upload changes

spelluru · spelluru · commit f044d6d5546c · 2024-02-05T10:48:27.000-05:00
diff --git a/articles/event-grid/scripts/powershell-webhook-secure-delivery-microsoft-entra-app.md b/articles/event-grid/scripts/powershell-webhook-secure-delivery-microsoft-entra-app.md
@@ -47,41 +47,41 @@ try {
         return $appRole
     }
 
-    # Creates Azure Event Grid Azure AD Application if not exists
+    # Creates Azure Event Grid Microsoft Entra Application if not exists
     # You don't need to modify this id
-    # But Azure Event Grid Azure AD Application Id is different for different clouds
+    # But Azure Event Grid Entra Application Id is different for different clouds
 
     $eventGridAppId = "4962773b-9cdb-44cf-a8bf-237846a00ab7" # Azure Public Cloud
     # $eventGridAppId = "54316b56-3481-47f9-8f30-0300f5542a7b" # Azure Government Cloud
     $eventGridRoleName = "AzureEventGridSecureWebhookSubscriber" # You don't need to modify this role name
     $eventGridSP = Get-MgServicePrincipal -Filter ("appId eq '" + $eventGridAppId + "'")
     if ($eventGridSP -match "Microsoft.EventGrid")
     {
-        Write-Host "The Azure AD Application is already defined.`n"
+        Write-Host "The Microsoft Entra Application is already defined.`n"
     } else {
-        Write-Host "Creating the Azure Event Grid Azure AD Application"
+        Write-Host "Creating the Azure Event Grid Microsoft Entra Application"
         $eventGridSP = New-MgServicePrincipal -AppId $eventGridAppId
     }
 
-    # Creates the Azure app role for the webhook Azure AD application
+    # Creates the Azure app role for the webhook Microsoft Entra application
 
     $app = Get-MgApplication -ObjectId $webhookAppObjectId
     $appRoles = $app.AppRoles
 
-    Write-Host "Azure AD App roles before addition of the new role..."
+    Write-Host "Microsoft Entra App roles before addition of the new role..."
     Write-Host $appRoles
     
     if ($appRoles -match $eventGridRoleName)
     {
         Write-Host "The Azure Event Grid role is already defined.`n"
     } else {      
-        Write-Host "Creating the Azure Event Grid role in Azure AD Application: " $webhookAppObjectId
+        Write-Host "Creating the Azure Event Grid role in Microsoft Entra Application: " $webhookAppObjectId
         $newRole = CreateAppRole -Name $eventGridRoleName -Description "Azure Event Grid Role"
         $appRoles.Add($newRole)
         Update-MgApplication -ObjectId $app.ObjectId -AppRoles $appRoles
     }
 
-    Write-Host "Azure AD App roles after addition of the new role..."
+    Write-Host "Microsoft Entra App roles after addition of the new role..."
     Write-Host $appRoles
 
     # Creates the user role assignment for the app that will create event subscription
@@ -91,21 +91,21 @@ try {
 
     if ($null -eq $eventSubscriptionWriterSP)
     {
-        Write-Host "Create new Azure AD Application"
+        Write-Host "Create new Microsoft Entra Application"
         $eventSubscriptionWriterSP = New-MgServicePrincipal -AppId $eventSubscriptionWriterAppId
     }
 
     try
     {
-        Write-Host "Creating the Azure AD Application role assignment: " $eventSubscriptionWriterAppId
+        Write-Host "Creating the Microsoft Entra Application role assignment: " $eventSubscriptionWriterAppId
         $eventGridAppRole = $app.AppRoles | Where-Object -Property "DisplayName" -eq -Value $eventGridRoleName
         New-MgServicePrincipalAppRoleAssignment -Id $eventGridAppRole.Id -ResourceId $servicePrincipal.ObjectId -ObjectId $eventSubscriptionWriterSP.ObjectId -PrincipalId $eventSubscriptionWriterSP.ObjectId
     }
     catch
     {
         if( $_.Exception.Message -like '*Permission being assigned already exists on the object*')
         {
-            Write-Host "The Azure AD Application role is already defined.`n"
+            Write-Host "The Microsoft Entra Application role is already defined.`n"
         }
         else
         {
@@ -114,15 +114,15 @@ try {
         Break
     }
 
-    # Creates the service app role assignment for Event Grid Azure AD Application
+    # Creates the service app role assignment for Event Grid Microsoft Entra Application
 
     $eventGridAppRole = $app.AppRoles | Where-Object -Property "DisplayName" -eq -Value $eventGridRoleName
     New-MgServicePrincipalAppRoleAssignment -Id $eventGridAppRole.Id -ResourceId $servicePrincipal.ObjectId -ObjectId $eventGridSP.ObjectId -PrincipalId $eventGridSP.ObjectId
     
     # Print output references for backup
 
-    Write-Host ">> Webhook's Azure AD Application Id: $($app.AppId)"
-    Write-Host ">> Webhook's Azure AD Application ObjectId Id: $($app.ObjectId)"
+    Write-Host ">> Webhook's Microsoft Entra Application Id: $($app.AppId)"
+    Write-Host ">> Webhook's Microsoft Entra Application ObjectId Id: $($app.ObjectId)"
 }
 catch {
   Write-Host ">> Exception:"
@@ -134,4 +134,4 @@ catch {
 
 ## Script explanation
 
-For more details refer to [Secure WebHook delivery with Microsoft Entra ID in Azure Event Grid](../secure-webhook-delivery.md)
+For more information, see [Secure WebHook delivery with Microsoft Entra ID in Azure Event Grid](../secure-webhook-delivery.md).
diff --git a/articles/event-grid/scripts/powershell-webhook-secure-delivery-microsoft-entra-user.md b/articles/event-grid/scripts/powershell-webhook-secure-delivery-microsoft-entra-user.md
@@ -15,7 +15,7 @@ Here are the high level steps from the script:
 
 1. Create a service principal for **Microsoft.EventGrid** if it doesn't already exist.
 1. Create a role named **AzureEventGridSecureWebhookSubscriber** in the **Microsoft Entra app for your Webhook**.
-1. Add service principal of user who will be creating the subscription to the AzureEventGridSecureWebhookSubscriber role.
+1. Add service principal of user who is creating the subscription to the AzureEventGridSecureWebhookSubscriber role.
 1. Add service principal of Microsoft.EventGrid to the AzureEventGridSecureWebhookSubscriber.
 
 ## Sample script - stable
@@ -46,41 +46,41 @@ try {
         return $appRole
     }
 
-    # Creates Azure Event Grid Azure AD Application if not exists
+    # Creates Azure Event Grid Microsoft Entra Application if not exists
     # You don't need to modify this id
-    # But Azure Event Grid Azure AD Application Id is different for different clouds
+    # But Azure Event Grid Microsoft Entra Application Id is different for different clouds
    
     $eventGridAppId = "4962773b-9cdb-44cf-a8bf-237846a00ab7" # Azure Public Cloud
     # $eventGridAppId = "54316b56-3481-47f9-8f30-0300f5542a7b" # Azure Government Cloud
     $eventGridRoleName = "AzureEventGridSecureWebhookSubscriber" # You don't need to modify this role name
     $eventGridSP = Get-MgServicePrincipal -Filter ("appId eq '" + $eventGridAppId + "'")
     if ($eventGridSP -match "Microsoft.EventGrid")
     {
-        Write-Host "The Azure AD Application is already defined.`n"
+        Write-Host "The Microsoft Entra Application is already defined.`n"
     } else {
-        Write-Host "Creating the Azure Event Grid Azure AD Application"
+        Write-Host "Creating the Azure Event Grid Microsoft Entra Application"
         $eventGridSP = New-MgServicePrincipal -AppId $eventGridAppId
     }
 
-    # Creates the Azure app role for the webhook Azure AD application
+    # Creates the Azure app role for the webhook Microsoft Entra application
 
     $app = Get-MgApplication -ObjectId $webhookAppObjectId
     $appRoles = $app.AppRoles
 
-    Write-Host "Azure AD App roles before addition of the new role..."
+    Write-Host "Microsoft Entra App roles before addition of the new role..."
     Write-Host $appRoles
     
     if ($appRoles -match $eventGridRoleName)
     {
         Write-Host "The Azure Event Grid role is already defined.`n"
     } else {      
-        Write-Host "Creating the Azure Event Grid role in Azure AD Application: " $webhookAppObjectId
+        Write-Host "Creating the Azure Event Grid role in Microsoft Entra Application: " $webhookAppObjectId
         $newRole = CreateAppRole -Name $eventGridRoleName -Description "Azure Event Grid Role"
         $appRoles.Add($newRole)
         Update-MgApplication -ObjectId $app.ObjectId -AppRoles $appRoles
     }
 
-    Write-Host "Azure AD App roles after addition of the new role..."
+    Write-Host "Microsoft Entra App roles after addition of the new role..."
     Write-Host $appRoles
 
     # Creates the user role assignment for the user who will create event subscription
@@ -89,7 +89,7 @@ try {
 
     try
     {
-        Write-Host "Creating the Azure Ad App Role assignment for user: " $eventSubscriptionWriterUserPrincipalName
+        Write-Host "Creating the Microsoft Entra App Role assignment for user: " $eventSubscriptionWriterUserPrincipalName
         $eventSubscriptionWriterUser = Get-MgUser -ObjectId $eventSubscriptionWriterUserPrincipalName
         $eventGridAppRole = $app.AppRoles | Where-Object -Property "DisplayName" -eq -Value $eventGridRoleName
         New-MgUserAppRoleAssignment -Id $eventGridAppRole.Id -ResourceId $servicePrincipal.ObjectId -ObjectId $eventSubscriptionWriterUser.ObjectId -PrincipalId $eventSubscriptionWriterUser.ObjectId        
@@ -98,7 +98,7 @@ try {
     {
         if( $_.Exception.Message -like '*Permission being assigned already exists on the object*')
         {
-            Write-Host "The Azure AD User Application role is already defined.`n"
+            Write-Host "The Microsoft Entra User Application role is already defined.`n"
         }
         else
         {
@@ -107,15 +107,15 @@ try {
         Break
     }
 
-    # Creates the service app role assignment for Event Grid Azure AD Application
+    # Creates the service app role assignment for Event Grid Microsoft Entra Application
 
     $eventGridAppRole = $app.AppRoles | Where-Object -Property "DisplayName" -eq -Value $eventGridRoleName
     New-MgServicePrincipalAppRoleAssignment -Id $eventGridAppRole.Id -ResourceId $servicePrincipal.ObjectId -ObjectId $eventGridSP.ObjectId -PrincipalId $eventGridSP.ObjectId
     
     # Print output references for backup
 
-    Write-Host ">> Webhook's Azure AD Application Id: $($app.AppId)"
-    Write-Host ">> Webhook's Azure AD Application ObjectId Id: $($app.ObjectId)"
+    Write-Host ">> Webhook's Microsoft Entra Application Id: $($app.AppId)"
+    Write-Host ">> Webhook's Microsoft Entra Application ObjectId Id: $($app.ObjectId)"
 }
 catch {
   Write-Host ">> Exception:"
@@ -127,4 +127,4 @@ catch {
 
 ## Script explanation
 
-For more details refer to [Secure WebHook delivery with Microsoft Entra ID in Azure Event Grid](../secure-webhook-delivery.md)
+For more information, see [Secure WebHook delivery with Microsoft Entra ID in Azure Event Grid](../secure-webhook-delivery.md).
diff --git a/articles/event-grid/secure-webhook-delivery.md b/articles/event-grid/secure-webhook-delivery.md
@@ -40,7 +40,7 @@ There are two subsections in this section. Read through both the scenarios or th
 
 This section shows how to configure the event subscription by using a Microsoft Entra user. 
 
-1. Create a Microsoft Entra application for the webhook configured to work with the Microsoft directory (single tenant).
+1. Create a Microsoft Entra application for the webhook configured to work with the Microsoft Entra (single tenant).
 
 2. Open the [Azure Shell](https://portal.azure.com/#cloudshell/) in the tenant and select the PowerShell environment.
 
@@ -90,13 +90,13 @@ This section shows how to configure the event subscription by using a Microsoft
 
 This section shows how to configure the event subscription by using a Microsoft Entra application. 
 
-1. Create a Microsoft Entra application for the Event Grid subscription writer configured to work with the Microsoft directory (Single tenant).
+1. Create a Microsoft Entra application for the Event Grid subscription writer configured to work with the Microsoft Entra (Single tenant).
 
 2. Create a secret for the Microsoft Entra application and save the value (you need this value later).
 
 3. Go to the **Access control (IAM)** page for the Event Grid topic and assign **Event Grid Contributor** role to the Event Grid subscription writer app. This step allows you to have access to the Event Grid resource when you logged-in into Azure with the Microsoft Entra application by using Azure CLI.
 
-4. Create a Microsoft Entra application for the webhook configured to work with the Microsoft directory (Single tenant).
+4. Create a Microsoft Entra application for the webhook configured to work with the Microsoft Entra (Single tenant).
 
 5. Open the [Azure Shell](https://portal.azure.com/#cloudshell/) in the tenant and select the PowerShell environment.
 
@@ -153,7 +153,7 @@ Based on the diagram, follow next steps to configure both tenants.
 
 Do the following steps in **Tenant A**: 
 
-1. Create a Microsoft Entra application for the Event Grid subscription writer configured to work with any Microsoft Entra directory (multitenant).
+1. Create a Microsoft Entra application for the Event Grid subscription writer configured to work with any Microsoft Entra (multitenant).
 
 2. Create a secret for the Microsoft Entra application, and save the value (you need this value later).
 
@@ -163,7 +163,7 @@ Do the following steps in **Tenant A**:
 
 Do the following steps in **Tenant B**:
 
-1. Create a Microsoft Entra Application for the webhook configured to work with the Microsoft directory (single tenant).
+1. Create a Microsoft Entra Application for the webhook configured to work with the Microsoft Entra (single tenant).
 5. Open the [Azure Shell](https://portal.azure.com/#cloudshell/), and select the PowerShell environment.
 6. Modify the **$webhookAadTenantId** value to connect to the **Tenant B**.
     - Variables:
