From c579bf8c3d64d2941eadf5be9c11d37b63664895 Mon Sep 17 00:00:00 2001
From: Shruti Deshpande <shdeshpa@redhat.com>
Date: Wed, 12 Nov 2025 15:22:46 +0530
Subject: [PATCH 1/2] add note about restic not supported

Signed-off-by: Shruti Deshpande <shdeshpa@redhat.com>
---
 modules/oadp-auth-azure-sts.adoc | 20 ++++++++++++--------
 1 file changed, 12 insertions(+), 8 deletions(-)

diff --git a/modules/oadp-auth-azure-sts.adoc b/modules/oadp-auth-azure-sts.adoc
index 25291b8407f9..b1ca412ebf2e 100644
--- a/modules/oadp-auth-azure-sts.adoc
+++ b/modules/oadp-auth-azure-sts.adoc
@@ -11,6 +11,7 @@ You can use Microsoft Entra Workload ID to access Azure storage for {oadp-short}
 
 To use the Azure Security Token Service (STS) configuration, you need the `credentialsMode` field set to `Manual` during cluster installation. This approach uses the Cloud Credential Operator (`ccoctl`) to set up the workload identity infrastructure, including the OpenID Connect (OIDC) provider, issuer configuration, and user-assigned managed identities.
 
+*Note*: {oadp-short} with Azure STS configuration does not support `restic` File System Backups (FSB) and restores. 
 
 .Prerequisites
 
@@ -173,9 +174,9 @@ spec:
   backupLocations:
   - bucket:
       cloudStorageRef:
-        name: <cloud_storage_cr> # <1>
+        name: <cloud_storage_cr>
       config:
-        storageAccount: <storage_account_name> # <2>
+        storageAccount: <storage_account_name>
         useAAD: "true"
       credential:
         key: azurekey
@@ -195,18 +196,21 @@ spec:
   - name: default
     velero:
       config:
-        resourceGroup: <resource_group> # <3>
-        subscriptionId: <subscription_ID> # <4>
+        resourceGroup: <resource_group>
+        subscriptionId: <subscription_ID>
       credential:
         key: azurekey
         name: cloud-credentials-azure
       provider: azure
 EOF
 ----
-<1> Specify the `CloudStorage` CR name.
-<2> Specify the Azure storage account name.
-<3> Specify the resource group.
-<4> Specify the subscription ID.
++
+where:
+
+<cloud_storage_cr>:: Specify the `CloudStorage` CR name.
+<storage_account_name>:: Specify the Azure storage account name.
+<resource_group>:: Specify the resource group.
+<subscription_ID>:: Specify the subscription ID.
 
 .Verification
 

From 0ed7d78eb50a7f4579b946c6de7b334fbf262bda Mon Sep 17 00:00:00 2001
From: Shruti Deshpande <shdeshpa@redhat.com>
Date: Wed, 12 Nov 2025 15:42:53 +0530
Subject: [PATCH 2/2] removed stray sentence in the assembly

Signed-off-by: Shruti Deshpande <shdeshpa@redhat.com>
---
 .../installing/installing-oadp-azure.adoc                       | 2 --
 1 file changed, 2 deletions(-)

diff --git a/backup_and_restore/application_backup_and_restore/installing/installing-oadp-azure.adoc b/backup_and_restore/application_backup_and_restore/installing/installing-oadp-azure.adoc
index 9e16df985e94..8b7f3d98a987 100644
--- a/backup_and_restore/application_backup_and_restore/installing/installing-oadp-azure.adoc
+++ b/backup_and_restore/application_backup_and_restore/installing/installing-oadp-azure.adoc
@@ -25,8 +25,6 @@ include::modules/oadp-auth-azure-methods.adoc[leveloffset=+1]
 include::modules/oadp-auth-azure-secret-based.adoc[leveloffset=+1]
 include::modules/oadp-auth-azure-sts.adoc[leveloffset=+1]
 
-You can configure the Data Protection Application by setting Velero resource allocations or enabling self-signed CA certificates.
-
 include::modules/oadp-setting-resource-limits-and-requests.adoc[leveloffset=+1]
 
 include::snippets/oadp-nodeselector-snippet.adoc[]