Merge pull request #25610 from msewaweru/appmngtpolicy-roles

Lauragra · web-flow · commit c06f183afa7d · 2024-11-06T18:44:46.000-08:00
Convert the role include files to alert boxes for application management policy APIs
diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-app-auth-method-custom-policy-api-update.md b/api-reference/beta/includes/rbac-for-apis/rbac-app-auth-method-custom-policy-api-update.md
@@ -4,5 +4,10 @@ ms.topic: include
 ms.author: saumadan
 ---
 
-In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. *Application Administrator* or *Cloud Application Administrator* are the least privileged roles supported for this operation.
+> [!IMPORTANT]
+> 
+> In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. The following least privileged roles are supported for this operation:
+> 
+> - Cloud Application Administrator
+> - Application Administrator
 
diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-app-auth-method-policy-api-get.md b/api-reference/beta/includes/rbac-for-apis/rbac-app-auth-method-policy-api-get.md
@@ -4,5 +4,9 @@ ms.topic: include
 ms.author: saumadan
 ---
 
-In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. *Global Reader* is the least privileged role supported for this operation.
+> [!IMPORTANT]
+> 
+> In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. The following least privileged role is supported for this operation:
+> 
+> - Global Reader
 
diff --git a/api-reference/beta/resources/appmanagementpolicy.md b/api-reference/beta/resources/appmanagementpolicy.md
@@ -27,7 +27,8 @@ To learn more about how to use app management policy, see [Microsoft Entra appli
 | [Update](../api/appmanagementpolicy-update.md) | None                                                                       | Updates an app management policy.                                                                                      |
 | [Delete](../api/appmanagementpolicy-delete.md) | None                                                                       | Deletes an app management policy from the collection of policies in appManagementPolicies.                             |
 | [List applies to](../api/appmanagementpolicy-list-appliesto.md)| [appManagementPolicy](../resources/appmanagementpolicy.md)|Returns a list of applications and service principals to which the policy is applied. |
-| [Create applies to](../api/appmanagementpolicy-post-appliesto.md)| None |Returns a list of applications and service principals to which the policy is applied. |
+| [Create applies to](../api/appmanagementpolicy-post-appliesto.md)| None |Assign an appManagementPolicy policy object to an application or service principal object. |
+| [Delete applies to](../api/appmanagementpolicy-delete-appliesto.md)| None |Remove an appManagementPolicy policy object from an application or service principal object. |
 
 ## Properties
 
diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-app-auth-method-custom-policy-api-update.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-app-auth-method-custom-policy-api-update.md
@@ -4,5 +4,9 @@ ms.topic: include
 ms.author: saumadan
 ---
 
-In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. *Application Administrator* or *Cloud Application Administrator* are the least privileged roles supported for this operation.
-
+> [!IMPORTANT]
+> 
+> In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. The following least privileged roles are supported for this operation:
+> 
+> - Cloud Application Administrator
+> - Application Administrator
diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-app-auth-method-policy-api-get.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-app-auth-method-policy-api-get.md
@@ -4,5 +4,8 @@ ms.topic: include
 ms.author: saumadan
 ---
 
-In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. *Global Reader* is the least privileged role supported for this operation.
-
+> [!IMPORTANT]
+> 
+> In delegated scenarios with work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role with a supported role permission. The following least privileged role is supported for this operation:
+> 
+> - Global Reader
diff --git a/api-reference/v1.0/resources/appmanagementpolicy.md b/api-reference/v1.0/resources/appmanagementpolicy.md
@@ -26,7 +26,8 @@ To learn more about how to use app management policy, see [Microsoft Entra appli
 | [Update](../api/appmanagementpolicy-update.md) | None                                                                       | Update an app management policy.                                                                                      |
 | [Delete](../api/appmanagementpolicy-delete.md) | None                                                                       | Delete an app management policy from the collection of policies in appManagementPolicies.                             |
 | [List applies to](../api/appmanagementpolicy-list-appliesto.md)| [appManagementPolicy](../resources/appmanagementpolicy.md)|Return a list of applications and service principals to which the policy is applied. |
-| [Create applies to](../api/appmanagementpolicy-post-appliesto.md)| None |Return a list of applications and service principals to which the policy is applied. |
+| [Create applies to](../api/appmanagementpolicy-post-appliesto.md)| None |Assign an appManagementPolicy policy object to an application or service principal object. |
+| [Delete applies to](../api/appmanagementpolicy-delete-appliesto.md)| None |Remove an appManagementPolicy policy object from an application or service principal object. |
 
 ## Properties
 
