Managed identity section of NFM page is incomplete

[tomprice-msft]

The steps in the Managed identity section are incomplete, they should be as follows:

1. Create a custom role with permissions for Microsoft.HybridNetwork/devices/join/action, unless one already exists. The documentation for this is here: https://learn.microsoft.com/en-us/azure/role-based-access-control/custom-roles-portal, but we should be specific about which sections of that article apply because in step 1 they already know they need Microsoft.HybridNetwork/devices/join/action, and the "Clone a role" method isn't appropriate.
2. Create a user-assigned managed identity, unless one already exists. https://learn.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/how-manage-user-assigned-managed-identities?pivots=identity-mi-methods-azp#create-a-user-assigned-managed-identity
3. Assign the user-assigned managed identity the custom role from above at the scope of the Azure Stack Edge, or the Resource Group or Subscription containing the Azure Stack Edge. https://learn.microsoft.com/en-us/azure/role-based-access-control/role-assignments-portal-managed-identity#user-assigned-managed-identity
4. Provide this managed identity when creating a partner’s managed application in the Azure portal. There is no additional documentation for this; the existing link is wrong.

---

Document Details

⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

• ID: 97109d0c-23e3-3151-b712-3dee6a89d18f
• Version Independent ID: dbdf4934-7dca-151b-fb6b-8b50e980e975
• Content: How to register resources - Azure Network Function Manager
• Content Source: articles/network-function-manager/resources-permissions.md
• Service: network-function-manager
• GitHub Login: @polarapfel
• Microsoft Alias: tobiaw

[YashikaTyagii]

@tomprice-msft Thanks for your feedback! We will investigate and update as appropriate.

[tomprice-msft]

It also turns out that Microsoft.HybridNetwork/devices/join/action isn't a valid action anymore, so please update this to the correct required permission.