Merged PR 102: updated deploy helper doc to register Azure AD App

updated deploy helper doc to register Azure AD App

Related work items: #176

2_deploy/_helper_docs/registerAADAppAndSP.md

@@ -3,71 +3,36 @@
 ## Pre-Requirements
 * Azure AD tenant
 * Azure AD User with permissions to register Azure AD applications
-* [Azure CLI installed](https://docs.microsoft.com/en-us/cli/azure/install-azure-cli)
 
 ## Register Azure AD Application
 
-1.	Locally on your computer, open a PowerShell console and log on with an account that can register Azure AD applications.
-
-```PowerShell
-az login
-```
-
-2.	Register a new Azure AD application. By default, let's name it `SimuLandApp`. If you decide to give it another name, make sure you take a note of that since you will need it while going through lab instructions.
-
-```PowerShell
-$appName = "SimuLandApp"
-$results= az ad app create --display-name $appname --homepage "https://localhost/$appname" --reply-urls "https://localhost/$appname" --identifier-uris "https://localhost/$appname"
-$app = $results | ConvertFrom-Json
-$app
-```
-
-3.	Browse to [Azure Portal](https://portal.azure.com/)
-4.	Go to Azure AD > App Registrations.
-5.	Verify application was registered.
+1. Browse to [Azure Portal](https://portal.azure.com/)
+2. Go to Azure AD > App Registrations > New registration
+3. Name your app `SimuLandApp` or anything you want. Make sure you save the name of your app somewhere. You might need it while going through some of the simulation labs.
 
 ![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_01_aad_app_registrations.png)
 
-## Create Service Principal for Azure AD Application
-
-1.  Use the variable `$app` from the previous section and run the following command to create a service principal for the Azure AD application:
-
-```PowerShell
-az ad sp create --id $app.appId
-```
-
-2.	Browse to [Azure Portal](https://portal.azure.com/)
-3.	Go to Azure AD > Enterprise Applications
-4.	Look for your Azure AD App service principal
-
 ![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_02_aad_enterprise_apps.png)
 
-## Grant Delegated Permissions
+## Check Delegated Permissions
 
-Let's make it an OAuth application by adding a delegated permissions to it.
+By default, when registering a new application via the Azure portal, it will be granted the `delegated` MS Graph permission `User.Read`.
 
-1.	Browse to [Azure Portal](https://portal.azure.com/)
-2.	Go to Azure AD > App Registrations > `SimuLandApp`
+1. Browse to [Azure Portal](https://portal.azure.com/)
+2. Go to Azure AD > App Registrations
+3. Search for `SimuLandApp`
 
 ![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_03_aad_app_registrations.png)
 
-3.	API Permissions > Add a permission > Microsoft APIs > Microsoft Graph
-
-![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_04_graph_api_permissions.png)
-
-4.	Select `Delegated Permissions` > `User.Read` > Add permissions
-
-![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_05_graph_user_read.png)
-
-5.	Grant admin consent to the application by clicking on "`Grant admin consent for <DOMAIN-NAME>`"
+4. Click on `API Permissions`. You should see the `User.Read` permission under `Microsoft Graph` API
 
 ![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_06_grant_admin_consent.png)
 
 That’s it.
 
 Applications sometimes take a few hours to show in the Microsoft Cloud App Security (MCAS) portal.
 1.	Navigate to [Microsoft 365 Security Center](https://security.microsoft.com/)
-2.	Go to  `More Resources` and click on `Microsoft Cloud App Security`.
+2.	Browse to `More Resources` and click on `Microsoft Cloud App Security`.
 3.	Investigate > OAuth Apps
 
 ![](../../resources/images/deploy/helper_docs/registerAADAppAndSP/2021-05-19_08_m365_macs_oauth_apps.png)