shajumohamed
diff --git a/‎docs/transform/media/modernize/scanner_p1_1_2.14.png
105 KB b/‎docs/transform/media/modernize/scanner_p1_1_2.14.png
105 KB
diff --git a/‎docs/transform/media/modernize/scanner_p2_3_2.14.png
64.6 KB b/‎docs/transform/media/modernize/scanner_p2_3_2.14.png
64.6 KB
diff --git a/‎docs/transform/media/modernize/scanner_p3_1_2.14.png
115 KB b/‎docs/transform/media/modernize/scanner_p3_1_2.14.png
115 KB
diff --git a/‎docs/transform/modernize-scanner-reports-workflow.md
Lines changed: 11 additions & 11 deletions b/‎docs/transform/modernize-scanner-reports-workflow.md
Lines changed: 11 additions & 11 deletions
diff --git a/‎docs/transform/modernize-scanner.md
Lines changed: 40 additions & 32 deletions b/‎docs/transform/modernize-scanner.md
Lines changed: 40 additions & 32 deletions
@@ -26,7 +26,7 @@ Column | Description
 **Scope** | Workflows are either connected to a site, list or content type.
 **Has subscriptions** | Is this workflow being used or is it just defined.
 **Enabled** | Is the workflow enabled.
-**Is OOB** | Is this one of the OOB workflows that SharePoint Online has.
+**Is OOB** | Is this one of the OOB workflows that SharePoint Online has. (OOB workflows are never analyzed)
 **List Title** | If the workflow is scoped to a list this contains the title of that list.
 **List Url** | If the workflow is scoped to a list this contains the url of that list.
 **List Id** | If the workflow is scoped to a list this contains the id of that list.
@@ -38,16 +38,16 @@ Column | Description
 **Subscription Name** | Name of the subscription created for this workflow.
 **Subscription Id** | Id of the subscription created for this workflow.
 **Definition Changed On** | When was this workflow definition last changed.
-**Subscription Changed On** | When was the workflow subscription last changed.
-**Action Count** | Number of actions detected in this workflow.
-**Used Actions** | List of the unique actions used in this workflow.
-**Used Triggers** | List of the workflow triggers that trigger this workflow to start.
-**Flow upgradability** | % indicating how well the detected actions are upgradable to Microsoft Flow.
-**Incompatible Action Count** |  Number of actions that are not compatible with Microsoft Flow.
-**Incompatible Actions** | List of unique actions which are not compatible with Microsoft Flow.
-**Change Year** | Year of last workflow definition change.
-**Change Quarter** | Quarter of last workflow definition change.
-**Change Month** | Month of last workflow definition change.
+**Subscription Changed On** | When was the workflow subscription last changed. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode)
+**Action Count** | Number of actions detected in this workflow. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Used Actions** | List of the unique actions used in this workflow. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Used Triggers** | List of the workflow triggers that trigger this workflow to start. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Flow upgradability** | % indicating how well the detected actions are upgradable to Microsoft Flow. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Incompatible Action Count** |  Number of actions that are not compatible with Microsoft Flow. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Incompatible Actions** | List of unique actions which are not compatible with Microsoft Flow. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Change Year** | Year of last workflow definition change. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Change Quarter** | Quarter of last workflow definition change. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
+**Change Month** | Month of last workflow definition change. (only when used with the `WorkflowWithDetailsOnly` or `Full` mode
 
 ### Key takeaways from this report ###
 
 
@@ -74,20 +74,22 @@ The easiest approach is to simply launch SharePoint.Modernization.Scanner.exe as
 
 The first page of the modernization scanner wizard asks you for authentication information. The scanner supports four options, select the one you need and fill in the needed information as described below. Ideally you use an app-only model as that will ensure the scanner has access to all sites it needs to scan.
 
-![Azure AD App-Only](media/modernize/scanner_p1_1_2.9.png)
+![Azure AD App-Only](media/modernize/scanner_p1_1_2.14.png)
 
 If you've [setup access via Azure AD App-Only](../solution-guidance/security-apponly-azuread.md), you do have created an Azure App and configured a certificate for accessing it. This information needs to be provided to the tool:
 
 - **Azure AD Application ID**: ID of the created application in your Azure AD environment
 - **Azure AD Domain name**: the default ___domain of your Azure AD environment. You can find this from the overview page of the Azure AD admin center. Typically this ___domain is formatted as *.onmicrosoft.com, for example, contoso.onmicrosoft.com.
 - **Certificate file**: the certificate that you granted app-only access to the Azure AD app, this needs to be presented as a password protected PFX file
 - **Password for the PFX file**: the password used to secure the previously provided PFX file
+- **Authentication region**: if your tenant is located in the US Government (ITAR), Germany or China cloud environment then select the respective region
 
 > [!NOTE]
 > You can also opt to install the certificate on your computer and reference it via the -w command line parameters. To reference the certificate you would use this value for the -w parameter "My|CurrentUser|1FG498B468AV3895E7659C8A6F098FB701C8CDB1". You can use My/Root and CurrentUser/LocalMachine to identify the store. The last argument is the certificate thumbprint. This option is available as of the 2.7 release. If you're using LocalMachine then be aware that you'll need to ensure the scanner has permissions to read in the LocalMachine store. You can do this by either running the scanner process under administrative privileges or alternatively (and better) grant the account you're using to run the modernization scan permissions to read the private key of the certificate stored in the LocalMachine store.
->
+
 > [!IMPORTANT]
-> The default instructions mentioned to grant the Azure AD app the **Sites.FullControl.All** permission which is needed if you want to run all scan components. If you're not interested in workflow scanning you can also use **Sites.Read.All** as a permission as of version 2.6 of the SharePoint Modernization Scanner.
+> - The default instructions mentioned to grant the Azure AD app the **Sites.FullControl.All** permission which is needed if you want to run all scan components. If you're not interested in workflow scanning you can also use **Sites.Read.All** as a permission as of version 2.6 of the SharePoint Modernization Scanner.
+> - Azure AD App-Only is the only supported authentication option for tenants in the US Government (ITAR), Germany or China cloud environment.
 
 #### Authenticate via SharePoint AD app-only
 
@@ -139,7 +141,7 @@ If you're using URLs that do not end on sharepoint.com (so called vanity URLs),
 
 #### Scan a list of site collections defined in a CSV file
 
-![CSV file](media/modernize/scanner_p2_3_2.9.png)
+![CSV file](media/modernize/scanner_p2_3_2.14.png)
 
 As a third option you can provide the scanner with a CSV file listing the site collections to scan. This CSV file is a simple list of site collections, the file doesn't have a header as shown in this sample:
 
@@ -153,7 +155,7 @@ https://contoso.sharepoint.com/sites/opensourcerocks
 
 The SharePoint modernization scanner does support multiple modes, depending on your modernization mode you might want to scope the scan to a certain area or alternatively, execute a full scan.
 
-![scanner modes](media/modernize/scanner_p3_1_2.8.png)
+![scanner modes](media/modernize/scanner_p3_1_2.14.png)
 
 Select the option you want in the dropdown and then the checkboxes will show which components will be included in the scan. The "Microsoft 365 group connection readiness" component is the main component that will be included all scan modes.
 
@@ -213,13 +215,14 @@ Mode                      | Description
 `PublishingOnly`          | Includes a classic publishing portal scan at site and web level + includes the Microsoft 365 group connection readiness component
 `PublishingWithPagesOnly` | Includes a classic publishing portal scan at site, web and page level + includes the Microsoft 365 group connection readiness component
 `WorkflowOnly`            | Includes the classic workflow scan + includes the Microsoft 365 group connection readiness component
+`WorkflowWithDetailsOnly` | Includes the classic workflow scan with workflow migration readiness analysis + includes the Microsoft 365 group connection readiness component
 `InfoPathOnly`            | Includes the InfoPath scan + includes the Microsoft 365 group connection readiness component
 `BlogOnly`                | Includes the Blog scan + includes the Microsoft 365 group connection readiness component
 
 ### Command-line parameter overview
 
 ```text
-SharePoint PnP Modernization scanner 2.9.0.0
+SharePoint PnP Modernization scanner 2.14.0.0
 Copyright (C) 2020 SharePoint PnP
 ==========================================================
 
@@ -267,31 +270,6 @@ e.g. SharePoint.Modernization.Scanner.exe -r "https://teams.contoso.com/sites/*,
 https://contoso-admin.contoso.com -u [email protected] -p pwd
 
 
-  -m, --mode                               (Default: Full) Execution mode. Use following modes: Full, GroupifyOnly,
-                                           ListOnly, HomePageOnly, PageOnly, PublishingOnly, PublishingWithPagesOnly,
-                                           WorkflowOnly, InfoPathOnly or BlogOnly. Omit or use full for a full scan
-
-  -b, --exportwebpartproperties            (Default: False) Export the web part property data
-
-  -c, --skipusageinformation               (Default: False) Don't use search to get the site/page usage information and
-                                           don't export that data
-
-  -j, --skipuserinformation                (Default: False) Don't include user information in the exported data
-
-  -k, --skiplistsonlyblockedbyoobreaons    (Default: False) Exclude lists which are blocked due to out of the box
-                                           reasons: base template, view type of field type
-
-  -d, --skipreport                         (Default: False) Don't generate an Excel report for the found data
-
-  -g, --exportpaths                        List of paths (e.g. c:\temp\636529695601669598,c:\temp\636529695601656430)
-                                           containing scan results you want to add to the report
-
-  -n, --disabletelemetry                   (Default: False) We use telemetry to make this a better tool...but you're
-                                           free to disable that
-
-  -q, --dateformat                         (Default: M/d/yyyy) Date format to use for date export in the CSV files. Use
-                                           M/d/yyyy or d/M/yyyy
-
   -i, --clientid                           Client ID of the app-only principal used to scan your site collections
 
   -s, --clientsecret                       Client Secret of the app-only principal used to scan your site collections
@@ -302,6 +280,9 @@ https://contoso-admin.contoso.com -u [email protected] -p pwd
 
   -z, --azuretenant                        Azure tenant (e.g. contoso.microsoftonline.com)
 
+  -y, --azureenvironment                   (Default: Production) Azure environment (only works for Azure AD Cert
+                                           auth!). Possible values: Production, USGovernment, Germany, China
+
   -f, --certificatepfx                     Path + name of the pfx file holding the certificate to authenticate
 
   -x, --certificatepfxpassword             Password of the pfx file holding the certificate to authenticate
@@ -315,7 +296,8 @@ https://contoso-admin.contoso.com -u [email protected] -p pwd
 
   -r, --urls                               List of (wildcard) urls (e.g.
                                            https://contoso.sharepoint.com/*,https://contoso-my.sharepoint.com,https://co
-                                           ntoso-my.sharepoint.com/personal/*) that you want to get scanned. Ignored if -t or --tenant is provided.
+                                           ntoso-my.sharepoint.com/personal/*) that you want to get scanned. Ignored if
+                                           -t or --tenant are provided.
 
   -o, --includeod4b                        (Default: False) Include OD4B sites in the scan
 
@@ -326,6 +308,32 @@ https://contoso-admin.contoso.com -u [email protected] -p pwd
 
   -e, --separator                          (Default: ,) Separator used in output CSV files (e.g. ";")
 
+  -m, --mode                               (Default: Full) Execution mode. Use following modes: Full, GroupifyOnly,
+                                           ListOnly, PageOnly, HomePageOnly, PublishingOnly, PublishingWithPagesOnly,
+                                           WorkflowOnly, WorkflowWithDetailsOnly, InfoPathOnly or BlogOnly. Omit or use
+                                           full for a full scan
+
+  -b, --exportwebpartproperties            (Default: False) Export the web part property data
+
+  -c, --skipusageinformation               (Default: False) Don't use search to get the site/page usage information and
+                                           don't export that data
+
+  -j, --skipuserinformation                (Default: False) Don't include user information in the exported data
+
+  -k, --skiplistsonlyblockedbyoobreaons    (Default: False) Exclude lists which are blocked due to out of the box
+                                           reasons: base template, view type of field type
+
+  -d, --skipreport                         (Default: False) Don't generate an Excel report for the found data
+
+  -g, --exportpaths                        List of paths (e.g. c:\temp\636529695601669598,c:\temp\636529695601656430)
+                                           containing scan results you want to add to the report
+
+  -n, --disabletelemetry                   (Default: False) We use telemetry to make this a better tool...but you're
+                                           free to disable that
+
+  -q, --dateformat                         (Default: M/d/yyyy) Date format to use for date export in the CSV files. Use
+                                           M/d/yyyy or d/M/yyyy
+
   -w, --storedcertificate                  (Default: ) Path to stored certificate in the form of
                                            StoreName|StoreLocation|Thumbprint. E.g.
                                            My|LocalMachine|3FG496B468BE3828E2359A8A6F092FB701C8CDB1