Merge pull request #211074 from MicrosoftGuyJFlo/IdenityProtectionFixesAPIDoc

v-dirichards · web-flow · commit 113676b13a6f · 2022-09-14T11:45:23.000-05:00
[Azure AD] Identity Protection - API Doc fixes
diff --git a/articles/active-directory/identity-protection/howto-identity-protection-graph-api.md b/articles/active-directory/identity-protection/howto-identity-protection-graph-api.md
@@ -6,7 +6,7 @@ services: active-directory
 ms.service: active-directory
 ms.subservice: identity-protection
 ms.topic: how-to
-ms.date: 08/23/2022
+ms.date: 09/13/2022
 
 ms.author: joflore
 author: MicrosoftGuyJFlo
@@ -21,24 +21,30 @@ Microsoft Graph is the Microsoft unified API endpoint and the home of [Azure Act
 
 To successfully complete this tutorial, make sure you have the required prerequisites:
 
-- Microsoft Graph PowerShell SDK is installed. Follow the [installation guide](/powershell/microsoftgraph/installation?view=graph-powershell-1.0) for more info on how to do this.
+- Microsoft Graph PowerShell SDK is installed. For more information, see the article [Install the Microsoft Graph PowerShell SDK](/powershell/microsoftgraph/installation?view=graph-powershell-1.0&preserve-view=true).
 - Identity Protection is available in the beta version of Microsoft Graph PowerShell. Run the following command to set your profile to beta.
+
    ```powershell
    # Connect to Graph beta Endpoint
    Select-MgProfile -Name 'beta'
    ```
+
 - Microsoft Graph PowerShell using a global administrator role and the appropriate permissions. The IdentityRiskEvent.Read.All, IdentityRiskyUser.ReadWrite.All Or IdentityRiskyUser.ReadWrite.All delegated permissions are required. To set the permissions to IdentityRiskEvent.Read.All and IdentityRiskyUser.ReadWrite.All, run:
+
    ```powershell
    Connect-MgGraph -Scopes "IdentityRiskEvent.Read.All","IdentityRiskyUser.ReadWrite.All"
    ```
 
-Or, if you use app-only authentication, you may follow this [guide](/powershell/microsoftgraph/app-only?view=graph-powershell-1.0&tabs=azure-portal). To register an application with the required application permissions, prepare a certificate and run:
+If you use app-only authentication, see the article [Use app-only authentication with the Microsoft Graph PowerShell SDK](/powershell/microsoftgraph/app-only?view=graph-powershell-1.0&tabs=azure-portal&preserve-view=true). To register an application with the required application permissions, prepare a certificate and run:
+
 ```powershell
 Connect-MgGraph -ClientID YOUR_APP_ID -TenantId YOUR_TENANT_ID -CertificateName YOUR_CERT_SUBJECT ## Or -CertificateThumbprint instead of -CertificateName
 ```
 
 ## List risky detections using PowerShell
+
 You can retrieve the risk detections by the properties of a risk detection in Identity Protection.
+
 ```powershell
 # List all anonymizedIPAddress risk detections
 Get-MgRiskDetection -Filter "RiskType eq 'anonymizedIPAddress'" | Format-Table UserDisplayName, RiskType, RiskLevel, DetectedDateTime
@@ -47,8 +53,11 @@ Get-MgRiskDetection -Filter "RiskType eq 'anonymizedIPAddress'" | Format-Table U
 Get-MgRiskDetection -Filter "UserDisplayName eq 'User01' and Risklevel eq 'high'" | Format-Table UserDisplayName, RiskType, RiskLevel, DetectedDateTime
 
 ```
+
 ## List risky users using PowerShell
+
 You can retrieve the risky users and their risky histories in Identity Protection. 
+
 ```powershell
 # List all high risk users
 Get-MgRiskyUser -Filter "RiskLevel eq 'high'" | Format-Table UserDisplayName, RiskDetail, RiskLevel, RiskLastUpdatedDateTime
@@ -57,20 +66,27 @@ Get-MgRiskyUser -Filter "RiskLevel eq 'high'" | Format-Table UserDisplayName, Ri
 Get-MgRiskyUserHistory -RiskyUserId 375844b0-2026-4265-b9f1-ee1708491e05| Format-Table RiskDetail, RiskLastUpdatedDateTime, @{N="RiskDetection";E={($_). Activity.RiskEventTypes}}, RiskState, UserDisplayName
 
 ```
-## Confirm users compromised using Powershell
+
+## Confirm users compromised using PowerShell
+
 You can confirm users compromised and flag them as high risky users in Identity Protection.
+
 ```powershell
 # Confirm Compromised on two users
 Confirm-MgRiskyUserCompromised -UserIds "577e09c1-5f26-4870-81ab-6d18194cbb51","bf8ba085-af24-418a-b5b2-3fc71f969bf3"
 ```
-## Dimiss risky users using Powershell
+
+## Dismiss risky users using PowerShell
+
 You can bulk dismiss risky users in Identity Protection.
+
 ```powershell
 # Get a list of high risky users which are more than 90 days old
 $riskyUsers= Get-MgRiskyUser -Filter "RiskLevel eq 'high'" | where RiskLastUpdatedDateTime -LT (Get-Date).AddDays(-90)
 # bulk dimmiss the risky users
 Invoke-MgDismissRiskyUser -UserIds $riskyUsers.Id
 ```
+
 ## Next steps
 
 - [Get started with the Microsoft Graph PowerShell SDK](/powershell/microsoftgraph/get-started)
