- a/pages/doc/2023-52.x_release_notes.md
+++ b/pages/doc/2023-52.x_release_notes.md
@@ -12,7 +12,7 @@ These release notes give an overview of the changes for the 2023-31.x to 2023-52
 
 **Traces Security Policy**: You can block application or service information for specific users so that they don’t see the data on the Application Status page, Traces Browser, Application Map, or Operations Dashboards. To learn more, see:
 * [Traces Security Policies for original and onboarded subscriptions](security_policy.html#traces-security-policies).
-* [Traces Security Policies for onboarded subscriptions only](csp_security_policy.html#traces-security-policies).
+* Traces Security Policies for onboarded subscriptions only.
 
 Example: An annotated screenshot of the create traces security policy for original and onboarded subscriptions.
 ![Annotated create traces security rule screenshot.](images/traces_security_policy_create_rule.png)
@@ -40,7 +40,7 @@ Example: An annotated screenshot of the create traces security policy for origin
 
 ### Onboarded Subscriptions
 
-**New Admin Permission and Service Role**: With this release, we introduce the **Admin** permission and [service role](csp_users_roles.html#operations-for-applications-service-roles-built-in). **Admin** users can manage the Operations for Applications organization settings.
+**New Admin Permission and Service Role**: With this release, we introduce the **Admin** permission and service role. **Admin** users can manage the Operations for Applications organization settings.
 
 
 ### Original and Onboarded Subscriptions
@@ -112,7 +112,7 @@ On the **Cloud Integrations** page, now you can:
           You need the <b>Alerts</b> and <b>Logs</b> permissions to create and manage logs alerts.
       </li>
   </ul>
-  <p>The steps to add roles and permissions differ for onboarded and original subscriptions. For details, see how to manage roles, groups, and permissions for <a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">onboarded subscriptions</a> and <a href="users_roles.html">original subscriptions</a>.</p>
+  <p>The steps to add roles and permissions differ for onboarded and original subscriptions. For details, see how to manage roles, groups, and permissions for onboarded subscriptions and <a href="users_roles.html">original subscriptions</a>.</p>
   {{site.data.alerts.end}}
 
   In this release, you can create logs alerts only when the default query language for your [user account](users_account_managing.html#configure-user-preferences) is **WQL** and **Chart Builder** is the default way for building queries. This limitation will be removed in an upcoming release.
diff --git a/pages/doc/access.md b/pages/doc/access.md
index 22e8ee607..ffa468a4f 100644
--- a/pages/doc/access.md
+++ b/pages/doc/access.md
@@ -7,8 +7,6 @@ permalink: access.html
 summary: Control access to individual dashboards and alerts.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Managing Access to Dashboards and Alerts in Operations for Applications on VMware Cloud Services](csp_access.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports the roles, permissions, and groups authorization paradigm for managing global permissions. For example, a user with **Dashboards** permission can manage *all* dashboards. This paradigm is sufficient for many of our customers.
 
 Super Admins or users with the **Accounts** permission who need finer-grained control can manage access on a per-object basis. We currently support access control for dashboards and alerts.
diff --git a/pages/doc/accounts-service.md b/pages/doc/accounts-service.md
index 47980ac0f..46d5d6dff 100644
--- a/pages/doc/accounts-service.md
+++ b/pages/doc/accounts-service.md
@@ -7,8 +7,6 @@ permalink: service-accounts.html
 summary: Create and manage service accounts.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Manage Server to Server Apps](csp_server_to_server_apps.html) and [Manage Service Accounts](csp_service_accounts.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports service accounts that can be used to automate management of objects such as dashboards, alerts, etc. A service account can't perform the **UI operations** that all user accounts can [perform by default](user-accounts.html#what-can-a-new-user-do). There's no limit on the number of service accounts that you can create in your organization. 
 
 {% include note.html content="Service accounts have no permissions by default. As a user with the **Accounts** permission, you must explicitly grant each service account only the permission required for the task that’s being automated (least required privilege). Doing so, you ensure that permissions for service accounts are always very limited. Service accounts do not have the view permissions that user accounts have by default. A service account must have **permissions** to perform tasks. To run queries, a service account must have **Metrics** permission. To manage dashboards and alerts, the service account might need both permissions and [access](access.html)." %}
diff --git a/pages/doc/accounts.md b/pages/doc/accounts.md
index f9e3a48c5..df2691bf1 100644
--- a/pages/doc/accounts.md
+++ b/pages/doc/accounts.md
@@ -7,8 +7,6 @@ permalink: user-accounts.html
 summary: Create and manage user accounts.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Manage Users of Operations for Applications on VMware Cloud Services](csp_user_management.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports:
 * User accounts, discussed here, which authenticate with a username and password.
 * [Service accounts](service-accounts.html), which authenticate with a token.
diff --git a/pages/doc/api_tokens.md b/pages/doc/api_tokens.md
index 09fb63429..a556a4130 100644
--- a/pages/doc/api_tokens.md
+++ b/pages/doc/api_tokens.md
@@ -7,7 +7,7 @@ permalink: api_tokens.html
 summary: Learn how you can generate and manage API tokens in VMware Aria Operations for Applications (previously known as Tanzu Observability by Wavefront).
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see [Manage Tokens](csp_api_tokens.html)."%}
+{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see Manage Tokens."%}
 
 Before you can invoke the [REST API](wavefront_api.html) using `curl` or from an API client, you must have an API token. An API token is a string of hexadecimal characters and dashes. For example:
 
diff --git a/pages/doc/auth_ss_sso.md b/pages/doc/auth_ss_sso.md
index 87ecc8f2f..434205ba7 100644
--- a/pages/doc/auth_ss_sso.md
+++ b/pages/doc/auth_ss_sso.md
@@ -7,8 +7,6 @@ permalink: auth_self_service_sso.html
 summary: Learn how to enable single-tenant authentication and set up self-service SSO.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Authentication Model in Operations for Applications on VMware Cloud Services](csp_authentication.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports a number of third-party authentication solutions that use SAML. The SAML (Security Assertion Markup Language) standard enables an identity provider (IdP) to pass authorization credentials to service providers (SP). In environments that use SAML, users log in once and authenticate to many different services.
 
 * Self-Service SAML SSO is not available for customers who have set up [multi-tenant authentication](authentication.html#multi-tenant-authentication).
diff --git a/pages/doc/authentication-model.md b/pages/doc/authentication-model.md
index 3ccb2610f..a27e6d644 100644
--- a/pages/doc/authentication-model.md
+++ b/pages/doc/authentication-model.md
@@ -7,8 +7,6 @@ permalink: wavefront-authentication.html
 summary: Learn about the authentication for user and service accounts.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Authentication Model in Operations for Applications on VMware Cloud Services](csp_authentication.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports these authentication options:
 * **Direct authentication**: With direct authentication, users authentication with user name and password and service accounts authenticate with a token.
 * **Authentication through an SSO identity provider**: You can choose from supported self-service SAML SSO provider or request and multi-tenant SSO support.
diff --git a/pages/doc/authentication.md b/pages/doc/authentication.md
index d381475e1..4647ac5c2 100644
--- a/pages/doc/authentication.md
+++ b/pages/doc/authentication.md
@@ -7,8 +7,6 @@ permalink: authentication.html
 summary: Learn how to enable multi-tenant authentication.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Authentication Model in Operations for Applications on VMware Cloud Services](csp_authentication.html)."%}
-
 Most of our customers use [single-tenant authentication](auth_self_service_sso.html). If your company wants to set up different tenants for different teams, VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports multi-tenancy.
 
 {% include note.html content="Switching tenants in multi-tenant environments require [the extra steps listed below](#point-a-proxy-to-a-different-tenant-in-a-multi-tenant-environment)." %}
diff --git a/pages/doc/csp_access.md b/pages/doc/csp_access.md
deleted file mode 100644
index bb14f5320..000000000
--- a/pages/doc/csp_access.md
+++ /dev/null
@@ -1,169 +0,0 @@
----
-title: Managing Access to Dashboards and Alerts in Operations for Applications on VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_access.html
-summary: Control access to individual dashboards and alerts.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Managing Access to Dashboards and Alerts](access.html)."%}
-
-VMware Cloud services supports the roles and groups authorization paradigm for managing global permissions in VMware Aria Operations for Applications. For example, a user with the **Dashboards** service role can manage *all* dashboards in Operations for Applications. This paradigm is sufficient for many of our customers.
-
-Users with the **Admin** and **Super Admin** service roles who need finer-grained control can manage access on a per-object basis. We currently support access control for dashboards and alerts.
-
-{% include note.html content="Permission and access control are additive. To make changes to a dashboard, you must have a role with the **Dashboards** permission and **View and Modify** access for that dashboard." %}
-
-{% include tip.html content="In addition to access control, Operations for Applications also supports [metrics security policy rules](csp_metrics_security.html) which allow fine-grained control over which users can see which metrics." %}
-
-
-{% include note.html content="After the access setting is set to **Object Creator** in an environment, only the creator of a new object and users the **Super Admin** service role can view and modify new objects initially. Those users can give access to the object with other groups or users." %}
-
-
-## How Access Control Works
-
-Operations for Applications supports granting and revoking access to dashboards and alerts.
-* By default, all users can view all dashboards and alerts.
-* Users with the **Dashboards** permission can:
-  - Restrict or grant access to individual dashboards from the Dashboard browser.
-  - Click the **Share** icon on individual dashboards to change who has access.
-* Users with the **Alerts** permission can:
-  - Restrict or grant access for individual alerts from the Alerts browser.
-  - Click the **Share** icon on individual alerts to change who has access.
-
-In high-security environments, users with the **Admin** and **Super Admin** service roles can change the security setting to **Object Creator**. After that change:
-* Each *new* object (dashboard or alert) is visible only to the creator of the object and to the users with the **Admin** service role.
-* The object creator and the users with the **Super Admin** service role can then share new dashboards with groups or users.
-* If a user with the **Admin** or **Super Admin** service role changes the security setting back to allow **Everyone** access, then the objects that were created while the strict security setting was set, continue to be governed by access control.
-
-## Change Access for One or More Dashboards or Alerts
-
-Privileged users can change the access setting for one or more dashboards or alerts from the Dashboards browser or the Alerts browser. The process is the same for both objects. The following steps show how to do it for dashboards.
-
-1. From the top menu bar, select **Dashboards > All Dashboards**.
-2. Select the check boxes for the dashboards you want to change. You can see the current Access settings in the **Access** column.
-3. Click **+Access** to add groups or users and **-Access** to remove groups or users.
-4. Enter the [groups](csp_users_roles.html#manage-user-groups) or [users](csp_user_management.html#adding-users-to-your-service-instance) and click **Update**.
-
-## Changing Access for Individual Dashboards or Alerts
-
-You can change access for an individual dashboard or alert from the Edit page of the object. For example, you can add access for the Finance group and revoke access for the Everyone group for a dashboard:
-
-<table style="width: 100%;">
-<tbody>
-<tr>
-<td width="40%">
-<ol><li> Click <strong>Dashboards</strong> > <strong>All Dashboards</strong> and navigate to the dashboard that you want to modify.</li>
-<li>Click the name of the dashboard, and click the <strong>Share</strong> icon on top.</li>
-<li>In the <strong>Dashboard Links and Access</strong> window, click the <strong>Accounts & Groups</strong> tab.</li>
-<ul><li>To grant View Access or View & Modify access, type the name(s) of <a href="csp_users_roles.html#manage-user-groups">groups</a> or <a href="csp_user_management.html#adding-users-to-your-service-instance">users</a>.</li>
-<li>To revoke View Access or View & Modify access, click the `x` next to the group or user name that you want to remove.</li>
-</ul>
-<li> Click <strong>Update</strong>.</li>
-</ol> </td>
-<td width="60%"><img src="images/share_dashboard_dialog.png" alt="Share dashboard window."></td>
-</tr>
-</tbody>
-</table>
-
-
-## Change the Access Control Security Setting
-
-Initially, all users can *view* all dashboards and alerts. In addition, global permissions apply:
-* Users with **Dashboards** permission can modify all dashboards.
-* Users with **Alerts** permission can modify all alerts.
-
-As a user with the **Admin** or **Super Admin** service role, you can restrict access to new dashboards and alerts:
-
-1. Log in to your service instance.
-1. If you are a **Super Admin** user, enable Super Admin mode.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Organization Settings**.
-2. Click the **Security** tab and select **Object Creator**.
-
-After the change, access to new dashboards and new alerts is initially limited to the dashboard creator and the users with the **Admin** or **Super Admin** service roles. Those users can share the objects with groups or individual users by giving **View** access or **View & Modify** access.
-
-{% include note.html content="A change to the security setting applies only to dashboards and alerts created **after** the change. If you change the setting to **Object Creator**, only new dashboards and alerts have restricted access. If you later change the setting to **Everyone**, all dashboards and alerts that were created while the setting was **Object Creator** keep the restricted access." %}
-
-By default, service accounts (which includes the [server to server apps](csp_server_to_server_apps.html) in VMware Cloud services as well as the [service accounts](csp_service_accounts.html) in Operations for Applications) don't have browse permissions. However, you can also grant access for new dashboards and alerts to service accounts:
-
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Organization Settings**.
-2. Click the **Security** tab, select **Grant Modify Access To:  Everyone** and **Service Accounts**.
-
-## Recovering an Inaccessible Dashboard or Alert
-
-If you can no longer access a dashboard or alert, it was either deleted (moved to trash), it was permanently deleted, or the access settings for you or a group you belong to were changed.
-
-* If a dashboard was deleted and moved to trash less than 30 days ago, a user with the **Dashboards** permission can [restore the deleted dashboard](ui_dashboards.html#delete-and-recover-a-deleted-dashboard).
-* If an alert was deleted and moved to trash less than 30 days ago, a user with the **Alerts** permission can [restore the deleted alert](alerts_manage.html#restore-a-deleted-alert).
-* If a dashboard was deleted and moved to trash more than 30 days ago, or was permanently deleted, and no one, including users with the **Super Admin** service role, can find the dashboard. A user with the **Super Admin** can attempt to [restore the dashboard by using the API](#recover-a-permanently-deleted-dashboard).
-* If the access settings to a dashboard or alert have changed, you can ask a user with the **Admin** or **Super Admin** service role to [restore the access for you](#changing-access-for-individual-dashboards-or-alerts).
-* If all users and groups can no longer access a specific dashboard or alert, a user with the **Super Admin** service role may need to check if it is in an orphaned state. A user with the **Super Admin** service role can [make orphan dashboards and alerts visible](#make-orphan-dashboards-or-alerts-visible).
-
-Only a user with the **Super Admin** service role can restore dashboard permissions and attempt to restore a permanently deleted dashboard.
-
-### Make Orphan Dashboards or Alerts Visible
-
-A dashboard or alert becomes orphaned if:
-* All users and groups no longer have access to it.
-* Only one user had access to it, and that user was removed.
-
-To restore an orphan dashboard or alert:
-1. Log in to your service instance as a user with the **Super Admin** service role and enable Super Admin mode.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Orphaned Objects**.
-1. Select the orphaned dashboard or alert and share it with other users or groups.
-
-### Recover a Permanently Deleted Dashboard
-
-A permanently deleted dashboard does not show in the trash and becomes inaccessible to all users, including the users with the **Super Admin** service role. As a user with the **Super Admin** service role, you can try to restore the dashboard by using the REST API.
-
-1. Log in to your service instance as a user with the **Super Admin** service role and enable Super Admin mode.
-2. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **API Documentation**.
-3. Expand the **Dashboard** category and click the `GET api/v2/dashboard/{id}/history/{version}` request.
-4. Enter the dashboard name as the `"id"` parameter.
-   For example, if the dashboard URL is `https://<your_instance>.wavefront.com/dashboards/MY-DASHBOARD`, then the `"id"` that you should enter is `MY-DASHBOARD`.
-5. Enter the last known version of the dashboard as an integer.
-
-   If you don't know the version, you can enter `1`. This way, you also determine whether the dashboard `"id"` input has ever existed.
-
-6. Click **Execute**.
-
-   If the dashboard `"id"` and the dashboard version don't exist, the API call returns an error like:
-
-   ```
-     {
-      "status":
-      {
-        "result":"ERROR",
-        "message":"dashboard does not exist",
-        "code":404
-        }
-      }
-      ```
-7. Copy the **Response body** of the request, that starts after `"response":` up to and including the last but one closing curly bracket (`}`).
-
-
-   ```
-   {
-   "modifyAclAccess":true,
-   "hidden":false,
-   "parameters":{},
-      "name":"MY DASHBOARD",
-      "id":"MY-DASHBOARD",
-      ...
-
-      "favorite":false,
-      "numCharts":2
-   }
-
-   ```
-8. Click the `POST api/v2/dashboard/` request.
-9. Paste the copied response data into the **Edit Value** text box and click **Execute** to perform the POST API call.
-
-   ![Create a dashboard by using the API. The Edit Value text box contains the response data copied from Step 7.](images/create-dashboard-api-call.png)
-
-    This will restore the dashboard.
-
-10. Validate that the dashboard is now live again.
-
-    For example, navigate to `https://<your_instance>.wavefront.com/dashboards/MY-DASHBOARD/history` and you should now be able to review the dashboard history by using the Operations for Applications UI.
diff --git a/pages/doc/csp_accounts-service.md b/pages/doc/csp_accounts-service.md
deleted file mode 100644
index 9c86836db..000000000
--- a/pages/doc/csp_accounts-service.md
+++ /dev/null
@@ -1,128 +0,0 @@
----
-title: Manage Service Accounts in Operations for Applications on VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_service_accounts.html
-summary: Learn how you can create and manage service accounts.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage Service Accounts](service-accounts.html)."%}
-
-{% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future."%}
-
-If your service was recently onboarded to VMware Cloud services, you might have some legacy service accounts for backward compatibility. It's strongly recommended that you incrementally switch to using [server to server OAuth apps](csp_server_to_server_apps.html) which authenticate with more secure VMware Cloud services access tokens. 
-
-## What Are Service Accounts?
-
-* A service account uses an **Operations for Applications API token** to authenticate.
-* By default, service accounts don't have any permissions, even view permissions. Users with the **Admin** service role must explicitly grant each service account only the permission required for the task that’s being automated (least required privilege). There's no limit on the number of service accounts that you can create in your service instance. 
-
-As a user with the **Admin** service role, you [generate (and revoke, if needed)](csp_api_tokens.html#manage-the-operations-for-applications-api-tokens-for-a-service-account) the API tokens for the service account. It’s also possible to [deactivate](csp_service_accounts.html#deactivate-or-activate-a-service-account) a service account completely. 
-
-{% include note.html content="Operations for Applications includes the **Service Accounts** internal system group, where all service accounts together with the [server to server apps](csp_server_to_server_apps.html) that have access to the service are added automatically. This group doesn't have any roles and permissions. This group can be used when managing [access to dashboards and alerts](csp_access.html), [metrics security policy rules](csp_metrics_security.html), and [ingestion policies](ingestion_policies.html)."%}
-
-## How Service Accounts Work
-
-If you plan to set up an integration that uses a proxy authentication with an Operations for Applications API token, you must create a service account with the **Proxies** permission and generate an API token for it.
-
-1. Create a service account from the UI. The service account name must be unique.
-2. Assign the service account with the **Proxies** permission.
-3. Set up the proxy in your integration to pass the API token of the service account.
-
-   The proxy authenticates seamlessly to the API without embedding secret keys or user credentials in your instance, image, or application code.
-
-You can disable a service account if you temporarily don't need it, or you can delete the service account permanently.
-
-
-## Create a Service Account
-
-Service accounts are created in Operations for Applications.
-
-1. Log in to your service instance as a user with the **Admin** service role.
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Accounts**.
-2. Click the **Service Accounts** tab and click **Create New Account**.
-3. On the **New Service Account** page, specify the account details and click **Create**.
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="15%">Field</th><th width="85%">Description</th></tr>
-</thead>
-<tr>
-<td>
-Account ID</td>
-<td>ID of the account. We prefix this ID with <strong>sa::</strong>. <p>A service account name must be unique. Operations for Applications converts a service account ID to lower case to avoid confusion that can result from almost identical account names (e.g. Service-1 and service-1). Users can type upper case or lower case. </p> </td>
-</tr>
-<tr>
-<td>
-Tokens</td>
-<td>List of API tokens that the service account can use to authenticate to the Operations for Applications service instance.
-<ul><li>Click the <strong>Edit</strong> icon to change the token name. </li>
-<li>Click <strong>Revoke</strong> to revoke a token. Any service account that uses the token can no longer authenticate to the service instance. </li>
-<li>Click <strong>Generate</strong> to generate additional tokens. Having multiple active tokens makes it possible to revoke some tokens. For example, if the service connects to several proxies, you can generate a token to connect to each proxy. You can revoke the token for one proxy but leave the others. You can have up to 20 API tokens per service account at any given time.</li>
-<li>Click the <strong>Copy to Clipboard</strong> icon to copy the token for pasting.</li>
-</ul></td>
-</tr>
-<tr>
-<td>Permissions</td>
-<td>Individual permissions assigned to this service account. Assign the service account with the <strong>Proxies</strong> permission, so that you can use it for the proxy setup of an integration that authenticates with an Operations for Applications API token.</td>
-</tr>
-</tbody>
-</table>
-
-## Deactivate or Activate a Service Account
-
-You can temporarily (or permanently) deactivate a service account. When an account is deactivated, none of the corresponding tokens work.
-
-You can activate or deactivate a service account from the **Service Accounts** page or from the **Edit Service Account** page.
-
-<table style="width: 100%;">
-<tbody>
-<tr>
-<td width="50%">
-To activate or deactivate an account from the <strong>Service Accounts</strong> page:
-<ul><li>Click the ellipsis icon in front of the service account. </li>
-<li>Select <strong>Activate</strong> or <strong>Deactivate</strong>.</li>
-</ul></td>
-<td width="50%"><img src="/images/sa_deactivate_multi.png" alt="deactivate or activate a service account"/></td>
-</tr>
-<tr>
-<td width="50%">
-To activate or deactivate an account from the <strong>Edit Service Account</strong> page:
-<ul><li>Click the service account name to open the <strong>Edit Service Account</strong> page. </li>
-<li>Use the toggle to activate or deactivate the account.</li>
-</ul></td>
-<td width="50%"><img src="/images/sa_deactivate.png" alt="deactivate or activate a service account"/></td>
-</tr>
-</tbody>
-</table>
-
-## Grant or Revoke Permissions
-
-You can grant permissions to a service account when you create the account or add permissions later from the **Service Accounts** page or from the **Edit Service Account** page.
-
-The following example shows two ways of explicitly granting or revoking permissions for service accounts.
-
-<table style="width: 100%;">
-<tbody>
-<tr>
-<td width="50%">
-To grant or revoke permissions from the <strong>Service Accounts</strong> page:
-<ol><li>Select one or more service accounts. </li>
-<li>Click <strong>+Permissions</strong> or <strong>-Permissions</strong> and select the permission to add or remove.</li>
-</ol></td>
-<td width="50%"><img src="/images/csp_sa_add_permission_global.png" alt="add or remove service account permissions"/></td>
-</tr>
-<tr>
-<td width="50%">
-To grant or revoke permissions from the <strong>Edit Service Account</strong> page:
-<ol><li>Click the service account name to open the <strong>Edit Service Account</strong> page. </li>
-<li>Select the permissions that you want to grant or revoke.</li>
-</ol></td>
-<td width="50%"><img src="/images/sa_add_permission_single.png" alt="add or remove service account permissions"/></td>
-</tr>
-
-</tbody>
-</table>
-
diff --git a/pages/doc/csp_api_tokens.md b/pages/doc/csp_api_tokens.md
deleted file mode 100644
index d88156792..000000000
--- a/pages/doc/csp_api_tokens.md
+++ /dev/null
@@ -1,111 +0,0 @@
----
-title: Manage Tokens for Operations for Applications on VMware Cloud Services
-keywords: getting started
-tags: [getting started]
-sidebar: doc_sidebar
-permalink: csp_api_tokens.html
-summary: Learn how you can generate and manage API tokens and access tokens.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage API Tokens](api_tokens.html)."%}
-
-Invoking the [Operations for Applications REST API](wavefront_api.html), using `curl` or an API client, requires a **VMware Cloud services access token**. In a few cases, when setting up a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens), authentication with an **Operations for Applications API token** is also supported.
-
-To obtain a VMware Cloud services access token, you must make an API call to the VMware Cloud services REST API and exchange it from:
-* A VMware Cloud services API token associated with your user account.
-* The credentials of a server to server OAuth app associated with the VMware Cloud organization running the service.
-
-To obtain an Operations for Applications API token, you can also create a service account and generate an API token associated with it.
-
-
-
-## Manage the VMware Cloud Services API Tokens for Your User Account
-
-If you want to make REST API calls on your own behalf, you must generate a VMware Cloud services API token associated with your user account and exchange it for an access token. See [Make API Calls by Using a User Account](using_wavefront_api.html#make-api-calls-by-using-a-user-account).
-
-You can generate VMware Cloud services API tokens only for your user account. You must assign each API token with the minimum required subset of the roles that you own. The access tokens associated with an API token inherit its roles. These roles include:
-* At least one organization role.
-* At least one Operations for Applications service role.
-* Optionally, one or more custom roles.
-
-You must also set each API token with a time to live (TTL), which is the time that the API token will be valid unless revoked earlier. Before an API token expires, you must generate a new API token and update your scripts and API calls.
-
-{% include important.html content="The access token exchanged from a VMware Cloud services API token has a TTL of 30 minutes. Make sure that your scripts periodically renew the access tokens before they expire."%}
-
-For details on how to generate, regenerate, revoke, and secure your API tokens, see [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) in the VMware Cloud services documentation.
-
-{% include warning.html content="Do not share your API token with anyone. Accounts that have the token can authenticate without a username/password."%}
-
-## Manage the VMware Cloud Services API Tokens in Your VMware Cloud Organization
-
-If your domain is federated and the Identity Governance and Administration (IGA) is activated, the users with the VMware Cloud **Organization Owner** role have access to advanced features, including managing the API tokens within the VMware Cloud organization. For details, see [What is Identity Governance and Administration and how does it work with VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E6661280-A88A-4E26-9008-4C1620641FA1.html) in the VMware Cloud services documentation.
-
-The users with the VMware Cloud **Organization Owner** role can:
-* View the details of all API tokens created in the organization.
-* Deactivate API tokens.
-* Set constraints for idle and maximum TTL for all newly created API tokens.
-
-For details and instructions, see [How do I manage API tokens in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html) in the VMware Cloud services documentation.
-
-## Manage the Server to Server OAuth Apps in Your VMware Cloud Organization
-
-If you want to make REST API calls on behalf of your VMware Cloud organization, you must create a server to server OAuth app and exchange its credentials (ID and secret) for an access token. See [Make API Calls by Using a Server to Server App](using_wavefront_api.html#make-api-calls-by-using-a-server-to-server-app).
-
-To create and manage server to server OAuth apps in your VMware Cloud organization, you must hold the **Organization Owner**, **Organization Administrator**, or **Organization Member** with **Developer** roles.
-
-You must assign each server to server app only with the minimum required roles for its tasks and add it to your VMware Cloud organization. The access tokens associated with a server to server app inherit its roles within the organizations it belongs. These roles include:
-* At least one organization role.
-* At least one Operations for Applications service role.
-* Optionally, one or more custom roles.
-
-You must also set each server to server app with a time to live (TTL), which is the time that the access tokens associated with the app will be valid. The credentials of a sever to server app never expire, so that your script can periodically exchange them for new access tokens. Only if you regenerate the app secret, you must update your scripts and API calls.
-
-For details on how to create, view, and modify the details of the OAuth 2.0 apps in your organization, see [How to manage OAuth 2.0 apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-229F9BCE-0C1F-4948-8792-23F51B5482BE.html) in the VMware Cloud services documentation.
-
-## Manage the Operations for Applications API Tokens for a Service Account
-
-If you want to set up one of the [integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with an **Operations for Applications API token**, you must create a [service account](csp_service_accounts.html) and generate an API token associated with it.
-
-{% include warning.html content="The usage of service accounts in Operations for Applications on VMware Cloud services is **restricted** to support only a [limited list of integrations](integrations_onboarded_subscriptions.html#integrations-that-use-operations-for-applications-api-tokens) that still authenticate with Operations for Applications API tokens. We are in the process of updating all of our integrations to authenticate with VMware Cloud services access tokens. It is strongly recommended that you gradually switch to using server to server OAuth apps which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future. "%}
-
-<!--Bring this back to the warning if we get the flag: Тo temporarily enable service accounts for your service instance, [contact](wavefront_support_feedback.html) our Technical Support team.-->
-
-As a user with the **Admin** service role, you can generate and manage the API tokens for [service accounts](csp_service_accounts.html) upon creation or at a later stage. 
-
-To generate and manage the API tokens for an existing **service account**:
-
-1. Log in to your service instance as an **Admin** user.
-2. Click the gear icon <i class="fa fa-cog"/> on the toolbar and select **Accounts**.
-3. On the **Service Accounts** tab, click the ellipsis icon next to the service account, and select **Edit**.
-   1. To generate a new token, in the **Tokens** section, click **Generate**.
-
-      You can have up to 20 tokens per service account at any given time. If you want to generate a new token but already have 20 tokens, you must revoke one of the existing tokens.
-   2. To revoke a token, click the **Revoke** button for the token.
-
-      Revoking a token cannot be undone.
-   3. To rename an API token, click the **Edit** icon for the token, enter the name, and press Enter.
-6. Select the appropriate permissions for the service account and click **Update**.
-
-
-
-## Manage the Operations for Applications API Tokens in Your Service Instance
-
-As a user with the **Admin** service role, you can view and revoke the API tokens of any service account in your service instance.
-
-{% include warning.html content="If your original Operations for Applications subscription was onboarded to VMware Cloud services, for backward compatibility, you might have some legacy Operations for Applications API tokens that are associated with user accounts. It’s recommended that you incrementally replace them with VMware Cloud services API tokens."%}
-
-1. Log in to your service instance as an **Admin** user.
-2. Click the gear icon <i class="fa fa-cog"/> on the toolbar and select **Accounts**.
-3. Click the **API Tokens** tab.
-
-  You see the API tokens for all service accounts in a paginated table format.
-
-![The API Tokens page shows the tokens table, the search field above the table, and the preconfigured filters and the saved searches in the left panel](/images/csp_API_tokens.png)
-
-{% include important.html content="Revoking a token cannot be undone. Any script that uses a revoked token returns an authorization error." %}
-
-On the API Tokens page, you can:
-- Sort the API tokens table by column.
-- Search and, optionally, save and share your search.
-- Filter the API tokens by usage, particular accounts, or your saved search.
-- Revoke an API token from the vertical ellipsis icon for the token.
\ No newline at end of file
diff --git a/pages/doc/csp_authentication.md b/pages/doc/csp_authentication.md
deleted file mode 100644
index 891bd2acd..000000000
--- a/pages/doc/csp_authentication.md
+++ /dev/null
@@ -1,36 +0,0 @@
----
-title: Authentication Model in Operations for Applications on VMware Cloud Services
-keywords:
-tags: [integrations, administration]
-sidebar: doc_sidebar
-permalink: csp_authentication.html
-summary: Learn how to enable multi-tenant authentication.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Authentication Model](wavefront-authentication.html)."%}
-
-VMware Cloud services provides a central single sign-on (SSO) to all of your services running on the platform, including VMware Aria Operations for Applications. Users authenticate with VMware Cloud services accounts. Server-to-server apps, which correspond to service accounts in Operations for Applications, authenticate with OAuth 2.0 client credentials and VMware Cloud services API tokens are issued directly to them.
-
-VMware Cloud services supports these user authentication options:
-* **Authentication through a VMware ID**: The VMware Cloud services account is based on the VMware ID (VMware account) credentials that the user creates in the VMware Cloud Services Console. 
-* **Authentication through a federated domain**: The VMware Cloud services account is based on the corporate account credentials. 
-
-VMware Cloud services also supports **multi-tenant SSO**, where each Operations for Applications tenant is onboarded as a separate Operations for Applications service instance in the same VMware Cloud organization. 
-
-## VMware ID Authentication
-
-By default, to register with VMware Cloud services, you must create a VMware ID for your VMware Cloud services account.
-
-## Federated Domain Authentication
-
-As a user with the VMware Cloud **Organization Owner** role, you can initiate an enterprise domain federation and invite an **Enterprise Administrator**. See [Setting Up Enterprise Federation with VMware Cloud Services Guide](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-76FAECB3-CFAA-461E-B9C9-2A49C39CD17F.html) in the VMware Cloud services documentation.
-
-The users in a federated domain don't need to create a VMware ID unless they need to access billing information in the VMware Cloud organization.
-
-After you federated your enterprise domain, as a user with the VMware Cloud **Organization Owner** role, you can activate Identity Governance and Administration (IGA) and unlock additional identity and access management features, such as assigning default service roles for the users in the federated domain. For details see [What is Identity Governance and Administration and how does it work with VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E6661280-A88A-4E26-9008-4C1620641FA1.html) and [How do I assign default roles in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-2307F55C-FB5C-4EE0-A2DE-43011509A9A1.html) in the VMware Cloud services documentation.
-
-## Multi-Tenant SSO
-
-Large customers can request multi-tenant SSO. Multi-tenancy is set up jointly by your **Organization Owner** and our Technical Support team.
-
-Users in different teams inside the company can authenticate to different tenants and cannot access the other tenant's data.
diff --git a/pages/doc/csp_invite-AoA-users_tutorial.md b/pages/doc/csp_invite-AoA-users_tutorial.md
index 1a4101ce7..ee36fdf9f 100644
--- a/pages/doc/csp_invite-AoA-users_tutorial.md
+++ b/pages/doc/csp_invite-AoA-users_tutorial.md
@@ -28,11 +28,11 @@ To invite new users, you assign them:
     
   Note that you can assign the **Organization Owner** role to another user only if you have the **Organization Owner** role.
 
-* A role within the Operations for Applications service instance. We provide a number of [Operations for Applications service roles](csp_users_roles.html#operations-for-applications-service-roles-built-in).
+* A role within the Operations for Applications service instance. We provide a number of Operations for Applications service roles.
 
    Note that in a multi-tenant Operations for Applications environment, you must specify the service instance (tenant) for which you want to assign the service role. You can assign different service roles for different service instances (tenants). You invite the users only to the tenants for which you assigned them service roles.
 
-* Optionally, a custom role created in the VMware Cloud organization. [Custom roles](csp_users_roles.html#create-edit-or-delete-a-custom-role) are composed of different service permissions.
+* Optionally, a custom role created in the VMware Cloud organization. Custom roles are composed of different service permissions.
 
    Note that a custom role with an Operations for Applications permission applies only if the user has at least one Operations for Applications service role. In a multi-tenant Operations for Applications environment, custom roles apply to all service instances (tenants) for which the user has at least one Operations for Applications service role.
 
@@ -67,7 +67,7 @@ We provide a number of built-in Operations for Applications service roles.
 - A corresponding service role for each permission.
 - Two special service roles - one that grants full administrative access to the service, and another one that grants read-only access to the service.
 
-For more information, see [Operations for Applications Service Roles (Built-in)](csp_users_roles.html#operations-for-applications-service-roles-built-in).
+For more information, see Operations for Applications Service Roles (Built-in).
 
 ### Step 1: Enter the New User Details
 
diff --git a/pages/doc/csp_metrics_security.md b/pages/doc/csp_metrics_security.md
deleted file mode 100644
index 1940ec3ec..000000000
--- a/pages/doc/csp_metrics_security.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-layout: redirected
-sitemap: false
-permalink: csp_metrics_security.html
-redirect_to:  csp_security_policy.html
----
\ No newline at end of file
diff --git a/pages/doc/csp_security_policy.md b/pages/doc/csp_security_policy.md
deleted file mode 100644
index 8ebae8a72..000000000
--- a/pages/doc/csp_security_policy.md
+++ /dev/null
@@ -1,482 +0,0 @@
----
-title: Security Policy Rules in Operations for Applications on VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_security_policy.html
-summary: Use security policies to control access to metrics, such as time series, histograms, RED metrics, and delta counters, as well as traces.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Metrics Security Policy Rules in Operations for Applications on VMware Cloud Services](csp_metrics_security.html)."%}
-
-You can create security policies on VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) to protect your metrics and traces security data.
-
-<img src="images/security_policies_overview.png" alt="An overview image that shows metrics and traces security policies." style="width:70%; max-width:1000">
-
-In a large enterprise, certain data is confidential. Our service allows you to limit who can see or modify data in several ways.
-* **Permissions** are **global** settings.
-  - Some permissions limit who can modify objects (e.g., proxies or events). For example, users with the **Dashboards** permission can modify all dashboards.
-  -  Other permissions make certain information completely invisible. For example, only users with the **SAML IdP Admin** permission can see the **Self Service SAML** menu or access that page.
-* **Access Control** allows administrators with the right permissions fine-grained control over individual dashboards or alerts. For example, it's possible to limit view and modify access to a Finance_2020 dashboard to just the Finance department.
-* **Metrics Security** supports even finer-grained control. In the example above, access to the Finance_2020 dashboard is limited to the Finance department. With metrics security, you can limit access to confidential time series, histogram, and delta counter metrics to the leadership team.
-* **Traces Security** supports finer-grained control and limit access to confidential trace data from applications or services.
-
-{% include important.html content="This feature is not available on all service instances." %}
-
-
-## Block or Allow Access to Sensitive Data
-
-With a security policy, you can block or allow access:
-* To metrics, optionally filtered by source or point tag.
-* To traces, optionally filtered by source or point tag.
-* Based on groups, and individual users.
-
-When an account attempts to access metrics or traces, the backend looks at the rules in priority order. Higher priority rules overwrite lower priority rules.
-
-### Metrics
-
-For example, assume you have two metrics security rules:
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="30%">Name</th><th width="15%">Priority</th><th width="30%">Metrics</th><th width="30%">Accounts</th></tr>
-</thead>
-<tr>
-<td markdown="span">BlockRevenueNumbers</td>
-<td>2</td>
-<td>All metrics that start with <code>revenue*</code></td>
-<td>All accounts</td>
-</tr>
-<tr>
-<td markdown="span">AllowRevenueFinance</td>
-<td>1</td>
-<td>All metrics that start with <code>revenue*</code></td>
-<td>All accounts in the Finance group</td>
-</tr>
-</tbody>
-</table>
-
-After the rules are in force, only users in the Finance group can access data that starts with `revenue*`.
-
-### Traces
-
-For example, assume you have two traces security rules:
-
-<table>
-<tbody>
-<thead>
-<tr><th width="30%">Name</th><th width="15%">Priority</th><th width="30%">Traces</th><th width="30%">Accounts</th></tr>
-</thead>
-<tr>
-<td markdown="span">BlockPaymentService</td>
-<td>2</td>
-<td>All spans that include the <code>myapp.payment.*</code> data.</td>
-<td>All accounts</td>
-</tr>
-<tr>
-<td markdown="span">AllowPaymentData</td>
-<td>1</td>
-<td>All spans that include the <code>myapp.payment.*</code> data.</td>
-<td>All accounts in Finance group</td>
-</tr>
-</tbody>
-</table>
-
-After the rules are in force, only the users in the Finance group can: 
-
-* See the payment service on the Application Status page.
-* See the RED metrics for the Payment service on the Operations Dashboard.
-* See the trace data that includes the payments service on the Traces Browser.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_security_policy.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## Rule Priority and Rule Pairs
-
-Rules are evaluated in priority order. In many cases, it's useful to think of pairs of rules, for example:
-
-* Create a rule that blocks access to all metrics for a user group. For example, **Block all**. This rule is with lower priority.
-* Create another rule to allow access to a small set of metrics for that user group. E.g., metrics starting with the `cpu.*` prefix and that are tagged with `env=dev`, i.e. developers environment. For example, **Allow CPU metrics**. This rule is with higher priority.
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="35%">Name</th><th width="20%">Priority</th><th width="45%">Metrics</th></tr>
-</thead>
-<tr>
-<td markdown="span">Allow metrics</td>
-<td>1</td>
-<td>Allow access to metrics starting with the <code>cpu.*</code> prefix and with point tag <code>env=dev</code>.</td>
-</tr>
-<tr>
-<td markdown="span">Block all</td>
-<td>2</td>
-<td>Block all metrics</td>
-</tr>
-</tbody>
-</table>
-
-When you apply this policy, the users included in the user group will have access to the metrics starting with the `cpu.` prefix and point tag `env=dev`, because the **Allow metrics** rule overrides the **Block all** rule. 
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_security_policy.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## Metrics Security Policy
-
-You can block sensitive  metrics data from time series, histograms, RED metrics, and delta counters so that they don't show on charts and dashboards, and alerts.
-
-{% include note.html content="Only a Super Admin user or users with the **Metrics**  or **Applications** permission can view, create, and manage metrics security policy. " %}
-
-### Video: Metrics Security Policy
-
-Watch this <a href="ttps://vmwaretv.vmware.com/media/t/1_3ea13tor" target="_blank">video<img src="/images/video_camera.png" alt="video camera icon"/></a> for an overview. Note that this video was created in 2020 and some of the information in it might have changed. It also uses the 2020 version of the UI.
-
-<p>
-<iframe id="kmsembed-1_3ea13tor" width="700" height="400" src="https://vmwaretv.vmware.com/embed/secure/iframe/entryId/1_3ea13tor/uiConfId/49694343/st/0" class="kmsembed" allowfullscreen webkitallowfullscreen mozAllowFullScreen allow="autoplay *; fullscreen *; encrypted-media *" frameborder="0" referrerPolicy="no-referrer-when-downgrade"></iframe>
-</p>
-
-
-### Sensitive Data Becomes Invisible
-
-Data protected by a metrics security policy rule can become invisible to users.
-
-* **Not visible in charts**. The chart either includes a warning that some metrics are protected, or, if all metrics are protected, the chart shows only the message.
-* **Not visible in alerts** (if **Secure Metrics Details** is selected for the alert). The alert fires based on the complete set of metrics, and the complete set is shown in notification images by default. A check box allows administrators to [hide alert details](alerts_notifications.html#alert-notification-with-secured-metrics-details) so that confidential metrics are not shown.
-* **Not visible in auto-complete** in Chart Builder, Query Editor, Metrics browser, etc.
-
-### Alert Notifications
-
-To protect metrics or RED metrics from inclusion in alert notifications, use the **Secure Metrics Details** check box. Operations for Applications looks at all metrics when determining when an alert status should change and shows them in alert notifications. When the check box is selected, [details are not shown](alerts_notifications.html#alert-notification-with-secured-metrics-details) in the notification.
-
-### Derived Metrics and Events
-
-
-The current implementation has limitations:
-* Does not protect metrics in events.
-* Does not protect metrics in the **Derived Metrics** browser. When you select **Browse > Derived Metrics**, you still see metrics on that page even if a metrics security policy rule blocks access for you elsewhere in the GUI.
-
-
-### Warning Messages for Protected Metrics
-
-* **Charts in Dashboard**. If certain charts in a dashboard include protected metrics, those charts display that information, as follows:
-  * **Some metrics protected**. If some metrics in a chart are protected, the chart shows metrics but includes the following Warning message.
-   ```
-   Some metrics returned by this query might be excluded due to metrics security policy rules.
-   ```
-   * **All metrics protected**. If all metrics in a chart are protected, the chart shows only the following message:
-   ```
-   All metrics in this chart are excluded due to metrics security policy rules.
-   ```
-* **Chart in Edit Mode**. When you edit a chart and your query result include protected metrics, the following message is displayed below the query.
-
-   ```
-   All metrics returned by this query are excluded due to metrics security policy rules.
-   ```
-
-
-<!---
-
-## Example: Limited Access for Engineering
-
-Consider this simple example:
-
-* An environment includes metrics that the developer team needs to see and some financial metrics that only the CFO and finance team should see.
-* Your main priority is to protect the sensitive metrics, so you create 2 rules:
-
-<table style="width: 100%;">
-<tbody>
-<thead>
-<tr><th width="30%">Name</th><th width="15%">Priority</th><th width="30%">Metrics</th><th width="30%">Accounts</th></tr>
-</thead>
-<tr>
-<td markdown="span">Block</td>
-<td>2</td>
-<td>Block all metrics</td>
-<td>Developer group</td>
-</tr>
-<tr>
-<td markdown="span">Allow Infra and Related Metrics</td>
-<td>1</td>
-<td>Metrics with point tag env=production or env=dev (but not env=finance)</td>
-<td>All accounts in Developer group.</td>
-</tr>
-</tbody>
-</table>
-
-
-![two rules, described above, shown in UI](images/m_security_rules.png)
---->
-
-
-### Create a Metrics Security Policy Rule
-
-Privileged users can create rules, change rule priority, and change the scope of each rule.
-
-{% include note.html content="Only a Super Admin user or users with **Metrics** or **Applications** permission can view, create, and manage a metrics security policy. " %}
-
-#### Plan Your Strategy
-
-Before you create rules, plan your strategy.
-
-* **Metrics Dimensions** allow you to determine what to block or allow.
-  - Specify one or more metric prefixes. You can specify an exact match (e.g., `requests` or `request.`) or a wildcard match (e.g. `*.cpu.loadavg.*`, `cpu.*`).
-  - Specify a combination of metric sources or point tags to narrow down the metrics. For example, you can block visibility into production environments for some developers, or you can block some development environments metrics for contractors.
-* **Access** allows you to allow or block access for a combination of accounts or groups.
-
-See the Examples further below.
-
-#### Create One or More Rules
-
-You create a metrics security policy rule following these steps. See the annotated screenshot below for an example.
-
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Security Policy** and click **Create Rule**.
-1. Make sure you are on the **Metrics Security Policy** tab. 
-1. Click **Create Rule**.
-1. Specify a meaningful name and, optionally, a description. 
-      
-      Users might later modify the rule, so a clear name is essential. The description is visible only when you edit the rule. The name is visible on the Metrics Security Policy page.
-
-  1. Specify and describe the metrics:
-     * You can specify the full metric name or use a wildcard character in metric names, sources, or point tags. The wildcard character alone (`*`) means all metrics.
-     * Specify key=value pairs, for example, `source="app-24"` or `env=dev`.
-     * If you want to specify multiple key=value pairs, select whether you want to combine them with `and` or `or` using the dropdown menu on the right.
-  1. Specify the Access definition for the rule.
-     1. Select **Allow** or **Block** from the menu.
-     2. Specify accounts, or groups.
-  1. Click **OK.**
-
-
-Here's an annotated screenshot that shows the main actions:
-
-![Annotated Edit Rule screenshot. Highlights Press Enter in Prefix / Source and Point Tag section](images/csp_metrics_s_edit_rule.png)
-
-### Examples for Metrics Security Policies
-
-Before you start, plan your strategy. Here are some common scenarios.
-
-#### Example: Restrict Access to Confidential Metrics
-
-This example restricts access to specific ranges of highly-sensitive metrics, say revenue numbers, to the specified groups of users.
-
-![Screenshot of policy rules, where the finance group can access revenue numbers.](images/metrics_security_restrict.png)
-
-The image above shows how to restrict metrics starting with `revenue.*` to  be accessible only by members of the group `Finance`. The policy grants all users access to all other metrics.
-
-* When the metric `revenue.saas` is queried by a user in the `Finance` group, this access matches Rule 1 (**Finance Group can access Revenue**). The rule grants the access, so the metric is shown to the user and no other rules are consulted.
-
-* When the metric `revenue.saas` is queried by a user **not** in the `Finance` group, the access does **not** match Rule 1. The engine moves on to Rule 2 (**No one else can access Revenue**), which matches because all users belong to the Everyone group. Because the rule denies the access, the metric is not shown to the user. No other rules are consulted.
-
-#### Example: Restrict Access for a Group of Users
-
-This example restricts access for a group of users, making only a subset of the metrics in the system available to them.
-
-![Screenshot of policy rules making only a subset of the metrics available to a group of users.](images/metrics_security_group.png)
-
-The image above shows how to restricts access for users in the group `Contractors`. Those users can only query metrics tagged with the point tag `env=dev`. This policy imposes no restrictions on any other groups.
-
-* When a user belonging to group `Contractors` runs a query for `cpu.usage` tagged with `env=dev`, this access matches Rule 1 (**Contractors can access dev environment metrics**) and access is granted.
-* But when the user issues a query for `cpu.usage` tagged with `env=prod`, this access does not match Rule 1. Rule 2 (**Contractors cannot access any other metrics**) acts as a catch-all for users of group `Contractors` and denies them access to this metric.
-
-
-{% include note.html content="Because the first rule (**Contractors can access dev environment metrics**) uses only point tags/sources as metrics dimensions, the users in the Contractors group will not see metrics in the Metrics Browser and when they create queries, autocomplete will not work for them."%}
-
-#### Example: Restrict Access to All Except Specific Metrics
-
-This example restricts access to all metrics except for two specific groups of metrics that are additionally narrowed down by specifying tags. 
-
-![Screenshot of a policy rule restricting access to all metrics except for a specific group of metrics](images/metrics-security-policy-block-all.png)
-
-The image above shows how to restrict access for a specific user. The user cannot access any metrics except the ones specified in the first two rules. This Metrics Security Policy can also be applied to a user group.
-
-* Rule 3 (**Block all**) restricts access to all existing metrics for the user. 
-* Rule 2 (**Allow by tag**) provides access to all metrics that start with the prefix `customer.` and `customerStatus=ACTIVE` tag. 
-* Rule 1 (**Allow by tag for K8s integration**) provides access to all metrics with the `kubernetes.` prefix for a specific cluster.
-
- When you apply the above security policy, the user *CAN* see all metrics starting with the `customer.` and `kubernetes.` prefixes in the Metrics Browser. Also, the user *CAN* explore and create charts with the `customer.*` metrics having the `customerStatus=ACTIVE` tag and the `kubernetes.` metrics for the specific cluster. Autocomplete will work of these metrics.
-
-
-#### Example: Strictly Limit Access on a Need-to-Know Basis
-
-Some companies want to make metric accessible only to the team that needs to know about it. Access to metrics outside a team’s scope of work is disabled.  Only administrators are allowed access to all metrics.
-
-![Screenshot of policy rules making a metric accessible only to the team that needs to know about it](images/metrics_security_need_to_know.png)
-
-The image above shows how to use a set of rules to accomplish this.
-
-* Rule 4 (**Block All Metrics by default**) applies to any access that doesn't match a higher-up rule. It denies access to all users. Users get access only when an "exception" rule with higher priority access matches.
-* Rule 3 (**Allow All Metrics to Admins**) grants access to all metrics to users in the `Admins` group.
-* Rule 2 (**Allow Gadgets Team access to Gadget Metrics**) grants access to any metrics starting with `gadget.*` to members of the `Gadgets` group.
-* Rule 1 (**Allow Widgets Team access to Widget Metrics**) grants access to any metrics starting with `widget.*` to members of the `Widgets` group.
-
-In this example, ordering (priority) between rules 1 and 2 does not matter because describe rules for independent metric regions.
-
-With this policy in place:
-* Members of the `Widgets` group are granted access if the metric starts with `widget.*` (Rule 1) and denied otherwise (Rule 4).
-* Members of the `Gadgets` group are granted access if the metric starts with `gadget.*` (Rule 2) and denied otherwise (Rule 4).
-* Members of the `Admins` group are granted access to all metrics (Rule 3).
-* Users who don’t belong to the groups covered by the rules have no access.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_security_policy.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## Traces Security Policies
-
-You can block application or service information for specific users so that they don't see the data on the Application Status page, Traces Browser, Application Map, or Operations Dashboards.
-
-{% include note.html content="Only a Super Admin user or users with the **Metrics** or **Applications** permission can view, create, and manage a traces security policy. " %}
-
-### Sensitive Data Become Invisible
-
-Data protected by a traces security policy rule can become invisible to users.
-
-* **Not visible on the Traces Browser**. If you are blocked from an application or service, you don't see the respective traces on the Traces Browser.
-* **Not visible on the Application Status page**. You don't see the services that are blocked on this page for the table, app map, and grid view.
-* **Not visible on the Service Dashboard**. The charts generated on the Service Dashboard do not have any data because the RED metrics related to the application or service are blocked.
-  {% include note.html content="Tracing security policies do not apply to Charts and Dashboard variables that use  `~component.heartbeat`, such as cloned Service Dashboards or Operations Dashboards." %}
-* **Not visible on the Operation Dashboard**. The charts generated on the Operations Dashboard do not have any data because the RED metrics related to the operations of the application or service are blocked.
-  {% include note.html content="Tracing security policies do not apply to Charts and Dashboard variables that use  `~component.heartbeat`, such as cloned Service Dashboards or Operations Dashboards." %}
-
-### Create a Traces Security Policy Rule 
-
-You create a traces security policy rule following these steps. See the annotated screenshot below for an example.
-
-1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Security Policy** and click **Create Rule**.
-1. Click the **Traces Security Policy** tab. 
-1. Click **Create Rule**.
-1. Specify a meaningful name and, optionally, a description. 
-    
-    Users might later modify the rule, so a clear name is essential. The description is visible only when you edit the rule. The name is visible on the Security Policy page.
-1. Specify and describe the application or service:
-    * You can specify the full application, service, and operation name. You can also use a wildcard character in application name, service names, sources, or point tags. The wildcard character alone (`*`) means all traces.
-    * Specify key=value pairs, for example, `source="app-24"` or `env=dev`.
-    * If you want to specify multiple key=value pairs, select whether you want to combine them with `and` or `or` using the dropdown menu on the right.
-
-    <a name="prefixes"></a>
-
-    For example, assume that you have the following:
-    * A `supermarket` application with the `vegetablesGreen`, `vegetablesRed`, `fruits`, and `dairy` services.
-    * The `vegetablesGreen` service has the `add` and `purchased` operations.
-    * Another application named `supermarket200`.
-    
-    <table style = "width: 100%;">
-    <tr>
-      <th width = "20%">Tracing Prefix</th>
-      <th width = "20%">Example</th>
-      <th width = "60%">Description</th>
-    </tr>
-    <tr>
-      <td markdown="span">
-        `applicationName*`
-      </td>
-      <td markdown="span">
-        `supermarket*`
-      </td>
-      <td markdown="span">
-        Using this prefix format, you can allow or block the trace data of all the applications that start with `supermarket`. In this example, trace data of the `supermarket` and `supermarket200` applications and their services can be blocked or shown to specific users.
-      </td>
-    </tr>
-      <tr>
-        <td markdown="span">
-          `applicationName.*`
-        </td>
-        <td markdown="span">
-          `supermarket.*`
-        </td>
-        <td markdown="span">
-          Using this prefix format, you can allow or block the trace data of all the services in the `supermarket` application. It includes the `vegetablesGreen`, `vegetablesRed`, `fruits`, and `dairy` services. 
-        </td>
-      </tr>
-      <tr>
-        <td markdown="span">
-          `applicationName.serviceName*`
-        </td>
-        <td markdown="span">
-          `supermarket.vegtables*`
-        </td>
-        <td markdown="span">
-          Using this prefix format, you can block or allow the data of all the services that start with `vegetables`. In this example, the data of the `vegetablesGreen` and `vegetablesRed` services can be blocked or shown to specific users. 
-        </td>
-      </tr>
-      <tr>
-        <td markdown="span">
-          `applicationName.serviceName.*`
-        </td>
-        <td markdown="span">
-          `supermarket.vegtablesGreen.*`
-        </td>
-        <td markdown="span">
-          Using this prefix format, you can allow or block the data of the `supermarket` applications `vegtablesGreen` service, which includes the `add` and `purchased` operations.
-        </td>
-      </tr>
-    </table>
-  1. Specify the Access definition for the rule.
-     1. Select **Allow** or **Block** from the menu.
-     2. Specify accounts or groups.
-  1. Click **OK.**
-
-
-
-Here's an annotated screenshot that shows the main actions:
-
-![Annotated create traces security rule screenshot](images/csp_traces_security_policy_create_rule.png)
-
-### Examples of Traces Security Policy
-
-In this example, you have a traces security policy created to block trace data from the RiderApp's passenger service for the Everyone user group. When the traces security policy is in place:
-* Users who belong to the Everyone user group won't see the passenger service data on the Traces Browser, Service Dashboard, Operations Dashboard, and Application Status page.
-* Super Admin users can see all the data.
-
-![A screenshot of the traces security policy created to block the user group everyone from seeing data of the RiderApp's passenger service.](images/csp_traces_security_policy_example.png)
-
-The screenshots below show you how the blocked trace data does not show up for a user in the Everyone user group and how the data shows up for a Super Admin user.
-
-* Traces Browser: The Super Admin user can see the passenger service on the Traces Browser, while the other user, who belongs to the Everyone group, cannot see the passenger service on the Traces Browser.
-  ![A screenshot of how the Super Admin user and a user that belongs to the everyone group sees data on the traces browser.](images/traces_security_policy_example_traces_browser.png)
-
-
-* Application Map: The Super Admin user can see the passenger service on the Application Map, while the other user, who belongs to the Everyone group, cannot see the passenger service on the Application Map.
-  ![A screenshot of how the Super Admin user and a user that belongs to the everyone group sees data on the application map.](images/traces_security_policy_example_service_map.png)
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_security_policy.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
-
-## Manage Multiple Security Policy Rules
-
-The following annotated screenshot gives an overview of rule management options:
-
-![screenshot, annotated with the items explained below](images/metrics_security_annotated.png)
-
-<!---Have to change screenshot to show Save instead of Apply--->
-
-{% include note.html content="With the 2023-45.x release, the metrics security policy moved to a new framework. Therefore, new updates you make to your security policy start from version 1 on the **Version History** page. For details, see [2023-45.x Release Notes](wavefront_release_notes.html#2023-45x-release-notes)." %}
-
-Here's a tour:
-
-1. Click **Version History** to:
-  * Revert to an earlier version of the policy.
-  * Look at information on who last edited the security policy and when that happened.
-1. Examine the **Metric Prefix** column to see the metrics affected by a rule.
-1. Look at the **Access** column to see whether the rule allows or blocks access.
-1. Select the check box to the left of a rule to select it, then use the icons above to clone or delete the selected rule.
-1. Select the check boxes to the left of multiple rules to select them, use the icons to indicate changes, and click **Save** to commit the changes.
-1. Click the six-dot icon to explicitly drag a rule where you want it and change the rule prioritization.
-1. If you've moved, cloned, or deleted one or more rules, use the **Undo** button to undo the change, or **Redo** to revert the undo.
-
-<table style="width: 100%;">
-<tbody>
-<tr><td width="90%">&nbsp;</td><td width="10%"><a href="csp_security_policy.html"><img src="/images/to_top.png" alt="click for top of page"/></a></td></tr>
-</tbody>
-</table>
\ No newline at end of file
diff --git a/pages/doc/csp_server_to_server_apps.md b/pages/doc/csp_server_to_server_apps.md
deleted file mode 100644
index b0b4ac454..000000000
--- a/pages/doc/csp_server_to_server_apps.md
+++ /dev/null
@@ -1,57 +0,0 @@
----
-title: Manage VMware Cloud Services Server to Server Apps
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_server_to_server_apps.html
-summary: Create server to server apps and grant them access to VMware Aria Operations for Applications on VMware Cloud services.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage Service Accounts](service-accounts.html)."%}
-
-VMware Cloud services supports server to server apps that you can use to automate management of Operations for Applications objects, such as dashboards, alerts, etc. A server to server app can't perform the **UI operations** that all user accounts can perform by default.
-
-You can also use a server to server app for a [Wavefront proxy authentication](proxies_installing.html#proxy-authentication-types). For example, see our [Windows Host Integration Tutorial](windows_host_tutorial.html), which includes installing a Wavefront proxy with server to server OAuth app credentials.
-
-{% include note.html content="A server to server app must hold roles with certain permissions to perform tasks. For example, to run queries, a server to server app must hold the [**Metrics** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) or a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with the **Metrics** permission. To manage dashboards and alerts, the server to server app might need both roles with permissions and [access](csp_access.html)." %}
-
-## What Are Server to Server Apps?
-
-Server to server apps are used for automating management tasks. 
-
-* A server to server app uses **OAuth 2.0 client credentials** to get a VMware Cloud services **access token** and authenticate.
-* A server to server app can be assigned with organization roles, service roles, and custom roles.
-
-  {% include note.html content="You must explicitly grant each server to server app only the role with the permission required for the task that’s being automated (least required privilege). Doing so, you ensure that permissions for server to server app are always very limited." %}
-* A server to server app can be used in multiple organizations. The owner of a server to server app is the organization in which it was created.
-
-{% include important.html content="For each server to server app with access to an Operations for Applications service instance, we create a corresponding **internal service account** in that service instance and add it the **Service Accounts** internal system group. So that, when you configure [the access control security settings](csp_access.html#change-the-access-control-security-setting), [ingestion polices](ingestion_policies.html#step-1-specify-the-scope-and-pps-limit), or [metrics security rules](csp_metrics_security.html), the server to server apps that are assigned with Operations for Applications service roles are represented as service accounts together with the [service accounts](csp_service_accounts.html) created in Operations for Applications."%}
-
-## How Server to Server Apps Work
-
-{% include note.html content="To manage server to server apps, you must hold either the VMware Cloud **Organization Owner** role or any other organization role paired with the **Developer** additional role. See [What organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html) in the VMware Cloud services documentation." %}
-
-If you build an application or tool that manages proxies or ingests data, then that tool must authenticate to the Operations for Applications REST API with a VMware Cloud services access token. Here's how it works:
-
-1. Create a server to server app in VMware Cloud services. See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-1. Assign the server to server app with one or more [Operations for Applications service roles](csp_users_roles.html#operations-for-applications-service-roles-built-in) for the service instance.
-
-   {% include important.html content="Ensure that you assign the server to server app **only** with the roles and permissions that are needed. Do not assign all roles listed in the VMware Cloud Services Console." %}
-
-   For example, to use a server to server app only for setting up the Operations for Applications integrations, assign only the **Proxies** service role to the app.
-
-   If you plan to assign the server to server app a custom role, you must assign that server to server app at least one Operations for Applications service role, for example **Viewer**.
-
-1. Optionally, assign the server to server app a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an Operations for Applications permission.
-
-    {% include important.html content="In a multi-tenant Operations for Applications environment, custom roles apply to **all** service instances (tenants) to which the server to server app has access, that is, for which the server to server app has at least one service role."%}
-    
-1. Obtain the OAuth 2.0 client credentials of the server to server app and save them to a secure place.
-1. Add the app to your VMware Cloud organization running the Operations for Applications service.
-1. Configure your tool to pass the OAuth 2.0 client credentials to the REST API and exchange them to an access token. See [Make API Calls by Using a Server to Server App](using_wavefront_api.html#make-api-calls-by-using-a-server-to-server-app).
-
-   The access token is directly issued to your tool and it authenticates seamlessly to the API.
-
-After you create a server to server app, you can change its roles, share it with other VMware Cloud organizations, and delete it when no longer need it.
-
-{% include important.html content="If you regenerate the app secret, the access token expires and cannot be reissued. You must update your scripts with the new app secret." %}
\ No newline at end of file
diff --git a/pages/doc/csp_supported_integrations.md b/pages/doc/csp_supported_integrations.md
index f659c898f..990dc3174 100644
--- a/pages/doc/csp_supported_integrations.md
+++ b/pages/doc/csp_supported_integrations.md
@@ -37,7 +37,7 @@ The Wavefront proxy requires a VMware Cloud services access token with the **Pro
 
 **Operations for Applications API token**
 
-For a limited number of integrations, you must still use an Operations for Applications API token, associated with a [service account](csp_service_accounts.html) that has the **Proxies** permission. As a user with the **Admin** service role, you can create a service account with the **Proxies** permission and generate an API token for it. Then, you can install the Wavefront proxy and set up your integration to pass the API token of the service account. 
+For a limited number of integrations, you must still use an Operations for Applications API token, associated with a service account that has the **Proxies** permission. As a user with the **Admin** service role, you can create a service account with the **Proxies** permission and generate an API token for it. Then, you can install the Wavefront proxy and set up your integration to pass the API token of the service account. 
 
 {% include warning.html content="  It is strongly recommended that you gradually switch to using server to server OAuth apps which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future." %}
 
@@ -45,7 +45,7 @@ For a limited number of integrations, you must still use an Operations for Appli
 
 Last sentence: Тo temporarily enable service accounts for your service instance, [contact](wavefront_support_feedback.html) our Technical Support team.-->
 
-To understand how you can manage the API tokens for service accounts, see [Managing the Operations for Applications API Tokens for a Service Account](csp_api_tokens.html#manage-the-operations-for-applications-api-tokens-for-a-service-account).
+To understand how you can manage the API tokens for service accounts, see Managing the Operations for Applications API Tokens for a Service Account.
 
 
 ### Original Subscriptions
diff --git a/pages/doc/csp_user_management.md b/pages/doc/csp_user_management.md
deleted file mode 100644
index ad8777d69..000000000
--- a/pages/doc/csp_user_management.md
+++ /dev/null
@@ -1,79 +0,0 @@
----
-title: Manage Users of Operations for Applications on VMware Cloud Services
-keywords: administration
-sidebar: doc_sidebar
-permalink: csp_user_management.html
-summary: Add and manage users of VMware Aria Operations for Applications on VMware Cloud services.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage User Accounts](user-accounts.html)."%}
-
-VMware Cloud services provides identity access management for the users of your services, including Operations for Applications. For example, see our tutorial [Invite New Users from the VMware Cloud Services Console](csp_new_users_tutorial.html).
-
-{% include note.html content="To manage user access to the services in your VMware Cloud organization, you must hold the VMware Cloud **Organization Owner** or **Organization Administrator** role. See [What organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html) in the VMware Cloud services documentation."%}
-
-## Adding Users to Your Service Instance
-
-To add a user to your Operations for Applications service instance, you must assign that user:
-
-1. An organization role for the VMware Cloud organization running the service instance.
-
-    {% include note.html content="If you are a VMware Cloud **Organization Administrator**, you can assign only the VMware Cloud **Organization Member** role. Only a VMware Cloud **Organization Owner** can add VMware Cloud **Organization Owners** and VMware Cloud **Organization Administrators**."%}
-
-1. An [Operations for Applications service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) for the service instance.
-  
-    You can assign a combination of service roles. For example, if the user that you want to invite will set up integrations, make sure that you assign that user both the **Integrations** and the **Proxies** service roles.
-
-    If you plan to assign that user a custom role, you must assign that user at least the **Viewer** Operations for Applications service role, so that the user can access the service instance.
-
-    {% include note.html content="In a multi-tenant environment, you assign service roles on a tenant basis. You can assign different service roles for different Operations for Applications instances (tenants). The users have access only to the tenants for which they have service roles. The users receive the `401 Unauthorized: User has no access to service` error message when trying to access a tenant for which they don't have service roles."%}
-
-    {% include important.html content="Make sure that you assign the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) to at least one user of your Operations for Applications service instance. There are some Super Admin tasks that no one else can perform. "%}
-
-1. Optionally, a [custom role](csp_users_roles.html#create-edit-or-delete-a-custom-role) with an Operations for Applications permission.
-
-    {% include important.html content="In a multi-tenant Operations for Applications environment, custom roles apply to **all** service instances (tenants) to which the user has access, that is, for which the user has at least one Operations for Applications service role."%}
-
-You can assign users with these roles in the following ways:
-
-### Adding Users to Your Organization
-
-When you are adding an individual user or a list of users to the VMware Cloud organization running the service instance, you must assign that users organization roles. To grant the users access to the Operations for Applications instance, you assign that users service roles. Optionally, you can also assign the users custom roles, which apply only in combination with service roles.
-
-For details, see [How do I add users to my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-47AA313E-9DAC-447C-B6C8-DF71ED45B0D5.html).
-
-The newly added users receive an invitation email with an account activation link to sign up to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
-
-### Creating or Editing a Group
-
-When you are creating or editing a group in the VMware Cloud organization running the service instance, you can add a list of users as members of the group and you can assign organization, service, and custom roles to the group.
-
-You can add users who already belong to the VMware Cloud organization as well as new users who don't belong to the VMware Cloud organization yet. You can add users from your federated domain as well as users that are outside your federated domain.
-
-For details, see [How do I work with groups](hhttps://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-0BD8A07B-C3C0-4220-8CD0-18FA070D3DAD.html) in the VMware Cloud services documentation.
-
-The newly added users receive an invitation email with an account activation link to sign up to the service instance. The invitations you send are valid for seven days. You can view the status of the invitation on the **Identity and Access Management** > **Pending Invitations** page.
-
-### Editing a User's Roles
-
-If a user already belongs to the VMware Cloud organization running the service instance, you can edit the user's roles to assign that user with Operations for Applications service or custom roles.
-
-For details, see [How do I change user roles](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-A70DBFDC-86FD-4C84-8753-0E55C8C98F8E.html) in the VMware Cloud services documentation.
-
-## Remove a User
-
-- To remove a user from your service instance, you must remove their [Operations for Applications service roles](csp_users_roles.html#operations-for-applications-service-roles-built-in).
-    - If the roles are individually assigned to the user, edit the user's roles. See [How do I change user roles](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-A70DBFDC-86FD-4C84-8753-0E55C8C98F8E.html) in the VMware Cloud services documentation.
-    - If the roles are inherited from a group, edit the group and remove that user from the list of members. See [How do I work with groups](hhttps://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-0BD8A07B-C3C0-4220-8CD0-18FA070D3DAD.html) in the VMware Cloud services documentation.
-
-- To remove a user from your organization, therefore from all services in the organization, see [How do I remove users from my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-628143FC-7DB0-4399-8344-43F75F748ADF.html) in the VMware Cloud services documentation.
-
-## Sign Out a User
-
-As a user with the [**Super Admin** service role](csp_users_roles.html#operations-for-applications-service-roles-built-in), you can sign out other users by using the [REST API](wavefront_api.html). To sign out a user while you enabled Super Admin mode, simply run a POST request with the `logout` API call. For example:
-
-```
-POST https://<your_instance>.wavefront.com/api/logout/{identifier}
-```
-
-You must specify the `{identifier}`, which is the email address of the user that you want to log out. If you are not logged in to your service instance, when you run the POST request, you must also provide a valid API token.
\ No newline at end of file
diff --git a/pages/doc/csp_users_roles.md b/pages/doc/csp_users_roles.md
deleted file mode 100644
index dd15b2e6a..000000000
--- a/pages/doc/csp_users_roles.md
+++ /dev/null
@@ -1,126 +0,0 @@
----
-title: Manage Roles and Groups in VMware Cloud Services
-keywords: administration
-tags: [administration]
-sidebar: doc_sidebar
-permalink: csp_users_roles.html
-summary: Manage Operations for Applications permissions with roles.
----
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for VMware Cloud services subscriptions. For **original** subscriptions, see [Manage Roles, Groups, and Permissions](users_roles.html)."%}
-
-VMware Cloud services supports roles to manage authorization in your services on the platform, including VMware Aria Operations for Applications.
-
-From the VMware Cloud Services Console, users with the VMware Cloud **Organization Owner** or **Organization Administrator** role can:
-* Create **groups** and add new and existing users to each group.
-* Create **custom roles** and assign Operations for Applications permissions to each role.
-* Assign one or more **service roles** and **custom roles** to each group. It's also possible to assign roles to individual users and server to server apps.
-
-In addition to the roles model, Operations for Applications also supports [access control for individual objects](csp_access.html), for example, users with the **Super Admin** service role can limit access to a sensitive dashboard.
-
-## Manage Roles
-
-The roles model allows you to make sure nobody can perform tasks without the corresponding permission.
-
-Assigning roles to groups of users is most efficient and least error prone. It's possible to assign a role to an individual account -- that might make sense during a POC.
-
-VMware Cloud services includes built-in **service roles** for each service on the platform, including Operations for Applications service roles. Additionally, VMware Cloud services supports **custom roles**.
-
-- A role can be assigned for a certain time period or without an expiration date.
-- At least one Operations for Applications service role is required for a user to have access to the Operations for Applications service instance. Custom roles are optional.
-- In a multi-tenant environment, a user can have different service roles for the different Operations for Applications service instances (tenants). Custom roles apply to **all** tenants for which the user has a service role.
-
-  {% include note.html content="When you invite new users in a multi-tenant environment, make sure that you assign them the roles they need for each Operations for Applications service instance (tenant). For information on how to do this, see [Invite New Users from the VMware Cloud Services Console](csp_new_users_tutorial.html)."%}
-
-The VMware Cloud Services Console **Roles** page lists all service roles and custom roles in your VMware Cloud organization. To navigate to this page:
-
-1. Log in to the VMware Cloud Services Console as an **Organization Owner** or **Organization Administrator**.
-1. If necessary, switch to the target organization. See [How do I access another one of my Organizations](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-432417CF-CE0C-48EB-BEBB-8C27751577D1.html).
-1. In the left navigation pane, select **Identity & Access Management** > **Roles**.
-
-### Operations for Applications Service Roles (Built-in)
-
-The VMware Cloud Services Console **Roles** page includes the following built-in Operations for Applications service roles:
-- A corresponding Operations for Applications service role for each Operations for Applications permission, that is, each of the following service roles has only one permission assigned:
-
-  * **Admin**
-  * **Alerts**
-  * **Applications**
-  * **Batch Query Priority**
-  * **Charts Embedding**
-  * **Dashboards**
-  * **Derived Metrics**
-  * **Direct Data Ingestion**
-  * **Events**
-  * **External Links**
-  * **Ingestion Policies**
-  * **Integrations**
-  * **Logs**
-  * **Metrics**
-  * **Proxies**
-  * **Sources**
-- Two special Operations for Applications service roles - one that grants full administrative access to the service, and another one that grants read-only access to the service:
-
-  <table>
-  <tr>
-    <th width="30%">Service Role</th>
-    <th width="70%">Description</th>
-  </tr>
-  <tr>
-    <th>Super Admin</th>
-    <td>When users with that service role enable Super Admin mode, they:<ul>
-    <li>Have all Operations for Applications permissions.</li>
-    <li>Have access to all dashboards and alerts.</li>
-    <li>Can <a href="csp_access.html#make-orphan-dashboards-or-alerts-visible">restore orphan dashboards and alerts</a>.</li>
-    </ul>
-    <p><strong>Tip:</strong> Combine the <strong>Super Admin</strong> service role with the roles that you want the user to have when Super Admin mode is disabled. </p></td>
-  </tr>
-  <tr>
-    <th>Viewer</th>
-    <td>Users with that service role:<ul>
-    <li>Don't have any Operations for Applications permissions.</li>
-    <li>Can perform only the default tasks.</li>
-    </ul>
-    <p><strong>Tip:</strong> Assign the <strong>Viewer</strong> service role individually or in combination with custom roles.</p></td>
-  </tr>
-  </table>
-
-### Create, Edit, or Delete a Custom Role
-
-Custom roles let you combine service permissions of your choice, for example, Operations for Applications permissions. A custom role can have permissions for one or multiple services in your organization. For example, you can have a custom role that grants administrative permissions for one service and read-only permissions for another service.
-
-{% include important.html content="The Operations for Applications permissions in a custom role apply to **all** Operations for Applications service instances to which the target user account or server to server app has access. Therefore, to obtain the Operations for Applications permissions from a custom role for a given Operations for Applications service instance, the user account or server to server app assigned with that custom role must have at least one Operations to Applications service role for that service instance, for example, the **Viewer** service role."%}
-
-To create a custom role:
-
-1. On the VMware Cloud Services Console **Roles** page, click **Add Role**.
-1. On the **Add permissions** tab, in the left panel, expand **VMware Aria Operations for Applications**.
-1. In the panel on the right, select the permissions that you want to assign to the role, and click **Continue**.
-1. On the **Role information** tab, enter a meaningful role name and description, and click **Continue**.
-1. On the **Review added permission** tab, verify your selections and click **Save**.
-
-To edit a custom role:
-
-1. On the VMware Cloud Services Console **Roles** page, click the name of the target custom role.
-1. Edit the role name, description, or permissions, and click **Save**.
-
-To delete a custom role:
-
-1. On the VMware Cloud Services Console **Roles** page, select one or more custom roles and click **Remove Roles**.
-1. Click **Remove** to confirm.
-
-### Assign Default Roles for a Federated Domain
-
-For a [federated domain](csp_authentication.html#federated-domain-authentication), users with the **Organization Owner** role can configure a policy with default VMware Cloud organization and service roles for all users in the federated domain. For details, see [How do I assign default roles in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-2307F55C-FB5C-4EE0-A2DE-43011509A9A1.html) in the VMware Cloud services documentation.
-
-## Manage User Groups
-
-For efficient user management, you can create groups of users and assign roles to these groups. You can add new and existing users to a group. You can assign [service roles](#operations-for-applications-service-roles-built-in) and [custom roles](#create-edit-or-delete-a-custom-role) to a group.
-
-See [How do I work with groups](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-0BD8A07B-C3C0-4220-8CD0-18FA070D3DAD.html) in the VMware Cloud services documentation.
-
-{% include note.html content="Operations for Applications includes an internal **Everyone** system group, where any new user account is added automatically. This group doesn't have any roles and permissions. This group can be used when managing [access to dashboards and alerts](csp_access.html), [metrics security policy rules](csp_metrics_security.html), and [ingestion policies](ingestion_policies.html)."%}
-
-## Grant or Revoke a User's Role Explicitly
-
-To change the roles that are individually assigned to a user, see [How do I change user roles](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-A70DBFDC-86FD-4C84-8753-0E55C8C98F8E.html).
\ No newline at end of file
diff --git a/pages/doc/direct_ingestion.md b/pages/doc/direct_ingestion.md
index 7244f2461..d2c94aa9d 100644
--- a/pages/doc/direct_ingestion.md
+++ b/pages/doc/direct_ingestion.md
@@ -36,11 +36,7 @@ Because some customers wanted to send data directly to the Operations for Applic
 ## Direct Ingestion Example Commands
 
 The following examples illustrate how to send data directly to the Operations for Applications service.
-* A token is required. Referred to as `<TOKEN>` in the examples. Depends on your [subscription type](subscriptions-differences.html):
-
-    - For VMware Cloud services subscriptions, a VMware Cloud services access token is required. You can retrieve an access token by exchanging your user API token or [server to server OAuth credentials](csp_server_to_server_apps.html#how-server-to-server-apps-work).
-    - For original subscriptions, an [API token](api_tokens.html) is required. The API token can be associated to a user account or service account.
-
+* An [API token](api_tokens.html) is required. The API token can be associated to a user account or service account.
 * You must know your Operations for Applications service instance name. This doc page uses `mydomain.wavefront.com`.
 * Currently, direct ingestion supports only [Operations for Applications Data Format](wavefront_data_format.html), which is named `wavefront`. If you don't specify `f=wavefront`, we still use that format.
 
diff --git a/pages/doc/ingestion_policies.md b/pages/doc/ingestion_policies.md
index eaef3864b..8f9859b60 100644
--- a/pages/doc/ingestion_policies.md
+++ b/pages/doc/ingestion_policies.md
@@ -54,13 +54,10 @@ In the **Data** panel, specify the scope and, optionally, a PPS limit and click
     </thead>
     <tr>
     <td><strong>Accounts</strong></td>
-    <td>Depends on your <a href="subscriptions-differences.html">subscription type</a>.<ul><li>If your Operations for Applications service is onboarded to VMware Cloud services, individual <a href="csp_user_management.html">users</a>, <a href="csp_server_to_server_apps.html">server to server apps</a>, and <a href="csp_service_accounts.html">service accounts</a>.</li>
-    <li>If your Operations for Applications service is an original subscription, individual <a href="authorization-faq.html#what-are-user--service-accounts">user and service accounts</a>.</li></ul></td></tr>
+    <td>Individual <a href="authorization-faq.html#what-are-user--service-accounts">user and service accounts</a>.</li></ul></td></tr>
     <tr>
     <td><strong>Groups</strong></td>
-    <td>Depends on your <a href="subscriptions-differences.html">subscription type</a>.<ul><li>If your Operations for Applications service is onboarded to VMware Cloud services, <a href="csp_users_roles.html#manage-user-groups">groups</a> of VMware Cloud services users.
-    <p>You can also select the <strong>Everyone</strong> internal system group (which includes all users) or the <strong>Service Accounts</strong> internal system group (which includes all <a href="csp_server_to_server_apps.html">server to server apps</a> that have access to your service as well as all <a href="csp_service_accounts.html">service accounts</a> in your service).</p></li>
-    <li>If your Operations for Applications service is an original subscription, <a href="users_roles.html#create-a-group">groups</a> of user and service accounts, including the <strong>Everyone</strong> and <strong>Service Accounts</strong> system groups.</li></ul>
+    <td><a href="users_roles.html#create-a-group">Groups</a> of user and service accounts, including the <strong>Everyone</strong> and <strong>Service Accounts</strong> system groups.</li></ul>
     </td>
     </tr>
     <tr>
diff --git a/pages/doc/integrations_cloudhealth.md b/pages/doc/integrations_cloudhealth.md
index 3305efd41..935a8f51e 100644
--- a/pages/doc/integrations_cloudhealth.md
+++ b/pages/doc/integrations_cloudhealth.md
@@ -34,18 +34,6 @@ Here's what you need to get started.
 * You need access to a product cluster (`https://<example>.wavefront.com`) that monitors the data source you're interested in.
 * A valid API token to let CloudHealth access our API. 
 
-<!--- Unclear whether this is true>
-If your Operations for Applications service **is** onboarded to VMware Cloud services, provide a valid VMware Cloud services API token of a user account or the credentials of a server to server app that has access to the Operations for Applications sources that you want to ingest in CloudHealth. For details, see:
-  
-   * [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html)
-   * [How do I manage API tokens in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html)
-   * [Manage server to server apps](csp_server_to_server_apps.html)
-  
-  If your Operations for Applications service is **not** onboarded to VMware Cloud services, the API token must be a [valid Operations for Applications API token](api_tokens.html) of a user account or a service account that has access to the Operations for Applications sources that you want to ingest in CloudHealth. 
-
-  {% include tip.html content="Creating a server to server app or a service account is often the right approach." %}
-<!--->
-
 The API token must be a [valid Operations for Applications API token](api_tokens.html) of a user account or a service account that has access to the Operations for Applications sources that you want to ingest in CloudHealth. 
 
 {% include tip.html content="Creating a service account is often the right approach." %}
diff --git a/pages/doc/integrations_grafana.md b/pages/doc/integrations_grafana.md
index 318feca07..eda34d1a7 100644
--- a/pages/doc/integrations_grafana.md
+++ b/pages/doc/integrations_grafana.md
@@ -13,11 +13,8 @@ When you set up VMware Aria Operations for Applications as a data source in Graf
 
 ## Set Up VMware Aria Operations for Applications as a Prometheus Data Source
 
-To set up VMware Aria Operations for Applications as a PromQL data source in Grafana, you must provide an API Token. 
+To set up VMware Aria Operations for Applications as a PromQL data source in Grafana, you must provide an API Token. The API token must be a [valid Operations for Applications API token](api_tokens.html) of a user account or a service account that can run queries.
 
-<!-- If your Operations for Applications service **is** onboarded to VMware Cloud services, provide a valid VMware Cloud services API token of a user that can run queries. See [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) and [How do I manage API tokens in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html) in the VMware Cloud services documentation. You can also use the credentials of a [server to server app](csp_server_to_server_apps.html) that can run queries.
-
-If your Operations for Applications service is **not** onboarded to VMware Cloud services, the API token must be a [valid Operations for Applications API token](api_tokens.html) of a user account or a service account that can run queries.  -->
 1. Log in to your Grafana instance.
 
 2. In the Navigation bar on the left, click **Configuration**. 
diff --git a/pages/doc/integrations_tmc.md b/pages/doc/integrations_tmc.md
index 7e04ad2a5..4797c1ebd 100644
--- a/pages/doc/integrations_tmc.md
+++ b/pages/doc/integrations_tmc.md
@@ -18,17 +18,7 @@ You can set up seamless authentication from Tanzu Mission Control to VMware Aria
 
 ## Generate an API Token for Tanzu Mission Control
 
-<!--Starting July 3, Operations for Applications becomes a service on the VMware Cloud services platform. 
-
-* If your Operations for Applications service **is** onboarded to VMware Cloud services, generate the API token in the VMware Cloud Services Console or use server to server app credentials. It is recommended that you use a server to server app. For more information, see:
-
-    * [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) 
-    * [How do I manage API tokens in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html)
-    * [Manage server to server apps](csp_server_to_server_apps.html)
-
-* If your Operations for Applications service is **not** onboarded to VMware Cloud services, use the procedure below to create a service account API token and use it with Tanzu Mission Control.
-
--->
+Use the procedure below to create a service account API token and use it with Tanzu Mission Control.
 
 1. Log in to your service instance as a user with the **Accounts** permission.
 2. Click the gear icon <i class="fa fa-cog"/> in the top right of the toolbar, select **Accounts**, and provide your password again when prompted.
diff --git a/pages/doc/integrations_tmc_howto.md b/pages/doc/integrations_tmc_howto.md
index 242311b61..1b4519818 100644
--- a/pages/doc/integrations_tmc_howto.md
+++ b/pages/doc/integrations_tmc_howto.md
@@ -25,10 +25,6 @@ To get started, you set up the integration from Tanzu Mission Control to VMware
 
 ### Step 1: Generate an API Token
 
-<!--* If your Operations for Applications service **is** onboarded to VMware Cloud services, see [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html) and [How do I manage API tokens in my Organization](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-3A9C29E0-460B-4586-B51A-084443A960D0.html) in the VMware Cloud services documentation. You can also use the credentials of a [server to server app](csp_server_to_server_apps.html).
-* If your Operations for Applications service is **not** onboarded to VMware Cloud services, generate the API token in the Operations for Applications UI. See [Managing API tokens](api_tokens.html).
--->
-
 In your product cluster, [Generate a Service Account API Token for Tanzu Mission Control](integrations_tmc.html#generate-an-api-token-for-tanzu-mission-control).
 
 ### Step 2: In Tanzu Mission Control, Set Up the Integration
diff --git a/pages/doc/logging_log_alerts.md b/pages/doc/logging_log_alerts.md
index 9adf081d8..88612d327 100644
--- a/pages/doc/logging_log_alerts.md
+++ b/pages/doc/logging_log_alerts.md
@@ -24,7 +24,7 @@ You can create alerts for your logs data and get email notifications when the al
           You need the <b>Alerts</b> and <b>Logs</b> permissions to create and manage logs alerts.
       </li>
   </ul>
-  <p>The steps to add roles and permissions differ for onboarded and original subscriptions. For details, see how to manage roles, groups, and permissions for <a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">onboarded subscriptions</a> and <a href="users_roles.html">original subscriptions</a>.</p>
+  <p>The steps to add roles and permissions differ for onboarded and original subscriptions. For details, see how to manage roles, groups, and permissions for onboarded subscriptions and <a href="users_roles.html">original subscriptions</a>.</p>
   {{site.data.alerts.end}}
 
 ## Alerts Browser
diff --git a/pages/doc/logging_overview.md b/pages/doc/logging_overview.md
index 3ca4ee6f5..07d115d27 100644
--- a/pages/doc/logging_overview.md
+++ b/pages/doc/logging_overview.md
@@ -40,7 +40,7 @@ summary: Learn about VMware Aria Operations for Applications (formerly known as
   </li>
   <li>
     Only users with the <b>Logs</b> permission can view the Logs Browser and drill down into logs from charts, alerts, and traces.
-    <p>The steps to add roles and permissions differ for <a href="wavefront_release_notes.html#vmware-aria-operations-for-applications-on-vmware-cloud-services">Onboarded and Original subscriptions</a>. See add permissions details for <a href="csp_users_roles.html#create-edit-or-delete-a-custom-role">Onboarded subscriptions</a> and <a href="users_roles.html">Original subscriptions</a>.</p>
+    <p>The steps to add roles and permissions differ for <a href="wavefront_release_notes.html#vmware-aria-operations-for-applications-on-vmware-cloud-services">Onboarded and Original subscriptions</a>. See add permissions details for Onboarded subscriptions and <a href="users_roles.html">Original subscriptions</a>.</p>
   </li>
 </ul>
 {{site.data.alerts.end}}
diff --git a/pages/doc/proxies_installing.md b/pages/doc/proxies_installing.md
index 80a096bf8..f276b601d 100644
--- a/pages/doc/proxies_installing.md
+++ b/pages/doc/proxies_installing.md
@@ -33,26 +33,9 @@ In most cases, a Wavefront proxy must be running in your environment before metr
 
 <a name="single"></a>
 
-## Proxy Authentication Types
+## Proxy Authentication Type
 
-* If your Operations for Applications service instance **is** onboarded to VMware Cloud services, the proxy requires a VMware Cloud services access token with the **Proxies** [service role](csp_users_roles.html#operations-for-applications-service-roles-built-in). There are two options for the proxy to retrieve an access token. You can configure the proxy with:
-    *	The credentials (ID and secret) of a VMware Cloud services server to server **OAuth app** and the ID of the VMware Cloud organization running the service.
-
-        Before you add a proxy with an OAuth app, you must retrieve the credentials (ID and secret) of a server to server app that is assigned with the **Proxies** Operations for Applications service role and added to the VMware Cloud organization running the service. See [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html?hWord=N4IgpgHiBcIMpgE4DckAIAuB7NBnJqiaAhgA6kgC+QA) in the VMware Cloud services documentation.
-
-        Also, you must retrieve the VMware Cloud organization long ID. See [View the Organization ID](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-CF9E9318-B811-48CF-8499-9419997DC1F8.html#view-the-organization-id-1) in the VMware Cloud services documentation.
-
-        {% include note.html content="When the access token expires, depending on the token TTL configuration of the server to server app, the proxy automatically retrieves a new access token."%}
-
-    *	A VMware Cloud services **API token** that belongs to your user account.
-
-        Before you add a proxy with an API token, you must have a VMware Cloud services API token that belongs to the VMware Cloud organization running the service and that is assigned with the **Proxies** service role. See [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html).
-
-        {% include important.html content="You might need to regenerate and reconfigure the API token periodically depending on its TTL configuration."%}
-
-* If your Operations for Applications service instance **isn't** onboarded to VMware Cloud services, the proxy requires an Operations for Applications **API token**.
-
-    Before you add a proxy, you must have an API token associated with your user account or a service account with the **Proxies** permission. See [Manage API Tokens](api_tokens.html) for details.
+Before you add a proxy, you must have an API token associated with your user account or a service account with the **Proxies** permission. See [Manage API Tokens](api_tokens.html) for details.
 
 ## Install a Proxy
 
@@ -66,7 +49,6 @@ To install and run a proxy:
 
 1. Log in to your service instance and select **Browse** > **Proxies**.
 1. Click **Add New Proxy**.
-1. If your service instance is onboarded to VMware Cloud services, click the tab for the [proxy authentication type](#proxy-authentication-types) of your choice - **OAuth app** or **API token**.
 1. Click the tab for your operating system and follow the steps on screen.
 
     {% include tip.html content="If your service instance isn't onboarded to VMware Cloud services, the latest API token of your user account is prepopulated in the proxy installation command but you can change it."%}
@@ -183,8 +165,8 @@ You can test that a proxy is receiving and sending data as follows:
 1. Send data by running the following command:
 
    ```shell
-echo -e "test.metric 1 source=test_host\n" | nc <wavefront_proxy_address> 2878
-   ```
+    echo -e "test.metric 1 source=test_host\n" | nc <wavefront_proxy_address> 2878
+   ```  
    where `<wavefront_proxy_address>` is the address of your Wavefront proxy.
 1. Log in to service instance and select **Browse > Metrics**.
 1. In the Metrics field, type `test.metric`.
diff --git a/pages/doc/purchase-additional-capacity.md b/pages/doc/purchase-additional-capacity.md
index 6c3871253..604afa595 100644
--- a/pages/doc/purchase-additional-capacity.md
+++ b/pages/doc/purchase-additional-capacity.md
@@ -7,9 +7,7 @@ permalink: purchase_additional_capacity.html
 summary: Learn how to add capacity to your current VMware Aria Operations for Applications subscription.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, to purchase additional capacity, you must hold the **Organization Owner** role in the VMware Cloud organization running the service as well as at least one [Operations for Applications service role](csp_users_roles.html#operations-for-applications-service-roles-built-in) for the service instance. If your enterprise domain is federated, to access the organization billing account, you must have a VMware account linked to your corporate account.<br/>
-- For original Operations for Applications subscriptions, to purchase additional capacity, you must be a **Super Admin** user."%}
+To purchase additional capacity, you must be a **Super Admin** user.
 
 ## Supported Contracts
 
diff --git a/pages/doc/security_policy.md b/pages/doc/security_policy.md
index 3ce6d3cf8..44f217757 100644
--- a/pages/doc/security_policy.md
+++ b/pages/doc/security_policy.md
@@ -7,8 +7,6 @@ permalink: security_policy.html
 summary: Use security policies to control access to metrics, such as time series, histograms, RED metrics, and delta counters, as well as traces.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For VMware Cloud services subscriptions, see [Metrics Security Policy Rules in Operations for Applications on VMware Cloud Services](csp_metrics_security.html)."%}
-
 You can create security policies on VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) to protect your metrics and traces security data.
 
 <img src="images/security_policies_overview.png" alt="An overview image that shows metrics and traces security policies." style="width:70%; max-width:1000">
diff --git a/pages/doc/users_roles.md b/pages/doc/users_roles.md
index a8d06420a..653949da8 100644
--- a/pages/doc/users_roles.md
+++ b/pages/doc/users_roles.md
@@ -7,8 +7,6 @@ permalink: users_roles.html
 summary: Manage global permissions with roles.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see [Manage Roles and Groups in VMware Cloud Services](csp_users_roles.html)."%}
-
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) supports roles to fine-tune authorization in the Wavefront environment.
 
 Users with the **Accounts** permission can:

From c675f444217c0a1f2973d80a835b1b0a3030fcc0 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Thu, 27 Jun 2024 14:38:06 -0700
Subject: [PATCH 04/12] Update the pages with the note

---
 _data/sidebars/doc_sidebar.yml             |   8 +-
 pages/doc/api_tokens.md                    |   2 -
 pages/doc/csp_subscription_types.md        |   2 -
 pages/doc/csp_supported_integrations.md    | 491 ---------------------
 pages/doc/integrations.md                  |  20 +-
 pages/doc/integrations_new_changed.md      |  15 -
 pages/doc/integrations_new_changed_2023.md |   8 +-
 pages/doc/logging_logs_settings.md         |   4 +-
 pages/doc/logging_overview.md              |   3 +-
 pages/doc/logging_proxy_configurations.md  |  36 --
 pages/doc/permissions_overview.md          |   2 -
 pages/doc/proxies_container.md             |   4 -
 pages/doc/proxies_installing.md            |   4 -
 pages/doc/proxies_troubleshooting.md       |   2 -
 pages/doc/wavefront_administer.md          |   2 -
 pages/doc/wavefront_api.md                 |   2 -
 pages/doc/wavefront_obsolescence_policy.md |  10 -
 pages/doc/wavefront_prometheus.md          |   4 -
 18 files changed, 8 insertions(+), 611 deletions(-)
 delete mode 100644 pages/doc/csp_supported_integrations.md

diff --git a/_data/sidebars/doc_sidebar.yml b/_data/sidebars/doc_sidebar.yml
index 3e48ae75a..b90e1855a 100755
--- a/_data/sidebars/doc_sidebar.yml
+++ b/_data/sidebars/doc_sidebar.yml
@@ -462,11 +462,7 @@ entries:
 
     - title: Integrations Overview
       url: /integrations.html
-      output: web
-    
-    - title: How Integration Authentication Works
-      url: /integrations_onboarded_subscriptions.html
-      output: web
+      output: webd
 
     - title: Complete List of Integrations
       url: /label_integrations%20list.html
@@ -877,7 +873,7 @@ entries:
         url: /wavefront_clis.html
         output: web
 
-  - title: Administering Original Subscriptions
+  - title: Administration
     output: web
     folderitems:
 
diff --git a/pages/doc/api_tokens.md b/pages/doc/api_tokens.md
index a556a4130..242a7aadd 100644
--- a/pages/doc/api_tokens.md
+++ b/pages/doc/api_tokens.md
@@ -7,8 +7,6 @@ permalink: api_tokens.html
 summary: Learn how you can generate and manage API tokens in VMware Aria Operations for Applications (previously known as Tanzu Observability by Wavefront).
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see Manage Tokens."%}
-
 Before you can invoke the [REST API](wavefront_api.html) using `curl` or from an API client, you must have an API token. An API token is a string of hexadecimal characters and dashes. For example:
 
 ```
diff --git a/pages/doc/csp_subscription_types.md b/pages/doc/csp_subscription_types.md
index 336f0deb6..ed8121e17 100644
--- a/pages/doc/csp_subscription_types.md
+++ b/pages/doc/csp_subscription_types.md
@@ -11,9 +11,7 @@ Operations for Applications subscriptions are two types: original subscriptions
 
 ## Why the Two Subscription Types Differ?
 
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the [VMware Cloud services platform](https://console.cloud.vmware.com/) and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services.
 
-{% include note.html content="We will support both **original** and **onboarded** subscriptions until all original subscriptions are onboarded to VMware Cloud services." %}
 
 VMware Cloud services provides single sign-on (SSO) and identity access management (IAM) to your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications. Therefore, there are differences in the experience for VMware Cloud services subscribers and original subscribers. 
 
diff --git a/pages/doc/csp_supported_integrations.md b/pages/doc/csp_supported_integrations.md
deleted file mode 100644
index 990dc3174..000000000
--- a/pages/doc/csp_supported_integrations.md
+++ /dev/null
@@ -1,491 +0,0 @@
----
-title: How Integration Authentication Works
-keywords: integrations
-tags: 
-sidebar: doc_sidebar
-permalink: integrations_onboarded_subscriptions.html
-summary: Learn how integration authentication happens, which integrations work with VMware Cloud services access tokens and which integrations still work with Operations for Applications API tokens.
----
-
-## Subscription Types
-
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services.
-
-For best performance, when you set up most of our integrations, it is recommended to use the Wavefront proxy. The Wavefront proxy ingests metrics and forwards them to Operations for Applications in a secure, fast, and reliable manner. 
-
-### VMware Cloud Services Subscriptions
-
-When your Operations for Applications service **is onboarded** to the VMware Cloud services platform you have the following choices for the [Wavefront proxy](proxies_installing.html) authentication:
-
-**VMware Cloud Services Access Token**
-
-The Wavefront proxy requires a VMware Cloud services access token with the **Proxies** service role. There are two options for the proxy to retrieve an access token. You can configure the Wavefront proxy to use:
-
-* OAuth App authentication (recommended):
-
-  You must use the credentials (client ID and client secret) of an existing server to server OAuth app which has the **Proxies** service role assigned and is added to the VMware Cloud organization running the service. You must also provide the long ID of the VMware Cloud organization running the service.
-
-  If you don’t have a server to server app already, you can create one in the VMware Cloud Services Console. For details, see [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation. You can also try out the [Windows host integration tutorial](windows_host_tutorial.html).
-
-  When the access token expires, depending on the token TTL configuration of the server to server app, the Wavefront proxy automatically retrieves a new access token.
-
-* API Token authentication:
-
-  The API token must be generated in the VMware Cloud Services Console by an active user account. It also must have the **Proxies** service role assigned. For more information, see [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html).
-
-  You might need to regenerate and reconfigure the API token periodically depending on the TTL configuration.
-
-**Operations for Applications API token**
-
-For a limited number of integrations, you must still use an Operations for Applications API token, associated with a service account that has the **Proxies** permission. As a user with the **Admin** service role, you can create a service account with the **Proxies** permission and generate an API token for it. Then, you can install the Wavefront proxy and set up your integration to pass the API token of the service account. 
-
-{% include warning.html content="  It is strongly recommended that you gradually switch to using server to server OAuth apps which authenticate with more secure VMware Cloud services access tokens. Service accounts and Operations for Applications API tokens will be deprecated in the future." %}
-
-<!--Bring this back to the warning if we get the flag: First sentence: Service accounts are enabled only for a **limited number** of VMware Cloud services subscriptions. 
-
-Last sentence: Тo temporarily enable service accounts for your service instance, [contact](wavefront_support_feedback.html) our Technical Support team.-->
-
-To understand how you can manage the API tokens for service accounts, see Managing the Operations for Applications API Tokens for a Service Account.
-
-
-### Original Subscriptions
-
-When your Operations for Applications service instance **is not onboarded** to VMware Cloud services, the proxy requires an Operations for Applications **API token**.
-
-Before you add a proxy, you must have an API token associated with your user account or a service account with the **Proxies** permission. See [Manage API Tokens](api_tokens.html) for details.
-
-
-## Integrations That Use VMware Cloud Services Access Tokens
-
-We're in the process of incrementally updating our integrations so that you can authenticate with a VMware Cloud services API token or OAuth server to server app  credentials. 
-
-{% include note.html content= "The integrations in the **Archived** section are approaching their end-of-life. For that reason, we will not update these integrations to authenticate with VMware Cloud services access tokens." %}
-
-When your Operations for Applications service **is onboarded** to the VMware Cloud services platform, the list of the integrations that are updated as of today is in the table below. This list grows with each release. If you urgently need an integration to become available and configurable with a VMware Cloud services access token, please contact [technical support](wavefront_support_feedback.html).
-
-<table style="width: 100%;">
-<thead>
-<tr><th width="50%">Integration</th><th width="50%">Link to Doc Page</th></tr>
-</thead>
-<tbody>
-<tr>
-<td markdown="span">Chef Server</td>
-<td markdown="span">[Chef Server](wavefront-chef.html)</td></tr>
-<tr>
-<td markdown="span">Micrometer</td>
-<td markdown="span">[Micrometer](micrometer.html)</td></tr>
-<tr>
-<td markdown="span">Tanzu Application Service</td>
-<td markdown="span">[Tanzu Application Service Integration](tas_v4.html)</td></tr>
-<tr>
-<td markdown="span">Kubernetes</td>
-<td markdown="span">[Kubernetes Integration](kubernetes.html)</td></tr>
-<tr>
-<td markdown="span">Linux Host</td>
-<td markdown="span">[Linux Host Integration](linux.html)</td></tr>
-<tr>
-<td markdown="span">Suse Linux Host</td>
-<td markdown="span">[Suse Linux Host Integration](suse.html)</td></tr>
-<tr>
-<td markdown="span">Oracle Linux Host</td>
-<td markdown="span">[Oracle Linux Host Integration](oel.html)</td></tr>
-<tr>
-<td markdown="span">Fedora Linux Host</td>
-<td markdown="span">[Fedora Linux Host Integration](fedora.html)</td></tr>
-<tr>
-<td markdown="span">Amazon Linux AMI Host</td>
-<td markdown="span">[Amazon Linux AMI Host Integration](aws_linux.html)</td></tr>
-<tr>
-<td markdown="span">Red Hat Enterprise Linux Host</td>
-<td markdown="span">[Red Hat Enterprise Linux Host Integration](redhat.html)</td></tr>
-<tr>
-<td markdown="span">Ubuntu Host</td>
-<td markdown="span">[Ubuntu Host Integration](ubuntu.html)</td></tr>
-<tr>
-<td markdown="span">Debian Host</td>
-<td markdown="span">[Debian Host Integration](debian.html)</td></tr>
-<tr>
-<td markdown="span">CentOS Host</td>
-<td markdown="span">[CentOS Host Integration](centos.html)</td></tr>
-<tr>
-<td markdown="span">Mac Host</td>
-<td markdown="span">[Mac Host Integration](mac.html)</td></tr>
-<tr>
-<td markdown="span">Windows Host</td>
-<td markdown="span">[Windows Host Integration](windows.html)</td></tr>
-<tr>
-<td markdown="span">NetBSD Host</td>
-<td markdown="span">[NetBSD Host Integration](netbsd.html)</td></tr>
-<tr>
-<td markdown="span">VMware vSphere</td>
-<td markdown="span">[VMware vSphere Integration](vsphere.html)</td></tr>
-<tr>
-<td markdown="span">StatsD</td>
-<td markdown="span">[StatsD Integration](statsd.html)</td></tr>
-<tr>
-<td markdown="span">Prometheus</td>
-<td markdown="span">[Prometheus Integration](prometheus.html)</td></tr>
-<tr>
-<td markdown="span">OpenTelemetry</td>
-<td markdown="span">[OpenTelemetry Integration](opentelemetry_overview.html)</td></tr>
-<tr>
-<td markdown="span">SNMP </td>
-<td markdown="span">[SNMP Integration](snmp.html)</td></tr>
-<tr>
-<td markdown="span">Apache ActiveMQ</td>
-<td markdown="span">[Apache ActiveMQ Integration](activemq.html)</td></tr>
-<tr>
-<td markdown="span">Apache HTTP</td>
-<td markdown="span">[Apache HTTP Integration](apache.html)</td></tr>
-<tr>
-<td markdown="span">Apache HTTP</td>
-<td markdown="span">[Apache HTTP Integration](apache.html)</td></tr>
-<tr>
-<td markdown="span">Apache Hadoop HDFS</td>
-<td markdown="span">[Apache Hadoop HDFS Integration](hadoop-hdfs.html)</td></tr>
-<tr>
-<td markdown="span">Apache Hadoop MapReduce </td>
-<td markdown="span">[Apache Hadoop MapReduce Integration](hadoop-mapreduce.html)</td></tr>
-<tr>
-<td markdown="span">Apache Hadoop YARN</td>
-<td markdown="span">[Apache Hadoop YARN Integration](hadoop-yarn.html)</td></tr>
-<tr>
-<td markdown="span">Apache Impala</td>
-<td markdown="span">[Apache Impala Integration](impala.html)</td></tr>
-<tr>
-<td markdown="span">Apache Kudu</td>
-<td markdown="span">[Apache Kudu Integration](kudu.html)</td></tr>
-<tr>
-<td markdown="span">Apache Mesos</td>
-<td markdown="span">[Apache Mesos Integration](mesos.html)</td></tr>
-<tr>
-<td markdown="span">Apache Solr</td>
-<td markdown="span">[Apache Solr Integration](solr.html)</td></tr>
-<tr>
-<td markdown="span">Apache Spark</td>
-<td markdown="span">[Apache Spark Integration](spark.html)</td></tr>
-<tr>
-<td markdown="span">Apache Tomcat</td>
-<td markdown="span">[Apache Tomcat Integration](tomcat.html)</td></tr>
-<tr>
-<td markdown="span">Atlassian Bitbucket</td>
-<td markdown="span">[Atlassian Bitbucket Integration](bitbucket.html)</td></tr>
-<tr>
-<td markdown="span">Cassandra</td>
-<td markdown="span">[Cassandra Integration](cassandra.html)</td>
-</tr>
-<tr>
-<td markdown="span">Catchpoint</td>
-<td markdown="span">[Catchpoint Integration](catchpoint.html)</td>
-</tr>
-<tr>
-<td markdown="span">Ceph</td>
-<td markdown="span">[Ceph Integration](ceph.html)</td>
-</tr>
-<tr>
-<td markdown="span">Chef</td>
-<td markdown="span">[Chef Integration](chef.html)</td></tr>
-<tr>
-<td markdown="span">Concourse CI Integration</td>
-<td markdown="span">[Concourse CI Integration](concourse.html)</td></tr>
-<tr>
-<td markdown="span">Consul</td>
-<td markdown="span">[Consul Integration](consul.html)</td></tr>
-<tr>
-<td markdown="span">Convox</td>
-<td markdown="span">[Convox Integration](convox.html)</td></tr>
-<tr>
-<td markdown="span">Couchbase</td>
-<td markdown="span">[Couchbase Integration](couchbase.html)</td></tr>
-<tr>
-<td markdown="span">CouchDB</td>
-<td markdown="span">[CouchDB Integration](couchdb.html)</td></tr>
-<tr>
-<td markdown="span">Elasticsearch</td>
-<td markdown="span">[Elasticsearch Integration](elasticsearch.html)</td></tr>	
-<tr>
-<td markdown="span">Envoy Proxy</td>
-<td markdown="span">[Envoy Proxy Integration](envoy.html)</td>
-</tr>	
-<tr>
-<td markdown="span">etcd KV store</td>
-<td markdown="span">[etcd KV store Integration](etcd.html)</td>
-</tr>	
-<tr>
-<td markdown="span">FoundationDB</td>
-<td markdown="span">[FoundationDB Integration](fdb.html)</td>
-</tr>
-<tr>
-<td markdown="span">Fluentd</td>
-<td markdown="span">[Fluentd Integration](fluentd.html)</td>
-</tr>
-<tr>
-<td markdown="span">Github</td>
-<td markdown="span">[Github Integration](github.html)</td>
-</tr>
-<tr>
-<td markdown="span">GitLab</td>
-<td markdown="span">[GitLab Integration](gitlab.html)</td>
-</tr>
-<tr>
-<td markdown="span">VMware Tanzu Greenplum</td>
-<td markdown="span">[VMware Tanzu Greenplum Integration](greenplum.html)</td>
-</tr>
-<tr>
-<td markdown="span">HAProxy</td>
-<td markdown="span">[HAProxy Integration](haproxy.html)</td>
-</tr>
-<tr>
-<td markdown="span">Java</td>
-<td markdown="span">[Java Integration](java.html)</td>
-</tr>
-<tr>
-<td markdown="span">JBoss AS </td>
-<td markdown="span">[JBoss AS Integration](jboss.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Jenkins</td>
-<td markdown="span">[Jenkins Integration](jenkins.html)</td>
-</tr>	
-<tr>
-<td markdown="span">JMX</td>
-<td markdown="span">[JMX Integration](jmx.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Kafka</td>
-<td markdown="span">[Kafka Integration](kafka.html)</td>
-</tr>		
-<tr>
-<td markdown="span">Kong</td>
-<td markdown="span">[Kong Integration](kong.html)</td>
-</tr>
-<tr>
-<td markdown="span">Lighttpd</td>
-<td markdown="span">[Lighttpd Integration](lighttpd.html)</td>
-</tr>
-<tr>
-<td markdown="span">Marathon</td>
-<td markdown="span">[Marathon Integration](marathon.html)</td>
-</tr>
-<tr>
-<td markdown="span">Memcached</td>
-<td markdown="span">[Memcached Integration](memcached.html)</td>
-</tr>
-<tr>
-<td markdown="span">MongoDB</td>
-<td markdown="span">[MongoDB Integration](mongodb.html)</td>
-</tr>
-<tr>
-<td markdown="span">MySQL</td>
-<td markdown="span">[MySQL Integration](mysql.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Nagios</td>
-<td markdown="span">[Nagios Integration](nagios.html)</td>
-</tr>	
-<tr>
-<td markdown="span">NGINX </td>
-<td markdown="span">[NGINX Integration](nginx.html)</td>
-</tr>	
-<tr>
-<td markdown="span">NGINX Plus </td>
-<td markdown="span">[NGINX Plus Integration](nginxplus.html)</td>
-</tr>	
-<tr>
-<td markdown="span">NVIDIA </td>
-<td markdown="span">[NVIDIA Integration](nvidia.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Oracle RDBMS</td>
-<td markdown="span">[Oracle RDBMS Integration](oracle.html)</td>
-</tr>
-<tr>
-<td markdown="span">Papertrail</td>
-<td markdown="span">[Papertrail Integration](papertrail.html)</td>
-</tr> 
-<tr>
-<td markdown="span">PHP-FPM</td>
-<td markdown="span">[PHP-FPM Integration](phpfpm.html)</td>
-</tr>    
-<tr>
-<td markdown="span">Pingdom</td>
-<td markdown="span">[Pingdom Integration](pingdom.html)</td>
-</tr>    
-<tr>
-<td markdown="span">PostgreSQL </td>
-<td markdown="span">[PostgreSQL Integration](postgresql.html)</td>
-</tr>   
-<tr>
-<td markdown="span">Puppet Server</td>
-<td markdown="span">[Puppet Server Integration](puppet.html)</td>
-</tr>  
-<tr>
-<td markdown="span">RabbitMQ</td>
-<td markdown="span">[RabbitMQ Integration](rabbitmq.html)</td>
-</tr>  
-<tr>
-<td markdown="span">Redis</td>
-<td markdown="span">[Redis Integration](redis.html)</td>
-</tr>
-<tr>
-<td markdown="span">Riak KV Store</td>
-<td markdown="span">[Riak KV Store Integration](redis.html)</td>
-</tr>
-<tr>
-<td markdown="span">Rollbar</td>
-<td markdown="span">[Rollbar Integration](rollbar.html)</td>
-</tr>
-<tr>
-<td markdown="span">Runscope</td>
-<td markdown="span">[Runscope Integration](runscope.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Twemproxy</td>
-<td markdown="span">[Twemproxy Integration](twemproxy.html)</td>
-</tr>	    
-<tr>
-<td markdown="span">Varnish Cache</td>
-<td markdown="span">[Varnish Cache Integration](varnishcache.html)</td>
-</tr>	
-<tr>
-<td markdown="span">Hashicorp Vault</td>
-<td markdown="span">[Hashicorp Vault Integration](vault.html)</td>
-</tr>    
-<tr>
-<td markdown="span">Oracle WebLogic Server</td>
-<td markdown="span">[Oracle WebLogic Server Integration](weblogic.html)</td>
-</tr>  
-<tr>
-<td markdown="span">IBM WebSphere Application Server</td>
-<td markdown="span">[IBM WebSphere Application Server Integration](websphere.html)</td>
-</tr> 
-<tr>
-<td markdown="span">ZooKeeper</td>
-<td markdown="span">[ZooKeeper Integration](zookeeper.html)</td>
-</tr> 	
-<tr>
-<td markdown="span">Active Directory</td>
-<td markdown="span">[Active Directory Integration](activedirectory.html)</td>
-</tr> 
-<tr>
-<td markdown="span">Cernan</td>
-<td markdown="span">[Cernan Integration](cernan.html)</td>
-</tr> 		
-<tr>
-<td markdown="span">Docker with cAdvisor</td>
-<td markdown="span">[Docker with cAdvisor Integration](docker.html)</td>
-</tr>
-<tr>
-<td markdown="span">.NET</td>
-<td markdown="span">[.NET Integration](dotnet.html)</td>
-</tr> 		
-<tr>
-<td markdown="span">Filebeat Log Data</td>
-<td markdown="span">[Filebeat Log Data Integration](filebeat.html)</td>
-</tr>
-<tr>
-<td markdown="span">Microsoft Hyper-V</td>
-<td markdown="span">[Microsoft Hyper-V Integration](hyperv.html)</td>
-</tr> 	
-<tr>
-<td markdown="span">IIS</td>
-<td markdown="span">[IIS Integration](iis.html)</td>
-</tr>
-<tr>
-<td markdown="span">Microsoft Exchange</td>
-<td markdown="span">[Microsoft Exchange Integration](msexchange.html)</td>
-</tr>
-<tr>
-<td markdown="span">OpenTSDB</td>
-<td markdown="span">[OpenTSDB Integration](opentsdb.html)</td>
-</tr>
-<tr>
-<td markdown="span">SharePoint </td>
-<td markdown="span">[SharePoint  Integration](sharepoint.html)</td>
-</tr>
-<tr>
-<td markdown="span">Splunk</td>
-<td markdown="span">[Splunk Integration](splunk.html)</td>
-</tr> 
-<tr>
-<td markdown="span">Microsoft SQL Server</td>
-<td markdown="span">[Microsoft SQL Server Integration](sqlserver.html)</td>
-</tr> 
-<tr>
-<td markdown="span">Uptime</td>
-<td markdown="span">[Uptime Integration](uptime.html)</td>
-</tr> 
-<tr>
-<td markdown="span">Windows Performance Counters</td>
-<td markdown="span">[Windows Performance Counters Integration](winperf.html)</td>
-</tr> 
-<tr>
-<td markdown="span">Windows Service</td>
-<td markdown="span">[Windows Service Integration](winserv.html)</td>
-</tr>
-<tr>
-<td markdown="span">Zabbix </td>
-<td markdown="span">[Zabbix  Integration](zabbix.html)</td>
-</tr>
-<tr>
-<td markdown="span">Zipkin </td>
-<td markdown="span">[Zipkin  Integration](zipkin.html)</td>
-</tr>
-<tr>
-<td markdown="span">Velero </td>
-<td markdown="span">[Velero  Integration](velero.html)</td>
-</tr>
-</tbody>
-</table>
-
-
-## Integrations That Use Operations for Applications API Tokens
-
-Here's the list of the integrations that still use API tokens. Currently, if your service **is onboarded** to VMware Cloud services, direct ingestion by using the Wavefront Output Plugin for Telegraf is supported only when you use a service account<!--(targeting mid-October)-->.
-
-* [Spring Boot](springboot.html) <!--(target mid-end of September)-->
-* [VMware Tanzu Mission Control Advanced](tmc.html) <!--(TBD)-->
-* [VMware GemFire](gemfire.html) <!--(TBD https://jira.eng.vmware.com/browse/INT-1897)-->
-* [VMware Tanzu Kubernetes Grid Integration](tkgi.html) <!--(TBD)-->
-* [Terraform Provider](wavefront-terraform-provider.html) <!--(TBD)-->
-* [VMware Aria Operations for Logs](log-insight-cloud.html) <!--(TBD)-->
-* [VMware Spring Cloud Data Flow for Kubernetes](scdf.html) <!--(TBD)-->
-* [Datadog](datadog.html) <!--(archive/delete?)-->
-* [Grafana](grafana.html) <!--(TBD)-->
-* [C Sharp](csharp.html) <!--(TBD)-->
-
-## List of Unaffected Integrations
-
-The following integrations do not depend on the subscription type and work as expected, no matter whether your Operations for Applications service is onboarded to VMware Cloud services platform or not.
-
-### Cloud Integrations
-
-* [Google Cloud Platform](gcp.html)
-* [Amazon Web Services](aws.html)
-* [Microsoft Azure](azure.html)
-* [AppDynamics](appdynamics.html)
-* [Dynatrace](dynatrace.html)
-* [New Relic](newrelic.html)
-* [VMware Aria Operations (SaaS)](integrations_vrops.html)
-  
-  Note that currently this integration works with a VMware Cloud services API token only.
-
-* [Snowflake](snowflake.html)
-
-### Notification Integrations
-
-* [BigPanda](bigpanda.html)
-* [Microsoft Teams](msteams.html)
-* [PagerDuty](pagerduty.html)
-* [Slack](slack.html)
-* [Jira](jira.html)
-* [OpsGenie](opsgenie.html)
-* [ServiceNow](servicenow.html)
-* [Splunk On-Call](victorops.html)
-
-### Other Integrations
-
-* [Webhooks](webhooks.html)
-* [Graphite](graphite.html)
-* [Operations for Applications Usage Integration](wavefront_monitoring.html)
-
diff --git a/pages/doc/integrations.md b/pages/doc/integrations.md
index d7b452af9..ce7dcede7 100644
--- a/pages/doc/integrations.md
+++ b/pages/doc/integrations.md
@@ -11,8 +11,6 @@ Integrations are one easy way to get data from external systems into VMware Aria
 
 We update our [integrations release notes](integrations_new_changed.html) frequently.
 
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the [VMware Cloud services platform](https://console.cloud.vmware.com/) and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until they migrate to VMware Cloud services. For information about the subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).  
-
 ## Watch a Video
 
 In this video, Jason talks about the different integrations we have, and how you can use them to get your data into the product. You can also watch the video <a href="https://vmwaretv.vmware.com/media/t/1_j454pr6u" target="_blank">here <img src="/images/video_camera.png" alt="video camera icon"/></a>. Note that this video was created in 2017 and some of the information in it might have changed. It also uses the 2017 version of the UI.
@@ -25,23 +23,7 @@ In this video, Jason talks about the different integrations we have, and how you
 
 Sign up for a trial version to try our integrations. Detailed setup steps for each integration are in the product UI. 
 
-When the integration setup requires a token for the proxy authentication, the setup instructions of some integrations (such as all integrations for Linux distributions, Windows host integration, MacOS integration, Prometheus, and so on) vary depending on whether your service is onboarded to VMware Cloud services or not. For details, see [Integrations Supported for Onboarded Subscriptions](integrations_onboarded_subscriptions.html). For the latest and most recent instructions on how to set up an integration, see the steps on the **Setup** tab of the integration that you're interested in.
-
-* If your Operations for Applications service **is** onboarded to VMware Cloud services, you have two choices:
-
-   * Use OAuth App authentication (recommended):
-
-     You must use the credentials (client ID and client secret) of an existing server to server app which has the **Proxies** service role assigned and is added to the VMware Cloud organization running the service. You must also provide the ID of the VMware Cloud organization running the service.
-
-      If you don’t have a server to server app already, you can create one in the VMware Cloud Services Console. For details, see [How to use OAuth 2.0 for server to server apps](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html) in the VMware Cloud services documentation.
-
-
-   * Use API Token authentication:
-
-     The API token must be generated in the VMware Cloud Services Console by an active user account. It also must have the **Proxies** service role assigned. For more information, see [How do I generate API tokens](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E2A3B1C1-E9AD-4B00-A6B6-88D31FCDDF7C.html).
-   
-
-* If your Operations for Applications service is **not** onboarded to VMware Cloud services, generate the API token in the Operations for Applications UI. It is recommended that you use a service account API token. For more information, see [Manage API tokens](api_tokens.html).
+You need to generate the API token in the Operations for Applications UI. It is recommended that you use a service account API token. For more information, see [Manage API tokens](api_tokens.html).
 
 Here's a sample of what you see when you select one of our integrations:
 * The **Overview** tab explains how the integration works and what's included, often a sample dashboard with commonly used charts.
diff --git a/pages/doc/integrations_new_changed.md b/pages/doc/integrations_new_changed.md
index f15f48889..21d7b417d 100644
--- a/pages/doc/integrations_new_changed.md
+++ b/pages/doc/integrations_new_changed.md
@@ -8,21 +8,6 @@ summary: New and changed integrations.
 ---
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) continuously adds new integrations to the existing set, and improves available integrations. We update our [**complete list of all integrations**](https://docs.wavefront.com/label_integrations%20list.html) each time we add new integrations.
 
-
-## Announcement
-
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the [VMware Cloud services platform](https://console.cloud.vmware.com/) and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. We are in the process of incrementally onboarding all original subscriptions to VMware Cloud services.
-
-For details about the two subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
-
-If your Operations for Applications service **is onboarded** to VMware Cloud services, most of the integrations authenticate with VMware Cloud services **access tokens**. Only a limited list of integrations still authenticate with Operations for Applications API tokens. For details, see [How Integration Authentication Works](integrations_onboarded_subscriptions.html).
-
-{% include note.html content= "The integrations in the **Archived** section are approaching their end-of-life. For that reason, we will not update these integrations to authenticate with VMware Cloud services access tokens." %}
-
-During the process of onboarding an original Operations for Applications service to VMware Cloud services, all of the existing integrations are preserved and continue to operate using Operations for Applications API tokens. You should incrementally switch to integration authentication with the more secure VMware Cloud services access tokens. 
-
-{% include note.html content= "Currently, if your service **is onboarded** to VMware Cloud services, direct ingestion by using the Wavefront Output Plugin for Telegraf is not supported. For best performance, use a Wavefront proxy. " %}
-
 ## January 2024
 
 We improved the following integration in January 2024:
diff --git a/pages/doc/integrations_new_changed_2023.md b/pages/doc/integrations_new_changed_2023.md
index 53c75d95c..104a0fbd6 100644
--- a/pages/doc/integrations_new_changed_2023.md
+++ b/pages/doc/integrations_new_changed_2023.md
@@ -23,7 +23,7 @@ We made improvements to the following integrations in December 2023:
 * Tanzu Application Service -- Fixed an issue with the **Error Rate** chart in the **Workload Monitoring** dashboard. 
 * VMware Tanzu Kubernetes Grid Integration -- Removed the `limit()` function from the queries in the VMware Tanzu Kubernetes Grid integration system dashboards, because this function [may return No Data](ts_limit.html#summary).
 
-We updated the following integrations to support VMware Cloud Services access token authentication when your Operations for Applications service **is onboarded** to VMware Cloud services. See [Integrations That Use VMware Cloud Services Access Tokens](integrations_onboarded_subscriptions.html#integrations-that-use-vmware-cloud-services-access-tokens).
+We updated the following integrations to support VMware Cloud Services access token authentication when your Operations for Applications service **is onboarded** to VMware Cloud services.
 
   * Chef Server
 
@@ -65,7 +65,7 @@ Also, we made improvements to the following integrations in October 2023:
 * Go -- Removed references of deprecated SDKs.
 * C Sharp -- Removed references of deprecated libraries.
 
-In addition, we updated the following integrations to support VMware Cloud Services access token authentication when your Operations for Applications service **is onboarded** to VMware Cloud services. See [Integrations That Use VMware Cloud Services Access Tokens](integrations_onboarded_subscriptions.html#integrations-that-use-vmware-cloud-services-access-tokens).
+In addition, we updated the following integrations to support VMware Cloud Services access token authentication when your Operations for Applications service **is onboarded** to VMware Cloud services.
 
   * Catchpoint
   * Nagios
@@ -92,7 +92,7 @@ We made improvements to the following integrations in August 2023:
   3. Search for **Velero** and click its tile.
   4. Click the **Setup** tab.
 
-* Tanzu Application Service -- We added support for Tanzu Application Service setup when your Operations for Applications service **is onboarded** to VMware Cloud services. See [Integrations Supported for Onboarded Subscriptions](integrations_onboarded_subscriptions.html).
+* Tanzu Application Service -- We added support for Tanzu Application Service setup when your Operations for Applications service **is onboarded** to VMware Cloud services.
 
 * Kubernetes:
   * We added [new alerts templates](https://github.com/wavefrontHQ/observability-for-kubernetes/blob/main/docs/alerts/alerts.md).
@@ -100,8 +100,6 @@ We made improvements to the following integrations in August 2023:
   * We added support for Kubernetes setup when your Operations for Applications service **is onboarded** to VMware Cloud services.
   * We now support a number of integrations on Kubernetes. The list includes: Cassandra, Ceph, Envoy Proxy, etcd, Fluentd, Kafka, NVIDIA, Rabbit MQ, and Redis.  
 
-  For the latest list of integrations, see [Integrations Supported for Onboarded Subscriptions](integrations_onboarded_subscriptions.html).
-
 * Operations for Applications Usage -- Made bug fixes to the **Committed Rate vs Monthly Usage (PPS P95) for Billable** and **Usage (PPS) vs Remaining Balance (PPS P95) for Burndown** dashboards.
 
 * Fluentd -- Updated the setup steps and instructions. You can now set up the integration and the Kubernetes Metrics Collector by using the Observability for Kubernetes Operator. 
diff --git a/pages/doc/logging_logs_settings.md b/pages/doc/logging_logs_settings.md
index 1899b5f4d..c9c74d5a4 100644
--- a/pages/doc/logging_logs_settings.md
+++ b/pages/doc/logging_logs_settings.md
@@ -8,9 +8,7 @@ summary: Learn how you can customize logs settings from the Organization Setting
 
 Users with access to the logs settings can map metrics tags to logs tags, traces tags to logs tags, and customize the time window you see on a chart or Traces Browser when you drill into logs from a chart and trace.
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, only users with the **Super Admin**  service role in Super Admin mode can customize the logs settings.<br/>
-- For original Operations for Applications subscriptions, users with the **Accounts** permission can customize the logs settings."%}
+Users with the **Accounts** permission can customize the logs settings.
 
 ## Map Tags
 
diff --git a/pages/doc/logging_overview.md b/pages/doc/logging_overview.md
index 07d115d27..c72f34e59 100644
--- a/pages/doc/logging_overview.md
+++ b/pages/doc/logging_overview.md
@@ -39,8 +39,7 @@ summary: Learn about VMware Aria Operations for Applications (formerly known as
     Our service retains logs for 30 days during the Logs free trial or retains logs for 7 days when on the freemium subscription! To retain logs for a longer period, contact your account representative or [technical support](wavefront_support_feedback.html#support).
   </li>
   <li>
-    Only users with the <b>Logs</b> permission can view the Logs Browser and drill down into logs from charts, alerts, and traces.
-    <p>The steps to add roles and permissions differ for <a href="wavefront_release_notes.html#vmware-aria-operations-for-applications-on-vmware-cloud-services">Onboarded and Original subscriptions</a>. See add permissions details for Onboarded subscriptions and <a href="users_roles.html">Original subscriptions</a>.</p>
+    Only users with the <b>Logs</b> permission can view the Logs Browser and drill down into logs from charts, alerts, and traces. See <a href="users_roles.html"> for details.</a>.</p>
   </li>
 </ul>
 {{site.data.alerts.end}}
diff --git a/pages/doc/logging_proxy_configurations.md b/pages/doc/logging_proxy_configurations.md
index afef7d064..c670a3b6d 100644
--- a/pages/doc/logging_proxy_configurations.md
+++ b/pages/doc/logging_proxy_configurations.md
@@ -162,42 +162,6 @@ We've added the following configuration properties for logs to the already exist
 </tbody>
 </table>
 
-### Properties for VMware Cloud Services Subscriptions
-
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until they migrate to VMware Cloud services. The content in this section is valid for **onboarded** subscribers. For information about original and new subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html)." %}
-
-VMware Cloud services provides access to both VMware Aria Operations for Logs and VMware Aria Operations for Applications. Therefore, to send logs data and see the data on the Operations for Applications Logs Browser, you must configure the proxy with the Operations for Logs URL and token. 
-
-
-<table style="width: 100%;">
-  <thead>
-    <tr>
-      <th width="30%">Property</th>
-      <th width="70%">Description</th>
-    </tr>
-  </thead>
-  <tbody>
-    <tr>
-      <a name="logServerIngestionURL"></a>
-      <td>
-        logServerIngestionURL
-      </td>
-      <td markdown="span">
-        The URL you use to send data to Operations for Logs.
-      </td>
-    </tr>
-    <tr>
-      <a name="logServerIngestionToken"></a>
-      <td>
-        logServerIngestionToken
-      </td>
-      <td markdown="span">
-        The authorization token that was given by Operations for Logs.
-      </td>
-    </tr>
-  </tbody>
-</table>
-
 ## Proxy Preprocessor Rules for Logs
 
 The Wavefront proxy includes a preprocessor that applies rules before the log data is sent to our service. Logs store data in tags, that are key-value pairs. The rules listed below, update the log tag value.
diff --git a/pages/doc/permissions_overview.md b/pages/doc/permissions_overview.md
index e87c21aaf..41e704dd4 100644
--- a/pages/doc/permissions_overview.md
+++ b/pages/doc/permissions_overview.md
@@ -7,8 +7,6 @@ permalink: permissions_overview.html
 summary: Learn about the permissions in the service.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscriptions. For VMware Cloud services subscriptions, see Operations for Applications permissions in VMware Cloud services."%}
-
 Permissions allow access control for the feature sets in VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront). [Super Admin users](authorization-faq.html#who-is-the-super-admin-user) and users with the **Accounts** permission can manage permissions for groups and accounts.
 
 {% include note.html content="Every user can [perform certain tasks](user-accounts.html#what-can-a-new-user-do). However, you must have the appropriate permission to manage objects. If you do not have permission, UI menu selections and buttons required to perform management tasks are not visible." %}
diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index e415ad31c..65f10be1d 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -12,10 +12,6 @@ VMware Aria Operations for Applications (formerly known as Tanzu Observability b
 
 You can run a proxy in a Docker container by running one of the following commands:
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The [proxy authentication](proxies_installing.html#proxy-authentication-types) to Operations for Applications differs for VMware Cloud services subscriptions and original subscriptions. For details, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, starting with version 13.0, the Wavefront proxy supports authentication to Operations for Applications with a VMware Cloud services API token or OAuth app.<br/>
-- For original Operations for Applications subscriptions, the Wavefront proxy 13.0 still supports authentication with Operations for Applications tokens. "%}
-
 **dockerhub:**
 
 Example: Run the Wavefront proxy in a container with a limit of 2 GB of memory:
diff --git a/pages/doc/proxies_installing.md b/pages/doc/proxies_installing.md
index f276b601d..1e79c25cf 100644
--- a/pages/doc/proxies_installing.md
+++ b/pages/doc/proxies_installing.md
@@ -11,10 +11,6 @@ In most cases, a Wavefront proxy must be running in your environment before metr
 
 {% include note.html content="You must have the [**Proxies** permission](permissions_overview.html) to install and manage Wavefront proxies." %}
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, starting with version 13.0, the Wavefront proxy supports authentication to Operations for Applications with a VMware Cloud services access token. <br/>
-- For original Operations for Applications subscriptions, the Wavefront proxy 13.0 still supports authentication with an Operations for Applications API token."%}
-
 ## Proxy Host Requirements
 
 - Internet access - Run `timeout 3s curl -fIsS <api_url>` from the host and make sure you get a response and not a timeout.
diff --git a/pages/doc/proxies_troubleshooting.md b/pages/doc/proxies_troubleshooting.md
index f3de61442..c6df2881f 100644
--- a/pages/doc/proxies_troubleshooting.md
+++ b/pages/doc/proxies_troubleshooting.md
@@ -278,8 +278,6 @@ INFO [AbstractReportableEntityHandler:reject] [<port>] blocked input: [WF-300 Ca
   2021-02-18 22:52:28,376 ERROR [proxy:checkinError] HTTP 401 Unauthorized: Please verify that your server and token settings are correct and that the token has Proxy Management permission!
   ```
 * Explanation: The proxy cannot connect using the token provided.
-  
-  {% include important.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The [proxy authentication](proxies_installing.html#proxy-authentication-types) to Operations for Applications differs for VMware Cloud services subscriptions and original subscriptions."%}
 
   <table>
   <tbody>
diff --git a/pages/doc/wavefront_administer.md b/pages/doc/wavefront_administer.md
index 5063b7c6d..0604a9dfd 100644
--- a/pages/doc/wavefront_administer.md
+++ b/pages/doc/wavefront_administer.md
@@ -7,8 +7,6 @@ permalink: wavefront_administer.html
 summary: Understand what you can do if you have administrative privileges.
 ---
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. The content in this chapter is valid for **original** subscribers. For information about VMware Cloud services subscriptions and original subscriptions and how they differ, see [Subscription Types](subscriptions-differences.html)."%}
-
 In VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront), Super Admin users and users with the **Accounts** permission can perform a variety of tasks, such as:
 
 * Manage the authorization and access to the Operations for Applications environment.
diff --git a/pages/doc/wavefront_api.md b/pages/doc/wavefront_api.md
index d584c7317..998e91848 100644
--- a/pages/doc/wavefront_api.md
+++ b/pages/doc/wavefront_api.md
@@ -19,8 +19,6 @@ The current version of the REST API is v2. You can access the API at `<your_inst
 
 {% include note.html content="Our REST API is not the same as the `/api` endpoint that you specify for the Wavefront proxy."%}
 
-{% include important.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For VMware Cloud services subscriptions, the authentication and authorization APIs are part of the VMware Cloud services REST API. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html)."%}
-
 ## API Documentation (Service Instance)
 
 Each Operations for Applications service instance includes Swagger-generated documentation for the REST API. In our blog post [Did You Know that Our API Docs Are Alive](https://tanzu.vmware.com/content/vmware-aria-operations-for-applications-blog/did-you-know-that-our-api-docs-are-alive) we explain how you can experiment with our API directly from this in-product documentation.
diff --git a/pages/doc/wavefront_obsolescence_policy.md b/pages/doc/wavefront_obsolescence_policy.md
index 3200c39cc..f8de10f06 100644
--- a/pages/doc/wavefront_obsolescence_policy.md
+++ b/pages/doc/wavefront_obsolescence_policy.md
@@ -181,13 +181,3 @@ rawsum(align(1m, mean, ts(\"~agent.buffer.task-count\")))
 rawsum(align(1m, mean, ts(\"~proxy.buffer.task-count\")))
 ```
 
-## Operations for Applications Authentication and Authorization
-
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. VMware Cloud services provides centralized authentication and authorization to your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications. See [Advantages of VMware Cloud Services Subscriptions Over Original Subscriptions](subscriptions-differences.html#advantages-of-vmware-cloud-services-subscriptions-over-original-subscriptions).
-
-Starting September 20, 2023, all **new trial** instances of Operations for Applications are **onboarded** to VMware Cloud services.
-
-In October, 2023, we start to incrementally onboard all **original** subscriptions, which use Operations for Applications authentication and authorization, to VMware Cloud services. 
-
-{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** your service accounts with server to server apps and your Operations for Applications API tokens with VMware Cloud Services access tokens, including the Operations for Application API tokens of your Wavefront proxies." %}
-
diff --git a/pages/doc/wavefront_prometheus.md b/pages/doc/wavefront_prometheus.md
index 2ae002251..e945dad98 100644
--- a/pages/doc/wavefront_prometheus.md
+++ b/pages/doc/wavefront_prometheus.md
@@ -8,10 +8,6 @@ summary: Run PromQL queries in the Query Editor
 
 VMware Aria Operations for Applications (previously known as Tanzu Observability by Wavefront) supports both PromQL and Wavefront Query Language (WQL) queries. The Query Editor includes admin-level organization settings for enabling PromQL and a query line GUI that includes a translation option.
 
-{% include note.html content="Starting July 3, 2023, VMware Aria Operations for Applications is a service on the VMware Cloud services platform. For information about VMware Cloud services subscriptions and original subscriptions and the differences between them, see [Subscription Types](subscriptions-differences.html).<br/>
-- For VMware Cloud services subscriptions, users with the **Super Admin** service role (in Super Admin mode) and users with the **Admin** service role can enable the PromQL support. <br/>
-- For original Operations for Applications subscriptions, users with the **Accounts** permission can enable the PromQL support."%}
-
 * Users with an administrative role in Operations for Applications have control over user defaults:
   - On the **Organization Settings** page (New User Defaults) they can enable users to write queries in PromQL.
   - If queries in PromQL are enabled, they can also set other options.

From bc83513db1e820fde7f44bb4a58a0e4f0a052793 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Fri, 28 Jun 2024 14:41:41 -0700
Subject: [PATCH 05/12] continue to remove and update paged for non-csp

---
 _data/sidebars/doc_sidebar.yml             |   8 -
 pages/doc/2022-39.x_release_notes.md       |   1 -
 pages/doc/csp_invite-AoA-users_tutorial.md | 181 ---------------------
 pages/doc/csp_subscription_types.md        |  41 -----
 pages/doc/integrations_tas_howto.md        |  11 +-
 pages/doc/logging_log_alerts.md            |   2 +-
 pages/doc/proxies_container.md             | 158 ++++--------------
 pages/doc/proxies_kube_container.md        |  17 --
 pages/doc/proxies_manual_install.md        |  19 +--
 pages/doc/purchase-additional-capacity.md  |   2 +-
 pages/doc/wavefront_api.md                 |  22 +--
 pages/doc/wavefront_interfaces.md          |   6 +-
 pages/doc/wavefront_introduction.md        |   6 -
 pages/doc/wavefront_release_notes.md       |  18 --
 pages/doc/windows_host_tutorial.md         | 120 +-------------
 pages/labels/label_integrations%20list.md  |   2 -
 16 files changed, 40 insertions(+), 574 deletions(-)
 delete mode 100644 pages/doc/csp_invite-AoA-users_tutorial.md
 delete mode 100644 pages/doc/csp_subscription_types.md

diff --git a/_data/sidebars/doc_sidebar.yml b/_data/sidebars/doc_sidebar.yml
index b90e1855a..c1b2567bf 100755
--- a/_data/sidebars/doc_sidebar.yml
+++ b/_data/sidebars/doc_sidebar.yml
@@ -22,10 +22,6 @@ entries:
     - title: Purchase Additional Capacity
       url: /purchase_additional_capacity.html
       output: web
-
-    - title: "Onboarding Original to VMware Cloud Services"
-      url: /csp_migration.html
-      output: web
    
   - title: Quickstart & Tutorials
     output: web
@@ -45,10 +41,6 @@ entries:
         output: web
         subfolderitems:
 
-        - title: "Invite New Users Tutorial"
-          url: /csp_new_users_tutorial.html
-          output: web
-
         - title: "AWS Integration Tutorial"
           url: /hello_wavefront_aws_tutorial.html
           output: web
diff --git a/pages/doc/2022-39.x_release_notes.md b/pages/doc/2022-39.x_release_notes.md
index 0d52a2892..b2f0c8efb 100644
--- a/pages/doc/2022-39.x_release_notes.md
+++ b/pages/doc/2022-39.x_release_notes.md
@@ -103,7 +103,6 @@ We extended the <b>Usage Portal</b> to <b>Usage and Subscriptions</b>, so Super
 <li>Follow the wizard to increase your monthly commitment of PPS.</li>
 </ol>
 </p>
-See <a href="purchase_additional_capacity.html">Purchase Additional Capacity</a> for details.
 </td>
 <td width="50%">
 <img src="/images/add_more_capacity.png" alt="The Add more capacity button on the Subscriptions tab.">
diff --git a/pages/doc/csp_invite-AoA-users_tutorial.md b/pages/doc/csp_invite-AoA-users_tutorial.md
deleted file mode 100644
index ee36fdf9f..000000000
--- a/pages/doc/csp_invite-AoA-users_tutorial.md
+++ /dev/null
@@ -1,181 +0,0 @@
----
-title: Invite New Users from the VMware Cloud Services Console
-keywords:
-tags: [tutorials]
-sidebar: doc_sidebar
-permalink: csp_new_users_tutorial.html
-summary: Learn how to invite new users to VMware Aria Operations for Applications through the VMware Cloud Services Console.
----
-
-Starting July 3, 2023, Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: 
-* Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform.
-* **Original** subscriptions -- the existing ones which remain as is until they migrate to VMware Cloud services. 
-
-In this tutorial, you’ll learn how to invite new users to Operations for Applications through the VMware Cloud Services Console.
-
-## Requirements
-
-When your service **is onboarded** to VMware Cloud services, all new users are invited through the VMware Cloud Services Console. 
-
-To invite users, you must have the VMware Cloud **Organization Owner** or **Organization Administrator** role. You can invite users to your organization and grant them access to the services associated with it - in this case, this is Operations for Applications. You can also track the invitations you send. Invitations are valid for up to seven days. If you have sent an invitation in error, you can revoke it.
-
-
-## Roles to Assign
-
-To invite new users, you assign them:
-
-* A role within the VMware Cloud organization, such as **Organization Administrator**, **Organization Owner**, or **Organization Member**. See [What organization roles are available in VMware Cloud services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html) in the VMware Cloud services documentation.
-    
-  Note that you can assign the **Organization Owner** role to another user only if you have the **Organization Owner** role.
-
-* A role within the Operations for Applications service instance. We provide a number of Operations for Applications service roles.
-
-   Note that in a multi-tenant Operations for Applications environment, you must specify the service instance (tenant) for which you want to assign the service role. You can assign different service roles for different service instances (tenants). You invite the users only to the tenants for which you assigned them service roles.
-
-* Optionally, a custom role created in the VMware Cloud organization. Custom roles are composed of different service permissions.
-
-   Note that a custom role with an Operations for Applications permission applies only if the user has at least one Operations for Applications service role. In a multi-tenant Operations for Applications environment, custom roles apply to all service instances (tenants) for which the user has at least one Operations for Applications service role.
-
-
-## Verify That You Have the Required Organization Role
-
-### Step 1: Log in to the VMware Cloud Services Console
-
-1. Open a Web browser window and go to [https://console.cloud.vmware.com/](https://console.cloud.vmware.com/).
-1. Enter your account email and click **Next**.
-2. Type your password then click **Sign In**.
-
-### Step 2: Navigate to Your Organization
-
-VMware Cloud uses organizations to provide controlled access to one or more services. As an enterprise using multiple cloud services, Organizations provide an easy way to map your business groups and processes to different organizations. If you belong to more organizations, you must navigate to the organization to which Operations for Applications is onboarded. 
-
-1. Click your username and click **Change Organization**.
-2. Select the name of the organization to which Operations for Applications is **onboarded**. 
-
-### Step 3: Find Your Roles Within the Organization
-
-1. Click your username and click **My Account**.
-2. On the **My Roles** tab you can see what organization roles are assigned to you.
-
-If you do not have the VMware Cloud **Organization Owner** or **Organization Administrator** role assigned, you need to request them. To understand who the VMware Cloud **Organization Owner** or **Organization Administrator** users are, you can chat with our Technical Support team or file a VMware Cloud services support request. See [How do I get support](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E4DC731F-C039-4FB2-949E-9A61584CD5BF.html) in the VMware Cloud services product documentation.
-
-
-## Example 1: Invite a New User and Assign Service Roles
-
-We provide a number of built-in Operations for Applications service roles.
-
-- A corresponding service role for each permission.
-- Two special service roles - one that grants full administrative access to the service, and another one that grants read-only access to the service.
-
-For more information, see Operations for Applications Service Roles (Built-in).
-
-### Step 1: Enter the New User Details
-
-1. Click **Identity & Access Management** in the navigation on the left and click **Active Users**.
-2. Click the **Add Users** button on top of the table.
-3. In the **Users** text box, enter the email addresses of the users that you want to invite.
-   
-   The email addresses or account names of the users must be delimited by comma, space, or a new line.
-
-### Step 2: Assign Roles and Invite the User
-
-In a multi-tenant environment, you assign service roles on a tenant basis. You can assign different service roles for different Operations for Applications instances (tenants). Let’s first assign the mandatory organization role and then assign different service roles for two Operations for Applications instances.
-
-1. Under **Assign Organization Roles**, select a mandatory organization role to assign.
-
-   The **Organization Member** role is selected by default and is the minimum mandatory role to assign. 
-   
-   You can also assign an additional role, for example, **Support User**. This means that the user will have read-only access to the VMware Cloud organization resources and will be able to submit and manage support tickets. For information about the VMware Cloud organization roles, see [What Organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html).
-
-   ![A screenshot with the Organization Member role, selected by default and the Support user additional role selected.](images/csp-mandatory-roles.png)
-
-2. Assign Operations for Applications service roles for the first Operations for Applications instance (tenant) to which you want to invite the new user.
-   1. Under **Assign Service Roles**, click **Add a Service**.
-   1. From the first drop-down menu, select **VMware Aria Operations for Applications**.
-      ![A screenshot with the Operations for Applications service selected.](images/csp-select-service.png)
-   1. From the **in** drop-down menu, select the target service instance (tenant).
-      ![A screenshot with the Operations for Applications service instance selected.](images/csp-select-aoa-service.png)
-
-      {% include note.html content="This drop-down menu is available only for multi-tenant environments. If you want to grant access to all tenants, you must assign service roles for each tenant individually (see the next Step 3). If you miss selecting the target service instance, the users receive the `401 Unauthorized: User has no access to service` error message when trying to access that tenant."%}
-
-   1. From the **with roles** drop-down menu, select the service roles to assign for the selected service instance (tenant).
-
-      Let's say that the user you're inviting will:
-   
-      * Set up external integrations
-      * Install and uninstall integration dashboards and alerts
-      * Create, manage, and delete dashboards and charts and manage dashboard tags
-      * Create, edit, and delete alerts, alert targets, and maintenance windows. Also, will manage alert tags and view alert history.
-
-      For this purpose, select the following service roles: **Proxies**, **Integrations**, **Dashboards**, and **Alerts**.
-
-      ![A screenshot with the Operations for Applications roles selected.](images/csp-assign-service-roles.png)
-   1. Leave the never expires access field as is.
-
-3. Assign another Operations for Applications service role for the second Operations for Applications instance (tenant) to which you want to invite the new user.
-   
-   1. Click **+ Add an Instance**.
-   1. From the **in** drop-down menu, select the target service instance (tenant).
-      ![A screenshot with the Operations for Applications service instance selected.](images/csp-select-another-service.png)
-   1. From the **with roles** drop-down menu, select the **Super Admin** service role, so that you grant full administrative privileges for the selected service instance.
-
-      ![A screenshot with the Operations for Applications roles selected.](images/csp-assign-superadmin-service-role.png)
-   1. Leave the never expires access field as is.
-4. Leave the **Send emails to all invited users notifying them of this role assignment** selected and click **Add**.
-
-The invitations you send are valid for seven days. You can view the status of the invitation by expanding **Identity & Access Management** and then clicking **Pending Invitations**.
-
-## Example 2: Invite a New User and Assign a Custom Role
-
-If you have created custom roles and want to assign custom roles to a user, you must make sure that you assign:
-
-* A mandatory organization role
-* At least one service role, for example **Viewer**
-* The custom roles of interest
-
-Custom roles work only in combination with service roles. In a multi-tenant environment, the Operations for Applications permissions in a custom role apply to all service instances (tenants) for which the user has at least one Operations for Applications service role.
-
-### Step 1: Enter the New User Details
-
-1. Click **Identity & Access Management** in the navigation on the left and click **Active Users**.
-2. Click the **Add Users** button on top of the table.
-3. In the **Users** text box, enter the email addresses of the users that you want to invite.
-   
-   The email addresses or account names of the users must be delimited by comma, space, or a new line.
-
-### Step 2: Assign the Roles and Invite the User
-
-Let's assign **Organization Administrator** as a mandatory organization role, then assign the **Viewer** service role for one tenant and the **Ingestion Policies** service role for another tenant. After that, we assign the custom role and it applies to the two tenants for which the user has service roles.
-
-1. Under **Assign Organization Roles**, select the **Organization Administrator** role.
-
-   ![A screenshot with the Organization Administrator role selected.](images/csp-assign-org-admin.png)
-
-2. Assign the **Viewer** service role for the first Operations for Applications service instance (tenant) to which you want to invite the new user.
-   1. Under **Assign Service Roles**, click **Add a Service**.
-   1. From the first drop-down menu, select **VMware Aria Operations for Applications**.
-      ![A screenshot with the Operations for Applications service selected.](images/csp-select-service.png)
-   1. From the **in** drop-down menu, select the target service instance (tenant) and leave the **Viewer** service role selected.
-      ![A screenshot with the Operations for Applications service instance  and the Viewer role selected.](images/csp-select-aoa-service-viewer.png)
-   1. Leave the never expires access field as is.
-3. Assign the **Ingestion Policies** service role for the second Operations for Applications service instance (tenant) to which you want to invite the new user.
-   1. Click **+Add an Instance**.
-   1. From the **in** drop-down menu, select the target service instance (tenant).
-   1. From the **with roles** drop-down menu, select the **Ingestion Policies** service role to assign it to the user for the selected tenant.
-      ![A screenshot with the Operations for Applications service instance and the Viewer and the Ingestion Policies service roles selected.](images/csp-assign-two-service-roles.png)
-   1. Leave the never expires access field as is.
-
-3. Assign the custom role for the already selected Operations for Applications service instances (tenants).
-
-   1. Click **+ Add Custom Roles Access**.
-   1. In the **Add custom role access** popup window, search for, select the custom role that you want to assign, and click **Add**.   
-   1. Leave the never expires access field as is.
-   
-   The custom role will be assigned to the user for the two tenants that we have already specified as shown in the screenshot below.
-
-   ![A screenshot with the added custom role](images/csp-add-custom-role.png)
-
-4. Leave the **Send emails to all invited users notifying them of this role assignment** selected and click **Add**.
-
-
-The invitations you send are valid for seven days. You can view the status of the invitation by expanding **Identity & Access Management** and then clicking **Pending Invitations**.
diff --git a/pages/doc/csp_subscription_types.md b/pages/doc/csp_subscription_types.md
deleted file mode 100644
index ed8121e17..000000000
--- a/pages/doc/csp_subscription_types.md
+++ /dev/null
@@ -1,41 +0,0 @@
----
-title: VMware Cloud Services vs Original Subscriptions
-keywords: 
-tags: [introduction]
-sidebar: doc_sidebar
-permalink: subscriptions-differences.html
-summary: Learn about the VMware Aria Operations for Applications subscription types and the advantages of VMware Cloud services subscriptions over original subscriptions.
----
-
-Operations for Applications subscriptions are two types: original subscriptions and VMware Cloud services subscriptions.
-
-## Why the Two Subscription Types Differ?
-
-
-
-VMware Cloud services provides single sign-on (SSO) and identity access management (IAM) to your entire VMware Cloud services portfolio across hybrid and native public clouds, including Operations for Applications. Therefore, there are differences in the experience for VMware Cloud services subscribers and original subscribers. 
-
-## Advantages of VMware Cloud Services Subscriptions Over Original Subscriptions
-
-* **VMware Cloud SSO**: VMware Cloud services provides centralized authentication for your entire VMware Cloud services portfolio. After you log in to the VMware Cloud Services Console, you can access each of your services and you can easily switch between them.
-
-* **Improved SAML SSO**: Enterprise federation is supported for a wider list of IdPs, such as: 
-  * Okta 
-  * PingIdentity
-  * Microsoft Active Directory Federation Services (ADFS)
-  * OneLogin
-  * Azure Active Directory
-
-  You can also configure any other SAML 2.0 compliant third-party IdP that is not part of the list above. See [Configure the identity provider](https://docs.vmware.com/en/VMware-Cloud-services/services/setting-up-enterprise-federation-cloud-services/GUID-320CDE08-FD8F-4540-BB19-BE9647F31075.html) in the VMware Cloud services documentation.
-
-* **Enterprise Groups Synchronization**: The enterprise groups from your federated corporate domain are available for you to assign them roles, including default roles. In addition, you can nest an enterprise group into a custom group.
-* **Centralized Authorization with Role-Based Access Control**: The VMware Cloud Services Console provides access management for your entire VMware Cloud services portfolio. It includes organization roles, service-specific roles, and custom roles, which can be assigned to users, API tokens, and sever to server apps (which correspond to service accounts in Operations for Applications).
-* **Improved Security**:
-  * VMware Cloud services supports authentication polices for user access, such as multi-factor authentication, IP authentication preferences, and user access at domain level.
-  * An API token can be assigned with a subset of the roles that its associated user owns.
-  * Users can secure their API tokens using multi-factor authentication.
-  * Interacting with the REST API requires a VMware Cloud services access token, which can be exchanged from a user's API token or server to server app credentials.
-* **Improved Multi-Tenancy**: Support of switching between tenants on different clusters. This unlocks better experience in multi-tenant environments.
-* **Centralized Billing and Subscriptions**: The VMware Cloud Services Console displays billing and subscriptions details, and allows payment methods management. This brings the billing and subscriptions experience at a completely new level as we had no such ability before.
-
-
diff --git a/pages/doc/integrations_tas_howto.md b/pages/doc/integrations_tas_howto.md
index 003398e18..b269059cf 100644
--- a/pages/doc/integrations_tas_howto.md
+++ b/pages/doc/integrations_tas_howto.md
@@ -169,7 +169,7 @@ Ensure that your environment meet requirements on the Ops Manager side and on th
   VMware Tanzu Observability by Wavefront nozzle has the following requirements:
   * Read-only access to the Doppler Firehose and Cloud Controller.
   * Access to an Operations for Applications instance.
-  * Authentication credentials. The authentication credentials depend on whether your Operations for Applications service is onboarded to VMware Cloud services.
+  * Authentication credentials.
 * **Tanzu Observability by Wavefront Requirements**
   To set up the Tanzu Application Service integration on your Operations for Applications instance, you must have:
   * Access to an Operations for Applications instance.
@@ -204,8 +204,6 @@ Download the Tanzu Observability by Wavefront nozzle file from the [Tanzu Networ
 
 The tile is now available, but the orange bar at the bottom indicates that the product is not yet configured.
 
-<!---For Assign AZs and Networks, using content from https://docs.pivotal.io/healthwatch/2-1/configuring/configuring-healthwatch.html#az  --->
-
 **To configure the nozzle:**
 
 In Ops Manager, click the Tanzu Observability by Wavefront tile. With **Settings** selected (the default), follow these steps:
@@ -229,12 +227,7 @@ In Ops Manager, click the Tanzu Observability by Wavefront tile. With **Settings
    <td width="50%"><strong>Step 2.</strong> Click <strong>Wavefront Proxy Config</strong> and specify:
    <ol><li>The URL of your Operations for Applications instance, for example, <code>https://example.wavefront.com</code>.</li>
    <li>
-       The authentication credentials for your Wavefront proxy.
-       <ul>
-          <li>If your Operations for Applications service is <strong>onboarded</strong> to VMware Cloud services, use <a href="https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-327AE12A-85DB-474B-89B2-86651DF91C77.html">server to server OAuth app credentials</a>, such as app ID and app secret. The server to server app must have the <strong>Proxies</strong> service role and must belong to the VMware Cloud organization running the Operations for Applications service instance. </li>
-          <li>If your Operations for Applications service is <strong>not onboarded</strong> to VMware Cloud services, you can still use a valid <a href="https://docs.wavefront.com/api_tokens.html">Operations for Applications API token</a>.</li>
-       </ul>
-       <p>For information about the original and onboarded subscriptions and how they differ, see <a href="https://docs.wavefront.com/subscriptions-differences.html">Subscription Types</a>.</p>
+       Add the Wavefront API token. To get the token, see <a href="https://docs.wavefront.com/api_tokens.html">Operations for Applications API token</a>.
    </li>
    <li>User-friendly name for the proxy. </li>
    <li>Click <strong>Save</strong> or click <strong>Custom</strong> (see the next step).
diff --git a/pages/doc/logging_log_alerts.md b/pages/doc/logging_log_alerts.md
index 88612d327..9fa7e65ff 100644
--- a/pages/doc/logging_log_alerts.md
+++ b/pages/doc/logging_log_alerts.md
@@ -24,7 +24,7 @@ You can create alerts for your logs data and get email notifications when the al
           You need the <b>Alerts</b> and <b>Logs</b> permissions to create and manage logs alerts.
       </li>
   </ul>
-  <p>The steps to add roles and permissions differ for onboarded and original subscriptions. For details, see how to manage roles, groups, and permissions for onboarded subscriptions and <a href="users_roles.html">original subscriptions</a>.</p>
+  <p>For details, see how to manage <a href="users_roles.html">roles, groups, and permissions</a>.</p>
   {{site.data.alerts.end}}
 
 ## Alerts Browser
diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index 65f10be1d..27e991a5b 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -16,118 +16,38 @@ You can run a proxy in a Docker container by running one of the following comman
 
 Example: Run the Wavefront proxy in a container with a limit of 2 GB of memory:
 
-* For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app:
-
-    ```
-    docker run -d \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e CSP_APP_ID=<CSP_APP_ID> \
-    -e CSP_APP_SECRET=<CSP_APP_SECRET> \
-    -e CSP_ORG_ID=<CSP_ORG_ID> \
-    -e WAVEFRONT_PROXY_ARGS='--<arg1> <value1> --<arg2> <value2>' \
-    -e JAVA_HEAP_USAGE="1650m"\
-    -m 2g \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
-
-* For VMware Cloud services subscriptions and proxy authentication with an API token:
-
-    ```
-    docker run -d \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e CSP_API_TOKEN=<CSP_API_TOKEN> \
-    -e WAVEFRONT_PROXY_ARGS='--<arg1> <value1> --<arg2> <value2>' \
-    -e JAVA_HEAP_USAGE="1650m"\
-    -m 2g \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
-
-* For original subscriptions:
-
-    ```
-    docker run -d \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e WAVEFRONT_TOKEN=<YOUR-API-TOKEN> \
-    -e WAVEFRONT_PROXY_ARGS='--<arg1> <value1> --<arg2> <value2>' \
-    -e JAVA_HEAP_USAGE="1650m"\
-    -m 2g \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
+```
+docker run -d \
+-e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
+-e WAVEFRONT_TOKEN=<YOUR-API-TOKEN> \
+-e WAVEFRONT_PROXY_ARGS='--<arg1> <value1> --<arg2> <value2>' \
+-e JAVA_HEAP_USAGE="1650m"\
+-m 2g \
+-p 2878:2878 \
+ wavefronthq/proxy:latest
+```
 
 Example: Run the proxy with preprocessor rules by using the WAVEFRONT_PROXY_ARGS. Specify the volume to use:
 
-* For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app:
-
-    ```
-    docker run \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e CSP_APP_ID=<CSP_APP_ID> \
-    -e CSP_APP_SECRET=<CSP_APP_SECRET> \
-    -e CSP_ORG_ID=<CSP_ORG_ID> \
-    -e WAVEFRONT_PROXY_ARGS='--preprocessorConfigFile /etc/wavefront/wavefront-proxy/preprocessor_rules.yaml' \
-    -v </path/to/file>/preprocessor_rules.yaml:/etc/wavefront/wavefront-proxy/preprocessor_rules.yaml:ro \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
-
-* For VMware Cloud services subscriptions and proxy authentication with an API token:
-
-    ```
-    docker run \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e CSP_API_TOKEN=<CSP_API_TOKEN> \
-    -e WAVEFRONT_PROXY_ARGS='--preprocessorConfigFile /etc/wavefront/wavefront-proxy/preprocessor_rules.yaml' \
-    -v </path/to/file>/preprocessor_rules.yaml:/etc/wavefront/wavefront-proxy/preprocessor_rules.yaml:ro \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
-* For original subscriptions:
-
-    ```
-    docker run \
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
-    -e WAVEFRONT_TOKEN=<YOUR-API-TOKEN> \
-    -e WAVEFRONT_PROXY_ARGS='--preprocessorConfigFile /etc/wavefront/wavefront-proxy/preprocessor_rules.yaml' \
-    -v </path/to/file>/preprocessor_rules.yaml:/etc/wavefront/wavefront-proxy/preprocessor_rules.yaml:ro \
-    -p 2878:2878 \
-    wavefronthq/proxy:latest
-    ```
+```
+docker run \
+-e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api \
+-e WAVEFRONT_TOKEN=<YOUR-API-TOKEN> \
+-e WAVEFRONT_PROXY_ARGS='--preprocessorConfigFile /etc/wavefront/wavefront-proxy/preprocessor_rules.yaml' \
+-v </path/to/file>/preprocessor_rules.yaml:/etc/wavefront/wavefront-proxy/preprocessor_rules.yaml:ro \
+-p 2878:2878 \
+wavefronthq/proxy:latest
+```
     
 **Harbor:**
 
-* For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app:
-
-    ```
-    docker run -d\
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api/ \
-    -e CSP_APP_ID=<CSP_APP_ID> \
-    -e CSP_APP_SECRET=<CSP_APP_SECRET> \
-    -e CSP_ORG_ID=<CSP_ORG_ID> \
-    -e WAVEFRONT_PROXY_ARGS=''--<arg1> <value1> --<arg2> <value2>''\
-    -p 2878:2878 projects.registry.vmware.com/tanzu_observability/proxy:latest
-    ```
-
-* For VMware Cloud services subscriptions and proxy authentication with an API token:
-
-    ```
-    docker run -d\
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api/ \
-    -e CSP_API_TOKEN=<CSP_API_TOKEN> \
-    -e WAVEFRONT_PROXY_ARGS=''--<arg1> <value1> --<arg2> <value2>''\
-    -p 2878:2878 projects.registry.vmware.com/tanzu_observability/proxy:latest
-    ```
-* For original subscriptions:
-
-    ```
-    docker run -d\
-    -e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api/ \
-    -e WAVEFRONT_TOKEN=<YOUR_API_TOKEN>
-    -e WAVEFRONT_PROXY_ARGS=''--<arg1> <value1> --<arg2> <value2>''\
-    -p 2878:2878 projects.registry.vmware.com/tanzu_observability/proxy:latest
-    ```
+```
+docker run -d\
+-e WAVEFRONT_URL=https://<myinstance>.wavefront.com/api/ \
+-e WAVEFRONT_TOKEN=<YOUR_API_TOKEN>
+-e WAVEFRONT_PROXY_ARGS=''--<arg1> <value1> --<arg2> <value2>''\
+-p 2878:2878 projects.registry.vmware.com/tanzu_observability/proxy:latest
+```
 
 Options:
 
@@ -135,11 +55,7 @@ Options:
 <tbody>
 <tr>
 <td width="20%"><strong>Authentication</strong></td>
-<td width="80%">Depends on your <a href="subscriptions-differences.html">subscription type</a> and <a href="proxies_installing.html#proxy-authentication-types">proxy authentication type</a>.
-<ul>
-<li>For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app, CSP_APP_ID and CSP_APP_SECRET are the server to server app credentials (ID and secret). The server to server app must be assigned with the <strong>Proxies</strong> service role and must be added to the VMware Cloud organization running the Operations for Applications service instance. CSP_ORG_ID is the ID of the VMware Cloud organization.</li>
-<li>For VMware Cloud services subscriptions and proxy authentication with an API token, CSP_API_TOKEN is the VMware Cloud services API token. The API token and its associated user account must be assigned with the <strong>Proxies</strong> service role.</li>
-<li>For original subscriptions, WAVEFRONT_TOKEN is the Operations for Applications API token. The user account or service account associated with the API token must be assigned with the <strong>Proxies</strong> permission.</li></ul>
+<td width="80%">The WAVEFRONT_TOKEN is the Operations for Applications API token. The user account or service account associated with the API token must be assigned with the <strong>Proxies</strong> permission.
 </td>
 </tr>
 <tr>
@@ -271,23 +187,9 @@ To add the CA certificates of the HTTPS proxy to the Wavefront proxy that runs i
 
 Example: Run a command like the following for testing (see the Docker documentation for the command in production environments):
 
-* For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app:
-
-    ```
-    docker run -it -e WAVEFRONT_URL=xxxxxxx -e CSP_APP_ID=xxxxxx CSP_APP_SECRET=xxxxxx CSP_ORG_ID=xxxxxx -p 2878:2878 -v /Users/user42/wavefront/ca_certs_test/to_docker:/tmp/ca proxy
-    ```
-
-* For VMware Cloud services subscriptions and proxy authentication with an API token:
-
-    ```
-    docker run -it -e WAVEFRONT_URL=xxxxxxx -e CSP_API_TOKEN=xxxxxx -p 2878:2878 -v /Users/user42/wavefront/ca_certs_test/to_docker:/tmp/ca proxy
-    ```
-
-* For original subscriptions:
-
-    ```
-    docker run -it -e WAVEFRONT_URL=xxxxxxx -e WAVEFRONT_TOKEN=xxxxxx -p 2878:2878 -v /Users/user42/wavefront/ca_certs_test/to_docker:/tmp/ca proxy
-    ```
+```
+docker run -it -e WAVEFRONT_URL=xxxxxxx -e WAVEFRONT_TOKEN=xxxxxx -p 2878:2878 -v /Users/user42/wavefront/ca_certs_test/to_docker:/tmp/ca proxy
+```
 
 You must specify:
 * WAVEFRONT_URL: The URL of your Operations for Applications service (e.g., https://example.wavefront.com)
diff --git a/pages/doc/proxies_kube_container.md b/pages/doc/proxies_kube_container.md
index 2ee6355bc..2e5f5c8ac 100644
--- a/pages/doc/proxies_kube_container.md
+++ b/pages/doc/proxies_kube_container.md
@@ -82,23 +82,6 @@ spec:
         env:
         - name: WAVEFRONT_URL
           value: <https://<your_instance>.wavefront.com/api/
-        # Uncomment the lines for your subscription type and proxy authentication type.
-        # For VMware Cloud services subscriptions and proxy authentication with a server to server OAuth app, uncomment the below lines:
-        #- name: CSP_APP_ID
-        #  value: <CSP_APP_ID>
-        #- name: CSP_APP_SECRET
-        #  value: <CSP_APP_SECRET>
-        #- name: CSP_ORG_ID
-        #  value: <CSP_ORG_ID>
-        # For VMware Cloud services subscriptions and proxy authentication with an API token, uncomment the below lines:
-        #- name: CSP_API_TOKEN
-        #  value: <CSP_API_TOKEN>
-        # For original subscriptions:
-        #- name: WAVEFRONT_TOKEN
-        #  value: <YOUR-API-TOKEN>
-        # Uncomment the below lines to consume Zipkin/Istio traces
-        #- name: WAVEFRONT_PROXY_ARGS
-        #  value: --traceZipkinListenerPorts 9411
         - name: WAVEFRONT_PROXY_ARGS
           value: --preprocessorConfigFile /preprocessor-config/preprocessor_rules.yaml --histogramDistListenerPorts 40000 --traceListenerPorts 2878
         ports:
diff --git a/pages/doc/proxies_manual_install.md b/pages/doc/proxies_manual_install.md
index ec002782e..32a4ed124 100644
--- a/pages/doc/proxies_manual_install.md
+++ b/pages/doc/proxies_manual_install.md
@@ -22,8 +22,6 @@ Follow these steps to install a proxy on a host with full network access (incomi
 
 - **Networking:** [Test connectivity](proxies_manual_install.html#testing-proxy-host-connectivity) between the target proxy host and your Operations for Applications service.
 
-   {% include important.html content="For VMware Cloud services subscriptions, to retrieve a VMware Cloud services access token, the Wavefront proxy calls the VMware Cloud services API. For that reason, you must also test connectivity between the target proxy host and the VMware Cloud services platform (`https://console.cloud.vmware.com/`). For details about original and VMware Cloud services subscriptions, see [Subscription Types](subscriptions-differences.html)."%}
-
 - **JRE:** The Wavefront proxy is a Java jar file and requires a JRE - for example, openjdk11. See the requirements in the [Wavefront Proxy README file](https://github.com/wavefrontHQ/wavefront-proxy#requirements).
 
     {% include note.html content="Starting with Wavefront proxy 11.1, the proxy installation packages don't include JRE. Before you can install the proxy `.rpm` or `.deb` file, you must have the JRE in the execution path." %}
@@ -53,20 +51,7 @@ Before you can customize the proxy configuration, you have to find the values fo
 </tr>
 <tr>
 <td><strong>token</strong></td>
-<td>A valid Operations for Applications token associated with an active user or service account. The account must have the <strong>Proxies</strong> permission.<p><strong>Note:</strong> Applies only to original Operations for Applications subscriptions that are not onboarded to VMware Cloud services, i.e. when <a href="proxies_installing.html#proxy-authentication-types">the proxy authenticates</a> to Operations for Applications with an Operations for Applications API token.</p></td>
-<td></td>
-</tr>
-<tr>
-<td><p><strong>cspAppId</strong></p><p><strong>cspAppSecret</strong></p><p><strong>cspOrgId </strong></p></td>
-<td>Server to server OAuth app credentials - ID and secret (<strong>cspAppId</strong> and <strong>cspAppSecret</strong>), and the VMware Cloud organization ID (<strong>cspOrgId</strong>) running the Operations for Applications service instance. The server to server app must have the <strong>Proxies</strong> service role and must belong to the VMware Cloud organization running the Operations for Applications service instance. 
-<p><strong>Note:</strong> Applies only to Operations for Applications subscriptions on VMware Cloud services if <a href="proxies_installing.html#proxy-authentication-types">the proxy authenticates</a> to Operations for Applications with a VMware Cloud services OAuth app.</p> </td>
-<td></td>
-</tr>
-<tr>
-<td><strong>cspAPIToken</strong></td>
-<td>A valid VMware Cloud services API token associated with an active user account. The user and the token must have the <strong>Proxies</strong> service role.
-<p><strong>Note:</strong> Applies only to Operations for Applications subscriptions on VMware Cloud services if <a href="proxies_installing.html#proxy-authentication-types">the proxy authenticates</a> to Operations for Applications with a VMware Cloud services token.</p>
-</td>
+<td>A valid Operations for Applications token associated with an active user or service account. The account must have the <strong>Proxies</strong> permission.</td>
 <td></td>
 </tr>
 <tr>
@@ -147,8 +132,6 @@ In some cases, you might need to run the proxy on a host with limited network ac
 
 - **Networking:** The minimum requirement is an outbound HTTPS connection to your Operations for Applications service, so the proxy can send metrics to the service. For metrics, by default the proxy uses port 2878. You can change this port and you can configure [separate proxy ports](proxies_configuring.html#configuration-properties) for histograms and traces.
 
-   {% include important.html content="For VMware Cloud services subscriptions, to retrieve a VMware Cloud services access token, the Wavefront proxy calls the VMware Cloud services API. For that reason, your environment must also allow an outbound HTTPS connection to the VMware Cloud services platform (`https://console.cloud.vmware.com/`). For details about original and VMware Cloud services subscriptions, see [Subscription Types](subscriptions-differences.html)."%}
-
   You can use an [HTTP proxy](#configure-wavefront-proxy-with-an-httphttps-proxy) for the connection.
 
 - **JRE:** The Wavefront proxy is a Java jar file and requires a JRE - for example, openjdk11. See the requirements in the [Wavefront Proxy README file](https://github.com/wavefrontHQ/wavefront-proxy#requirements).
diff --git a/pages/doc/purchase-additional-capacity.md b/pages/doc/purchase-additional-capacity.md
index 604afa595..78a7747d0 100644
--- a/pages/doc/purchase-additional-capacity.md
+++ b/pages/doc/purchase-additional-capacity.md
@@ -26,7 +26,7 @@ Currently, you can buy additional capacity only if you have a billable commit co
 1. Verify the resulting **New commitment** of PPS per [billing period](glossary.html#b) and the **Current Level** pricing tier, and click **Next**.
 1. Select the billing model and commit duration for the additional capacity, and click **Proceed to checkout**.
 
-    The billing model and commit duration for the additional capacity are the same as for the original subscription. Billing model and commit duration cannot be changed.
+    The billing model and commit duration for the additional capacity are the same. Billing model and commit duration cannot be changed.
 
 After checking out, you will see an order confirmation message. Typically, it takes 24 hours to fulfil an order. Once your additional capacity becomes available, you'll receive an email notification. 
 
diff --git a/pages/doc/wavefront_api.md b/pages/doc/wavefront_api.md
index 998e91848..dcfd2a1b5 100644
--- a/pages/doc/wavefront_api.md
+++ b/pages/doc/wavefront_api.md
@@ -33,8 +33,6 @@ To access the Operations for Applications REST API documentation:
 
 ![REST API in a product instance](/images/rest_api.png)
 
-{% include important.html content="For VMware Cloud services subscriptions, to access the VMware Cloud services API documentation, go to [https://console.cloud.vmware.com/csp/gateway/portal/#/api-docs](https://console.cloud.vmware.com/csp/gateway/portal/#/api-docs)."%}
-
 ## API Documentation (VMware Developer)
 
 If you don't have access to a service instance, you can have a look at our [Operations for Applications API doc](https://developer.vmware.com/apis/714/) on the VMware Developer website.
@@ -43,22 +41,14 @@ We include an overview and a Swagger-generated API Reference. We update the refe
 
 ![REST API in VMware Developer](/images/vmware_code_api.png)
 
-{% include important.html content="For VMware Cloud services subscriptions, you can have a look at the [VMware Cloud services API doc](https://developer.vmware.com/apis/csp/csp-iam/latest/) on the VMware Developer website."%}
-
 The [VMware Developer website](https://developer.vmware.com/samples?categories=Sample&tags=wavefront) also includes some samples, for example, for getting data into Operations for Applications. We're providing these samples as is - some are from our team, others will come from the community.
 
 <a id="generating-an-api-token"></a>
 
 ## Invoking the Operations for Applications REST API
 
-You can invoke the API using `curl` or from an API client. In either case, you must use a token.
-
-The token that you need depends on your [subscription type](subscriptions-differences.html). 
-
-* For VMware Cloud services subscriptions, invoking the Operations for Application REST API requires a VMware Cloud services access token.
-* For original subscriptions, invoking the Operations for Application REST API requires an Operations for Application API token.
-
-See [Use the Operations for Applications REST API](using_wavefront_api.html) for details and examples.
+You can invoke the API using `curl` or from an API client. In either case, you must use an Operations for Application API token..
+For details,see [Use the Operations for Applications REST API](using_wavefront_api.html) for details and examples.
 
 ## Generate an API Client Using Swagger
 
@@ -92,12 +82,8 @@ The REST API supports the following objects corresponding to different categorie
 - **Access Policy** - Lets you allow or deny access to embedded charts. For information, see [Allow or Deny Access to Embedded Charts](ui_sharing.html#allow-or-deny-access-to-embedded-charts).
 - **Access** - Provides information on the access level of an entity. See [Notes on the Access Category](#access) below.
 - **Account (User and Service Account)** - Allows users with [**Accounts** permission](permissions_overview.html) to retrieve a list of all [accounts](users_roles.html), create, update, and delete accounts and manage permissions and groups associated with accounts.
-
-    {% include note.html content="Applies only to original subscriptions. See the [Operations for Applications subscription types](subscriptions-differences.html)."%}
 - **Alert** - Retrieve active, snoozed, in-maintenance, and invalid alerts. Users with [**Alerts** permission](permissions_overview.html) can create and update alerts.
 - **ApiToken** - Allows users with [**Accounts** permission](permissions_overview.html) to retrieve, create, and manage API tokens. Used primarily in conjunction with service accounts.
-
-    {% include note.html content="Applies only to original subscriptions. See the [Operations for Applications subscription types](subscriptions-differences.html)."%}
 - **Cloud Integration** - Retrieve cloud integration data types such as those available with the [AWS integration](integrations_aws_metrics.html), [Google Cloud Platform Integration](gcp.html), [Google Cloud Billing Integration](gcp_billing.html), [New Relic Integration](newrelic.html), [AppDynamics Integration](appdynamics.html), [Dynatrace Integration](dynatrace.html), [Microsoft Azure Integration](azure.html), [VMware Aria Operations (SaaS) Integration](vrops.html), and the [Snowflake Integration](snowflake.html). Users with [**Proxies** permission](permissions_overview.html) can add and remove cloud integration data types.
 - **Dashboard** - Retrieve data about dashboards, list dashboards, and return version history. Users with [**Dashboards** permission](permissions_overview.html) can save, create, delete, clone, undelete dashboards.
 - **Derived Metric** - Manage derived metrics.
@@ -112,16 +98,12 @@ The REST API supports the following objects corresponding to different categorie
 - **Proxy** - Retrieve information about Wavefront proxies. Users with [**Proxies** permission](permissions_overview.html) can add and remove Wavefront proxies.
 - **Query** - Perform queries.
 - **Role** - Retrieve information about a role and manage roles and role assignees.
-
-    {% include note.html content="Applies only to original subscriptions. See the [Operations for Applications subscription types](subscriptions-differences.html)."%}
 - **Saved Search** - Retrieve, add, and remove saved searches.
 - **Search** - Search agents, alerts, integrations, dashboards, external links, maintenance windows, sources, and webhook alert targets.
 - **Source** - Retrieve sources and tags associated with a source. Users with [**Source Tags** permission](permissions_overview.html) can add and remove source tags and set descriptions.
 - **Usage** - Retrieve information about usage associated with ingestion policies and manage policies.
 - **User** - Deprecated API. Use **Account (User and Service Account)** instead.
 - **UserGroup** - Allows users with [**Accounts** permission](permissions_overview.html) to retrieve a list of all groups, create, update, and delete groups, and manage the users and roles associated with a group.
-
-    {% include note.html content="Applies only to original subscriptions. See the [Operations for Applications subscription types](subscriptions-differences.html)."%}
 - **Webhook** - Retrieve webhooks. Users with [**Alerts** permission](permissions_overview.html) can create, update, and delete webhooks.
 
 <a name="access"></a>
diff --git a/pages/doc/wavefront_interfaces.md b/pages/doc/wavefront_interfaces.md
index 6b6e3bbf9..f03efeb4c 100644
--- a/pages/doc/wavefront_interfaces.md
+++ b/pages/doc/wavefront_interfaces.md
@@ -21,11 +21,7 @@ Operations for Applications provides different kinds of interfaces for performin
 <tr>
 <td markdown="span">Operations for Applications user interface (UI)</td>
 <td>Interacting directly with Operations for Applications from your browser. Sample tasks include visualizing metrics, histograms, and trace data in charts and dashboards, running queries, setting up alerts and alert notifications, installing and managing integrations, creating events, and so on.
-<p>In the <strong>original</strong> Operations for Applications subscriptions, this interface also provides support for managing users, user groups, roles, permissions, and preferences. For information about original and onboarded subscriptions and the differences between them, see <a href="subscriptions-differences.html">Subscription Types</a>. </p></td>
-</tr>
-<tr>
-<td markdown="span">VMware Cloud Services Console</td>
-<td>In the <strong>onboarded</strong> Operations for Applications subscriptions, VMware Cloud services provides support for managing users, user groups, roles, and preferences. For information about original and onboarded subscriptions and the differences between them, see <a href="subscriptions-differences.html">Subscription Types</a>. </td>
+</td>
 </tr>
 <tr>
 <td markdown="span">[Operations for Applications REST API](wavefront_api.html) </td>
diff --git a/pages/doc/wavefront_introduction.md b/pages/doc/wavefront_introduction.md
index 04b1558ee..2d4b35ea1 100644
--- a/pages/doc/wavefront_introduction.md
+++ b/pages/doc/wavefront_introduction.md
@@ -7,12 +7,6 @@ summary: Learn about the architecture, interfaces, and how to get started.
 ---
 VMware Aria Operations for Applications (formerly known as Tanzu Observability by Wavefront) is a high-performance streaming analytics platform that supports observability for metrics, counters, histograms, and traces/spans. The product is unique because it scales to very high data ingestion rates and query loads. You can collect data from many services and sources across your entire application stack, and can look at details for earlier data that were ingested earlier.
 
-## Where Do I Start?
-
-You need an account to get started. 
-
-Starting July 3, 2023, Operations for Applications is a service on the [VMware Cloud services platform](https://console.cloud.vmware.com/). After this date, we support two types of subscriptions: Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform and **original** subscriptions. Original subscriptions are the existing ones and they remain as is until onboarded to VMware Cloud services. For information about the subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
-
 ## Intro Videos
 
 The first <a href="https://vmwaretv.vmware.com/media/t/1_1rfs66nv" target="_blank">video<img src="/images/video_camera.png" alt="video camera icon"/></a> is a 90 second overview of **how you can use** explore data and create alerts. Note that this video was created in 2020 and some of the information in it might have changed. It also uses the 2020 version of the UI.
diff --git a/pages/doc/wavefront_release_notes.md b/pages/doc/wavefront_release_notes.md
index a1dc08ad1..cdbb91cb0 100644
--- a/pages/doc/wavefront_release_notes.md
+++ b/pages/doc/wavefront_release_notes.md
@@ -23,24 +23,6 @@ If you require assistance or would like to submit a ticket on or after May 6, al
 
 For details, see the KB article [VMware Tanzu Support moving to Broadcom Support Portal May 6th](https://support.cloudhealthtech.com/hc/en-us/articles/26164366649741-VMware-Tanzu-Support-moving-to-Broadcom-Support-Portal-May-6th).
 
-
-### VMware Aria Operations for Applications on VMware Cloud Services
-
-Starting July 3, 2023, VMware Aria Operations for Applications is a service on the [VMware Cloud services platform](https://console.cloud.vmware.com/). After this date, we support two types of subscriptions: 
-
-* **Onboarded Subscriptions**: Operations for Applications subscriptions that are onboarded to the VMware Cloud services platform. 
-* **Original Subscriptions**: Existing subscriptions which remain as is until onboarded to VMware Cloud services. 
-   
-For information about the two subscription types and how they differ, see [Subscription Types](subscriptions-differences.html).
- 
-{% include note.html content="We will support both original and onboarded subscriptions until all original subscriptions are onboarded to VMware Cloud services."%}
-
-### Onboarding Original VMware Aria Operations for Applications to VMware Cloud Services
-
-In October, 2023, we start to incrementally **onboard** all original subscriptions to VMware Cloud services. You will receive a notification in your Operations for Applications UI with the date scheduled for your service onboarding to VMware Cloud services. Make sure that you get familiar with the VMware Cloud services platform and prepare for the onboarding. 
-
-{% include warning.html content="The Operations for Applications authentication and authorization will be **deprecated** in the future. Therefore, after onboarding to VMware Cloud services, **replace** your service accounts with server to server apps and your Operations for Applications API tokens with VMware Cloud Services access tokens, including the Operations for Application API tokens of your Wavefront proxies." %}
-
 <!--
 ## 2024-10.x Release Notes
 
diff --git a/pages/doc/windows_host_tutorial.md b/pages/doc/windows_host_tutorial.md
index 6861faf43..b983f4f5b 100644
--- a/pages/doc/windows_host_tutorial.md
+++ b/pages/doc/windows_host_tutorial.md
@@ -7,125 +7,9 @@ permalink: windows_host_tutorial.html
 summary: Get data from a Windows host and monitor in VMware Aria Operations for Applications.
 ---
 
-Starting July 3, 2023, Operations for Applications is a service on the VMware Cloud services platform. After this date, we support two types of subscriptions: 
-* Operations for Applications subscriptions **onboarded** to the VMware Cloud services platform.
-* **Original** subscriptions -- the existing ones which remain as is until they migrate to VMware Cloud services. 
+In this video tutorial, you’ll learn how to ingest data from a Windows host machine to Operations for Applications by using a Wavefront proxy. Although Operations for Applications supports direct ingestion in non-production environments, such as POC or development and test environments, in production environments using a Wavefront proxy is the recommended and supported way for ingesting data.
 
-In this tutorial, you’ll learn how to ingest data from a Windows host machine to Operations for Applications by using a Wavefront proxy. Although Operations for Applications supports direct ingestion in non-production environments, such as POC or development and test environments, in production environments using a Wavefront proxy is the recommended and supported way for ingesting data.
-
-## Onboarded Subscriptions
-
-When your service **is onboarded** to VMware Cloud services, the Wavefront proxy requires a VMware Cloud services access token with the **Proxies** service role. There are two options for the proxy to retrieve the access token and you can configure the proxy with:
-
-- The credentials of a server to server OAuth app that belongs to the VMware Cloud organization running the service.
-
-- An API token that belongs to your user account in the VMware Cloud organization running the service. 
-   
-  Note that, periodically, you might need to regenerate the API token and reconfigure the proxy. This depends on the TTL configuration of the API token.
-
-In this tutorial, we will create a server to server OAuth app in VMware Cloud services and we'll retrieve the necessary credentials. Then we will install the Wavefront proxy and the Telegraf agent on the same Window host and we'll start to monitor the metrics flowing from the same Windows host.
-
-### Step 1: Create a Server to Server OAuth App in Your Organization
-
-Let's create a server to server OAuth app and retrieve the app ID and app secret. You will need the app ID and app secret when you install the Wavefront proxy.
-
-1. Log in to the VMware Cloud Services Console as a user with the required permissions, such as **Organization Owner**, **Organization Administrator**, or an **Organization Member** with the **Developer** additional role assigned.
-
-   For details about the organization roles in VMware Cloud Services, see [What Organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html).
-
-   1. In a Web browser, navigate to [https://console.cloud.vmware.com/](https://console.cloud.vmware.com/).
-   1. Enter your account email and click **Next**.
-   1. Type your password and click **Sign In**.
-
-2. In the navigation panel on the left, click **Organization > OAuth Apps** and click the **Create App** button.
-3. Select **Server to server app** and click **Continue**.
-4. Provide a meaningful name and description of the app.
-   For example:
-   * **App Name**: `wavefront_proxy`.
-   * **App Description**: `Server to server app to use for my Windows integration setup.`
-5. In the **Access Token TTL** field, specify the time to live for the access token of your server to server app. 
-6. Define the scopes by assigning roles to the server to server app.
-   For example:
-   1. Assign the **Organization Member** organization role.
-   1. Search for `Operations for Applications` in the list of scopes, expand the **VMware Aria Operations for Applications** service roles, and select **Proxies**.
-    
-   {% include note.html content="Note that these are the minimum required roles for the server to server app that you'll use to install the Wavefront proxy." %}
-
-7. Click **Create**.
-8. On the **OAuth app created** screen, click **Download JSON**, save the file to a secure place, and click **Continue**.
-   
-   The JSON file contains the app ID and app secret that you need when you install the Wavefront proxy.
-
-9. To add your newly created app to the organization, on the **Add to this organization** page, click **Add**.
-
-
-### Step 2: Retrieve the Organization ID
-
-You will need the organization ID when you install the Wavefront proxy.
-
-1. In the VMware Cloud Services Console, click your user name.
-
-   You see the name of the organization and the organization ID below it.
-3. Click the **Copy** icon.
-4. Paste the organization ID in a text file to have it handy.
-
-{% include note.html content="To install the Wavefront proxy, you need the long organization ID." %}
-
-
-### Step 3: Navigate to Operations for Applications
-
-To install the Wavefront proxy, set up an integration, and install integration dashboards, you must have the **Proxies** and **Integrations** permissions. For more information see Operations for Applications Permissions in VMware Cloud Services.
-
-1. In the VMware Cloud Services Console, click VMware Cloud Services.
-2. Search for Operations for Applications and click the **VMware Aria Operations for Applications** tile.
-3. Click **Launch Service**.
-   
-   In a multi-tenant environment, you should also select a tenant.
-   
-   ![Operations for Applications tile with a drop-down menu displaying the available tenants.](images/csp_multi_tenancy.png)
-
-### Step 4: Start the Setup Process
-
-1. In your Operations for Applications service instance, click **Integrations** on the toolbar.
-2. Click the **Windows Host** integration tile.
-3. Click the **Setup** tab.
-
-### Step 5: Install the Wavefront Proxy
-
-1. Download [wavefront-proxy-setup.exe](https://s3-us-west-2.amazonaws.com/wavefront-cdn/windows/wavefront-proxy-setup.exe) file to the Windows host machine.
-2. Open the command prompt and navigate to the directory in which you downloaded the installer.
-3. Run the command to install the Wavefront proxy:
-
-    ```
-    .\wavefront-proxy-setup.exe /server=https://<your_product_cluster>.wavefront.com/api/ /cspAppId=<CSP_APP_ID> /cspAppSecret=<CSP_APP_SECRET> /cspOrgId=<CSP_ORG_ID> /SILENT
-
-    ```
-    Here, you must replace:
-    
-    * `<CSP_APP_ID>` with the app ID of your server to server app
-    * `<CSP_APP_SECRET>` with the app secret of your server to server app
-    * `<CSP_ORG_ID>` with the ID of your organization
-
-Once installed, the proxy automatically starts. Check `Program Files (x86)\Wavefront\wavefront.log` to verify the installation.
-
-### Step 6: Install the Telegraf Agent
-
-1. Download [wavefront-telegraf-64-setup.exe](https://s3-us-west-2.amazonaws.com/wavefront-cdn/windows/wavefront-telegraf-64-setup.exe). 
-2. Double-click the installer and follow the instructions to install Telegraf.
-
-### Step 7: Verify That Metrics Are Flowing
-
-When the Wavefront proxy and the Telegraf agent are installed and the proxy starts ingesting data to Operations for Applications, on the **Metrics** tab, you'll see the metrics that are flowing along with charts for each metric.
-
-![Screenshot of the Windows host Metrics tab with metrics that are flowing](images/windows-host-metrics-tab.png)
-
-On the **Dashboards** tab, you can see that the Windows Host dashboard installed. Click the **Windows Host Metrics** dashboard link and the dashboard opens in another browser tab.
-
-![Screenshot of the Windows host metrics dashboard](images/windows-host-dashboard.png)
-
-## Original Subscriptions
-
-Watch the following video to learn how to ingest Windows host metrics when your service is **not onboarded** to VMware Cloud services. 
+## Set Up the Integration
 
 Note that this video was created in 2021 and some of the information in it might have changed. It also uses the 2021 version of the UI.
 <p>
diff --git a/pages/labels/label_integrations%20list.md b/pages/labels/label_integrations%20list.md
index c7fa88456..ef0020c12 100644
--- a/pages/labels/label_integrations%20list.md
+++ b/pages/labels/label_integrations%20list.md
@@ -7,8 +7,6 @@ sidebar: doc_sidebar
 folder: labels
 ---
 
-<p>If your Operations for Applications service is onboarded to VMware Cloud services, you still can see, but cannot configure some of our integrations. For the list of integrations that we support when your Operations for Applications service is onboarded to VMware Cloud services, see <a href="integrations_onboarded_subscriptions.html">Integrations Supported for Onboarded Subscriptions</a>.</p>
-
 <p>The documentation pages only for a limited number of integrations contain the setup steps and instructions. If you do not see the setup steps on a certain integration doc page: </p>
 <ol><li>Navigate to the Operations for Applications GUI and click <strong>Integrations</strong> on the toolbar. </li>
 <li>Search for the integration that you want to set up and click its tile. </li>

From 4936ab0701ab3c390d2bede0e6117f5c2d748b12 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Mon, 1 Jul 2024 10:49:51 -0700
Subject: [PATCH 06/12] Update docs by removing CSP

---
 pages/doc/integrations_aws_metrics.md     |  3 --
 pages/doc/monitoring_wavefront_proxy.md   |  4 +-
 pages/doc/proxies_installing.md           |  4 --
 pages/doc/proxies_troubleshooting.md      | 46 +++--------------------
 pages/doc/purchase-additional-capacity.md |  4 --
 pages/doc/wavefront_sdks.md               |  2 -
 6 files changed, 8 insertions(+), 55 deletions(-)

diff --git a/pages/doc/integrations_aws_metrics.md b/pages/doc/integrations_aws_metrics.md
index a25fe71cb..e27962719 100644
--- a/pages/doc/integrations_aws_metrics.md
+++ b/pages/doc/integrations_aws_metrics.md
@@ -184,9 +184,6 @@ You can ingest CloudWatch logs to Operations for Applications. You can use Cloud
 
 The Wavefront proxy is required to send logs from your systems to Operations for Applications. If you have not already done so, install a [Wavefront proxy](proxies_installing.html) in your AWS environment. 
 
-* If your Operations for Applications service **is** onboarded to VMware Cloud services, install Wavefront proxy version 13.0 or later.
-* If your Operations for Applications service is **not** onboarded to VMware Cloud services, install Wavefront proxy version 12.2 or later.
-
 {% include note.html content="For optimal performance, install a standalone proxy cluster that receives only logs payload. Typically two proxy instances behind a load balancer are sufficient." %}
 
 #### Create an AWS Lambda Function
diff --git a/pages/doc/monitoring_wavefront_proxy.md b/pages/doc/monitoring_wavefront_proxy.md
index 04ccf11bd..069e5ecb9 100644
--- a/pages/doc/monitoring_wavefront_proxy.md
+++ b/pages/doc/monitoring_wavefront_proxy.md
@@ -31,7 +31,7 @@ A proxy status can be:
 <td>The proxy stopped sending data. The reason can be:
 <ul>
 <li>The sources stopped sending data to the proxy.</li>
-<li>The API token has been revoked. Applies to a VMware Cloud services API token or an Operations for Applications API token, if used for the <a href="proxies_installing.html#proxy-authentication-types">proxy authentication</a>.</li>
+<li>The API token has been revoked.</li>
 <li>The proxy service has been <a href="proxies_installing.html#start-and-stop-a-proxy">stopped or restarted</a>.
 <ul>
 <li>If the proxy is non-ephemeral, you can start the stopped proxy service again.</li>
@@ -46,7 +46,7 @@ A proxy status can be:
 </tr>
 <tr>
 <td><strong>Token Expired</strong></td>
-<td>The API token has expired. Applies to a VMware Cloud services API token or an Operations for Applications API token, if used for the <a href="proxies_installing.html#proxy-authentication-types">proxy authentication</a>. You must install a new proxy.</td>
+<td>The API token has expired. You must install a new proxy.</td>
 </tr>
 </tbody>
 </table>
diff --git a/pages/doc/proxies_installing.md b/pages/doc/proxies_installing.md
index 1e79c25cf..4eb953d84 100644
--- a/pages/doc/proxies_installing.md
+++ b/pages/doc/proxies_installing.md
@@ -18,8 +18,6 @@ In most cases, a Wavefront proxy must be running in your environment before metr
   - By default, the proxy uses port 2878. Make sure this port is reachable from other machines on your network. You can change this default separately for different types of data (metrics, histograms, traces, etc.) in the [proxy configuration file](proxies_configuring.html). For example, use `traceListenerPorts` to specify where to listen to trace data.
   - For egress, ensure that port 443 is available.
 
-    {% include important.html content="For VMware Cloud services subscriptions, to retrieve a VMware Cloud services access token, the Wavefront proxy calls the VMware Cloud services API. For that reason, your environment must allow an outbound HTTPS connection to the VMware Cloud services platform (`https://console.cloud.vmware.com/`)."%}
-
 - Memory - The proxy does not use a lot of CPU, memory, or storage. However, we recommend running the proxy on a host with at least 4GB of free memory.
 - CPU - A standalone proxy can easily handle up to 40K PPS (points per second). If you're sending more, use [multiple proxies behind a load balancer](proxies.html#production-environment-team-of-proxies--load-balancer).
 - Operating system and JRE - Wavefront proxy is a Java application and can run on operating systems supported by Java. Java 8, 9, 10 or 11 is required. See the requirements in the [Wavefront Proxy README file](https://github.com/wavefrontHQ/wavefront-proxy#requirements).
@@ -47,8 +45,6 @@ To install and run a proxy:
 1. Click **Add New Proxy**.
 1. Click the tab for your operating system and follow the steps on screen.
 
-    {% include tip.html content="If your service instance isn't onboarded to VMware Cloud services, the latest API token of your user account is prepopulated in the proxy installation command but you can change it."%}
-
 The proxy starts listening on port 2878. You can customize listener ports with the [proxy configuration file](proxies_configuring.html).
 
 ### Scripted Proxy Installation
diff --git a/pages/doc/proxies_troubleshooting.md b/pages/doc/proxies_troubleshooting.md
index c6df2881f..d8f2730a7 100644
--- a/pages/doc/proxies_troubleshooting.md
+++ b/pages/doc/proxies_troubleshooting.md
@@ -277,48 +277,14 @@ INFO [AbstractReportableEntityHandler:reject] [<port>] blocked input: [WF-300 Ca
   ```
   2021-02-18 22:52:28,376 ERROR [proxy:checkinError] HTTP 401 Unauthorized: Please verify that your server and token settings are correct and that the token has Proxy Management permission!
   ```
-* Explanation: The proxy cannot connect using the token provided.
-
-  <table>
-  <tbody>
-  <thead>
-  <tr>
-  <th width="50%">VMware Cloud Services Subscriptions</th>
-  <th width="50%">Original Subscriptions</th>
-  </tr>
-  </thead>
-  <tr>
-  <td><ul>
-  <li>If the proxy uses the <strong>OAuth app</strong> authentication type, the corresponding server to server app might have been deleted or might have not the <strong>Proxies</strong> service role.</li>
-  <li>If the proxy uses the <strong>API token</strong> authentication type, the API token might have been deleted or expired, or might have not the <strong>Proxies</strong> service role. The user account associated with the token might have been removed.</li>
-  </ul></td>
-  <td>The API token or the account associated with the API token might have been deleted or might not have the <strong>Proxies</strong> permissions.</td>
-  </tr>
-  </tbody>
-  </table>
+* Explanation: The proxy cannot connect using the token provided. The API token or the account associated with the API token might have been deleted or might not have the <strong>Proxies</strong> permissions.
 
 * Potential Resolution:
-
-  <table>
-  <tbody>
-  <thead>
-  <tr>
-  <th width="50%">VMware Cloud Services Subscriptions</th>
-  <th width="50%">Original Subscriptions</th>
-  </tr>
-  </thead>
-  <tr>
-  <td><ul>
-  <li>Validate that the API token or the OAuth app credentials that the proxy is using are correct and active.</li>
-  <li>Validate that the user account associated with the token or the corresponding server to server app is active.</li>
-  <li>Ensure that the corresponding server to server app, or the API token and the associated user account have the <strong>Proxies</strong> service role.</li></ul></td>
-  <td><ul>
-  <li>Validate that the token used by the proxy is correct and active.</li>
-  <li>Validate that the user or server account associated with the token is active.</li>
-  <li>Ensure that the user or service account associated with the token has the <strong>Proxies</strong> permission.</li></ul></td>
-  </tr>
-  </tbody>
-  </table>
+  <ul>
+    <li>Validate that the token used by the proxy is correct and active.</li>
+    <li>Validate that the user or server account associated with the token is active.</li>
+    <li>Ensure that the user or service account associated with the token has the <strong>Proxies</strong> permission.</li>
+  </ul>
 
 ### Proxy CRITICAL Messages
 
diff --git a/pages/doc/purchase-additional-capacity.md b/pages/doc/purchase-additional-capacity.md
index 78a7747d0..4d6ecc66c 100644
--- a/pages/doc/purchase-additional-capacity.md
+++ b/pages/doc/purchase-additional-capacity.md
@@ -9,10 +9,6 @@ summary: Learn how to add capacity to your current VMware Aria Operations for Ap
 
 To purchase additional capacity, you must be a **Super Admin** user.
 
-## Supported Contracts
-
-Currently, you can buy additional capacity only if you have a billable commit contract and your Operations for Applications service is connected to a VMware Cloud Services organization. If your Operations for Applications service is not connected to a VMware Cloud Services organization, or if you have a burndown commit contract, contact the Operations for Applications sales team to add more capacity to your subscription.
-
 ## How to Purchase Additional Capacity
 
 1. Log in to your service instance.
diff --git a/pages/doc/wavefront_sdks.md b/pages/doc/wavefront_sdks.md
index 45ee39034..a23658c04 100644
--- a/pages/doc/wavefront_sdks.md
+++ b/pages/doc/wavefront_sdks.md
@@ -203,8 +203,6 @@ We provide sender SDKs for:
 A sender SDK is built into each of the other observability SDKs to enable applications to communicate with Operations for Applications in one of two ways:
 * Send data directly to Operations for Applications ([direct ingestion](direct_ingestion.html)). This technique gets you up and running with minimal preparation, but is best suited for proof of concept and small-scale uses.
 
-  {% include note.html content= "Currently, if your service is onboarded to VMware Cloud services, direct ingestion by using SDK is not supported. For best performance, use a Wavefront proxy. " %} 
-
 * Send data to a [Wavefront proxy](proxies_installing.html), which then forwards the data to Operations for Applications. This technique is recommended for large-scale deployments, because the proxy provides resilience to internet outages, control over data queuing and filtering, and more.
 
 

From 145dc0c5f0d2f997daf42880fb1d68d816194b50 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Mon, 1 Jul 2024 10:52:01 -0700
Subject: [PATCH 07/12] remove csp

---
 pages/doc/tobs_faq.md | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/pages/doc/tobs_faq.md b/pages/doc/tobs_faq.md
index d43fe9824..44243ab1b 100644
--- a/pages/doc/tobs_faq.md
+++ b/pages/doc/tobs_faq.md
@@ -13,9 +13,7 @@ Yes!
 * The [AWS Integration Tutorial](hello_wavefront_aws_tutorial.html) tutorial has:
   - Detailed step-by-step instructions for ingesting data from AWS
   - Links to next steps
-* The [Windows Host Integration Tutorial](windows_host_tutorial.html) has:
-  - Detailed step-by-step instructions for ingesting data from a Windows host machine, when your Operations for Applications service **is onboarded** to VMware Cloud services.
-  - A video about ingesting data from a Windows machine when your Operations for Applications service is **not onboarded** to VMware Cloud services.
+* The [Windows Host Integration Tutorial](windows_host_tutorial.html) shows you how ingesting data from a Windows machine.
 * The [Explore Data Tutorial](tutorial_dashboards.html) gives step-by-step instructions for exploring a sample dashboard. You don't need special permissions follow these steps.
 * The [Query Language Tutorial](query_language_getting_started.html) explores the anatomy of a query, includes a few videos, and includes hands-on practice.
 * The [Alerts Browser Tutorial](alerts.html#alerts-browser-tutorial) and the [Create Alerts Tutorial](alerts_manage.html#create-alert-tutorial) get you started with alerts.

From 4353e8e0bd82b2f4af93cf91a9c0cd52e49b25a2 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Tue, 2 Jul 2024 10:38:18 -0700
Subject: [PATCH 08/12] remove vcs content

---
 pages/doc/wavefront_monitoring_spy.md |   3 -
 pages/doc/wavefront_spring_boot3.md   | 107 +++++---------------------
 2 files changed, 18 insertions(+), 92 deletions(-)

diff --git a/pages/doc/wavefront_monitoring_spy.md b/pages/doc/wavefront_monitoring_spy.md
index c117d8411..64bfc48f8 100644
--- a/pages/doc/wavefront_monitoring_spy.md
+++ b/pages/doc/wavefront_monitoring_spy.md
@@ -22,9 +22,6 @@ Use Wavefront top if you want a keyboard-driven UI that's similar to the Linux t
 
 You can also watch the video <a href="https://vmwaretv.vmware.com/media/t/1_yif61rd5" target="_blank">here <img src="/images/video_camera.png" alt="video camera icon"/></a>.
 
-To set up the Wavefront top utility you need a valid API token. For an Operations for Applications subscription on VMware Cloud services, you must use a VMware Cloud services access token. To get an access token, generate a VMware Cloud services API token associated with your user account and exchange it for the access token. Make sure that when you do this, you deselect the **Send empty value** check box for the **passcode** parameter. For more information and instructions, see [Use the Operations for Applications REST API](using_wavefront_api.html).
-
-
 ## Why Spy?
 
 The `spy` endpoints can provide insight into new data that is being ingested by your service instance. For example, you might analyze `spy` results to:
diff --git a/pages/doc/wavefront_spring_boot3.md b/pages/doc/wavefront_spring_boot3.md
index 681958e7d..bab27d221 100644
--- a/pages/doc/wavefront_spring_boot3.md
+++ b/pages/doc/wavefront_spring_boot3.md
@@ -244,7 +244,8 @@ dependencies {
       </li>
     </ol>
   </div>
-  <div role="tabpanel" class="tab-pane active" id="customer">
+
+  <div role="tabpanel" class="tab-pane" id="customer">
       <p> Follow these steps if you already have an Operations for Applications account.</p>
       <ol>
         <li>
@@ -253,11 +254,11 @@ dependencies {
           <p>The Wavefront for Spring Boot dependency needs to be compatible with the Spring Boot release version. Therefore, replace <code>$releaseVersion</code> with the correct dependency version. See <a href="#versionCompatibility">System Requirements</a> to get the correct dependency version.</p>
         {{site.data.alerts.end}}
         <ul id="profileTabs" class="nav nav-tabs">
-            <li class="active"><a href="#mavenbom" data-toggle="tab">Maven</a></li>
-            <li><a href="#gradlebom" data-toggle="tab">Gradle</a></li>
+            <li class="active"><a href="#mavenbom2" data-toggle="tab">Maven</a></li>
+            <li><a href="#gradlebom2" data-toggle="tab">Gradle</a></li>
         </ul>
           <div class="tab-content">
-            <div role="tabpanel" class="tab-pane active" id="mavenbom">
+            <div role="tabpanel" class="tab-pane active" id="mavenbom2">
               <pre>
 
 &lt;dependencyManagement&gt;
@@ -275,8 +276,7 @@ dependencies {
 &lt;/dependencyManagement&gt;
               </pre>
             </div>
-
-            <div role="tabpanel" class="tab-pane" id="gradlebom">
+            <div role="tabpanel" class="tab-pane" id="gradlebom2">
               <pre>
 dependencyManagement {
   imports {
@@ -290,11 +290,11 @@ dependencyManagement {
       <li>
         If you want to send trace data to our service using Micrometer Tracing, add the following dependencies.
         <ul id="profileTabs" class="nav nav-tabs">
-            <li class="active"><a href="#maven-dt" data-toggle="tab">Maven</a></li>
-            <li><a href="#gradle-dt" data-toggle="tab">Gradle</a></li>
+            <li class="active"><a href="#mavendt" data-toggle="tab">Maven</a></li>
+            <li><a href="#gradledt" data-toggle="tab">Gradle</a></li>
         </ul>
           <div class="tab-content">
-            <div role="tabpanel" class="tab-pane active" id="maven-dt">
+            <div role="tabpanel" class="tab-pane active" id="mavendt">
               <pre>
 &lt;dependency&gt;
   &lt;groupId&gt;io.micrometer&lt;/groupId&gt;
@@ -307,8 +307,7 @@ dependencyManagement {
 &lt;/dependency&gt;
               </pre>
             </div>
-
-            <div role="tabpanel" class="tab-pane" id="gradle-dt">
+            <div role="tabpanel" class="tab-pane" id="gradledt">
               <pre>
 dependencies {
   ...
@@ -319,91 +318,21 @@ dependencies {
             </div>
           </div>
       </li>
-      <li>
-        You need to Specify the VMware Cloud Services account instance or the Operations for Applications instance, as explained in <a href="#step-2-optional-specify-your-operations-for-applications-instance">Step 2</a> below. Otherwise, you run into errors because the freemium account settings do not support the configurations in this section.
-      </li>
     </ol>
     </div>
 </div>
 
 ### Step 2 (Optional): Specify Your Operations for Applications Instance
 
-By default, the Wavefront Spring Boot Starter creates an account for you and sends data to the Freemium instance. If you already have a VMware Cloud Services account or an Operations for Applications account, you can send data there instead by specifying the properties shown below: 
+By default, the Wavefront Spring Boot Starter creates an account for you and sends data to the Freemium instance. If you already have an Operations for Applications account, you can send data there instead by specifying the `uri` and `api-token` properties as follows:
 
-<ul id="profileTabs" class="nav nav-tabs">
-    <li class="active"><a href="#oauth" data-toggle="tab">Server to Server OAuth App</a></li>
-    <li><a href="#api" data-toggle="tab">API Token</a></li>
-</ul>
-  <div class="tab-content">
-    <div role="tabpanel" class="tab-pane active" id="oauth">
-      <p>
-        Add these properties to authenticate with the ID and Secret of a Server to Server OAuth App in VMware Cloud Services:
-      </p>
-      <pre>
-management.wavefront.api-token-type=CSP_CLIENT_CREDENTIALS
-management.wavefront.uri={ENTER_WAVEFRONT_INSTANCE_URL}
-management.wavefront.api-token=clientId={ENTER_CLIENT-ID},clientSecret={ENTER_SECRET},orgId={OPTIONAL_ORG_ID}
-wavefront.freemium-account = false
-      </pre>
-      <ul>
-        <li>
-          Replace <code>{ENTER_WAVEFRONT_INSTANCE_URL}</code> with the name of your Operations for Applications instance, for example, https://example.wavefront.com.
-        </li>
-        <li>
-          Replace <code>{ENTER_CLIENT-ID}</code> and <code>{ENTER_SECRET}</code> with the credentials (client ID and client secret) of an existing server-to-server OAuth app which has the <b>Direct Data Ingestion</b> service role assigned and is added to the VMware Cloud organization running the Operations for Applications service.
-        </li>
-        <li>
-          The <code>{OPTIONAL_ORG_ID}</code> parameter is optional, and you can replace it with the long ID of the VMware Cloud organization running the service.
-        </li>
-        <li>
-          Set <code>wavefront.freemium-account</code> as false. Because you have an Operations for Applications instance, you do not need a freemium account.
-        </li>
-      </ul>
-    </div>
-    <div role="tabpanel" class="tab-pane" id="api">
-      <ul>
-        <li>
-          <b>VMware Cloud Services API Token</b>:<br/>If you have a VMware Cloud Service account, add the following properties to authenticate with a VMware Cloud Services API Token.
-          <pre>
-management.wavefront.api-token-type=CSP_API_TOKEN
-management.wavefront.uri={ENTER_WAVEFRONT_INSTANCE_URL}
-management.wavefront.api-token={ENTER_CSP_API_TOKEN}
-wavefront.freemium-account = false
-          </pre>
-          <ul>
-            <li>
-              Replace <code>{ENTER_WAVEFRONT_INSTANCE_URL}</code> with the name of your Operations for Applications instance, for example, https://example.wavefront.com.
-            </li>
-            <li>
-              Replace <code>{ENTER_CSP_API_TOKEN}</code> with your VMware Cloud Services API token. The API token must be generated in the VMware Cloud Services Console by an active user account and must be assigned the <b>Direct Data Ingestion</b>service role.
-            </li>
-            <li>
-              Set <code>wavefront.freemium-account</code> as false. Because you have an Operations for Applications instance, you do not need a freemium account.
-            </li>
-          </ul>
-        </li>
-        <li>
-          <b>Operations for Applications API Token</b>: <br/>If you have an Operations for Applications account, add the following properties to authenticate with the API Token (legacy).
-          <pre>
-management.wavefront.api-token = {ENTER_API_TOKEN}
-management.wavefront.uri = {ENTER_WAVEFRONT_INSTANCE_URL}
-wavefront.freemium-account = false
-          </pre>
-          <ul>
-            <li>
-              Replace <code>{ENTER_WAVEFRONT_INSTANCE_URL}</code> with the name of your Operations for Applications instance, for example, https://example.wavefront.com.
-            </li>
-            <li>
-              Replace <code>{WAVEFRONT_INSTANCE_URL}</code> with the name of your Operations for Applications instance, for example, https://example.wavefront.com.
-            </li>
-            <li>
-              Set <code>wavefront.freemium-account</code> as false. Because you have an Operations for Applications instance, you do not need a freemium account.
-            </li>
-          </ul>
-        </li>
-      </ul>
-    </div>
-  </div>
+```
+management.wavefront.api-token=$API_Token
+management.wavefront.uri=$wavefront_instance
+```
+
+* `$API_Token` is a valid [API token for your Operations for Applications instance](users_account_managing.html#generate-an-api-token).
+* `$wavefront_instance` is the name of your Operations for Applications instance, for example, `https://example.wavefront.com`.
 
 ### Step 3:  View Your Data in Our Service
 

From 257f5e7f8a866fa487c3262a4e276ec84c725a90 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Wed, 3 Jul 2024 10:17:01 -0700
Subject: [PATCH 09/12] remove csp from the Docker page

---
 pages/doc/proxies_container.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index 27e991a5b..f3e6079a1 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -167,7 +167,7 @@ The following example passes the `telegraf.conf` file and any files (such as `10
 ```
 Errors with the container with WAVEFRONT_PROXY_ARGS will be logged as the container starts.
 
-* WAVEFRONT_URL together with WAVEFRONT_TOKEN or CSP_APP_ID, CSP_APP_SECRET, and CSP_ORG_ID or CSP_API_TOKEN are required parameters for the container to start.
+* WAVEFRONT_URL and WAVEFRONT_TOKEN are required parameters for the container to start.
 
 ## Configure a Containerized Wavefront Proxy with an HTTPS Proxy
 

From 574b8193ef5766e68c53e11a82a7867dc7aeeed6 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Wed, 3 Jul 2024 10:26:21 -0700
Subject: [PATCH 10/12] remove the term original from the additionak capacity
 page

---
 pages/doc/purchase-additional-capacity.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pages/doc/purchase-additional-capacity.md b/pages/doc/purchase-additional-capacity.md
index 4d6ecc66c..32e84c2c4 100644
--- a/pages/doc/purchase-additional-capacity.md
+++ b/pages/doc/purchase-additional-capacity.md
@@ -12,7 +12,7 @@ To purchase additional capacity, you must be a **Super Admin** user.
 ## How to Purchase Additional Capacity
 
 1. Log in to your service instance.
-1. If you are a Super Admin user in an original Operations for Applications subscription, [enable Super Admin mode](users_account_managing.html#enable-or-disable-super-admin-mode).
+1. If you are a Super Admin user, [enable Super Admin mode](users_account_managing.html#enable-or-disable-super-admin-mode).
 1. From the gear icon <i class="fa fa-cog"/> on the toolbar, select **Usage and Subscriptions**.
 1. Click the **Subscriptions** tab.
 

From 28fbc8e2ef451b3601b5ab1f9bfeb143423bccad Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Wed, 3 Jul 2024 13:49:35 -0700
Subject: [PATCH 11/12] update for build

---
 pages/doc/proxies_container.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index f3e6079a1..2c13506b4 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -179,7 +179,6 @@ In many environments, traffic goes through an HTTPS proxy before going to the in
 
 ![Both HTTP/HTTPS proxy and Wavefront proxy are secured](images/proxy_and_proxy.png)
 
-
 To add the CA certificates of the HTTPS proxy to the Wavefront proxy that runs in the Docker container:
 
 1. Place all PEM files in one directory.

From a7b2dfa6dbb2a13d785cd8f67cf42d79189c0865 Mon Sep 17 00:00:00 2001
From: shavidissa <shavindri.dissanayake@gmail.com>
Date: Wed, 3 Jul 2024 14:15:29 -0700
Subject: [PATCH 12/12] update for build

---
 pages/doc/proxies_container.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/pages/doc/proxies_container.md b/pages/doc/proxies_container.md
index 2c13506b4..a8d327811 100644
--- a/pages/doc/proxies_container.md
+++ b/pages/doc/proxies_container.md
@@ -77,7 +77,6 @@ Options:
 </tbody>
 </table>
 
-
 ### Proxy Versions for Containers
 
 For containers, the proxy image version is determined by the `image` property in the configuration file. You have these choices: