Merge pull request #87 from choonho/docs

Add docs/en/README.md

Author: Choonho Son

docs/en/GUIDE-img/azure-account.png

@@ -1,5 +1,7 @@
 ## Overview
 
+<img src="./GUIDE-img/azure-account.png" width="80%" height="80%">
+
 To register an Azure service account in Cloudforet, you need the four settings information below.
 
 - **Subscription ID**
@@ -9,7 +11,8 @@ To register an Azure service account in Cloudforet, you need the four settings i
 
 
 >💡 Before starting the setup guide, please make sure **Subscription ID** has been created.
-See the Azure Subcription Guides [Azure Documentation](https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/initial-subscriptions)
+
+See the Azure Subscription Guides [Azure Documentation](https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/initial-subscriptions)
 
 
 
@@ -26,13 +29,14 @@ This setup guide will take a closer look at what the above-mentioned information
 
 Azure manages costs and resources in units of objects called subscriptions.
 The **unique identifier** that distinguishes this is **Subscription ID**.
+
 See the Subscription [Azure Documentation](https://docs.microsoft.com/en-us/azure/developer/intro/azure-developer-billing#what-is-an-azure-subscription)
 
 <br>
 
 ### Tenant ID
 
-**Tenant ID** is a **unique identifier** for your organization provided by Azure Active Directory (AD).
+**Tenant ID** is a **unique identifier** for your organization provided by Azure Active Directory (AD) or Microsoft Extra ID.
 Azure AD is a cloud-based identity and access management service that you use to manage users on an organizational basis.
 See the Azure AD [Azure Documentation](https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-whatis)
 
@@ -70,24 +74,22 @@ The method using **[azure_client_secret]** requires the following setting inform
 
 To obtain the above information, please proceed with the settings in the following order.
 
-1. [App Registration](#1-App-Registration)
-2. [Create resource group](#2-Resource-Group-Create)
-3. [Grant Role](#3-Role-Grant)
-4. [Authentication key generation](#4-Authentication key-generation)
-5. [Confirm Subscription](#5-Subscription-Confirm)
-6. [Service account registration](#6-Service-Account-Registration)
-7. [Add custom role (select)] (#7-user-specified-role-add-select)
+1. [App Registration](#1 App Registration)
+2. [Generate Authentication key](#2 Generate Authentication key)
+3. [Create Resource Group](#3 Create Resource Group)
+4. [Assign Role](#4 Assign Role)
 
 <br>
 <br>
 
-## 1-App-Registration
+## 1 App Registration
 
 You can obtain **[Client ID]** settings information in Azure through app registration.
 If there is already a registered app, it can be omitted.
 
 (1) Log in to [Azure Portal](https://portal.azure.com/#home).
-(1-1) Enter ‘app registration’ in the search box and click [App registration].
+
+(1-1) Enter ‘app registrations’ in the search box and click [App registrations].
 
 <img src="./GUIDE-img/create-application(h2)-1.png" width="80%" height="80%">
 
@@ -96,8 +98,10 @@ If there is already a registered app, it can be omitted.
 <img src="./GUIDE-img/create-application(h2)-2.png" width="80%" height="80%">
 
 (2) Enter application registration information.
-(2-1) Click [Only accounts in this organization directory].
+
+(2-1) Click [Accounts in this organizational directory only].
 You can click [Selection Guide] to select an account that can access the API that suits your organization's structure.
+
 (2-2) Click the [Register] button.
 
 <img src="./GUIDE-img/create-application(h2)-3.png" width="80%" height="80%">
@@ -109,11 +113,42 @@ You can click [Selection Guide] to select an account that can access the API tha
 <br>
 <br>
 
-## 2. Create a resource group
+## 2 Generate authentication key
+
+Authentication keys contain **credentials** information to access Azure resources.
+You can obtain **[Client Secret]** setting information by creating an authentication key.
+
+(1) Go to [Azure Portal](https://portal.azure.com/#home).
+(1-1) Enter ‘app registration’ in the search box and click [app registration] in the service list.
+
+<img src="./GUIDE-img/create-key(h2)-1.png" width="80%" height="80%">
+
+(2) Click the application for which you want to create an authentication key.
+
+<img src="./GUIDE-img/create-key(h2)-2.png" width="80%" height="80%">
+
+(3) Click the [Certificate & Secret > Client Secret] tab and then click the [New Client Secret] button.
+
+<img src="./GUIDE-img/create-key(h2)-3.png" width="80%" height="80%">
+
+(3-1) Enter the description information and click the [Add] button.
+
+<img src="./GUIDE-img/create-key(h2)-4.png" width="80%" height="80%">
+
+(3-2) Since you cannot see the generated password value again when moving the page, **note** the encryption key information.
+The information in the [Value] column corresponds to the **[Client Secret]** setting information.
+
+<img src="./GUIDE-img/create-key(h2)-5.png" width="80%" height="80%">
+
+<br>
+<br>
+
+## 3 Create Resource Group
 
 A resource group is a group for managing resources being used in Azure.
 You can have a 1:N relationship with your subscription.
-If you have created a resource group, skip this step.
+
+> If you have already created a resource group, skip this step.
 
 (1) Go to [Azure Portal](https://portal.azure.com/#home).
 (1-1) Enter ‘resource group’ in the search box and click [Resource Group] in the service list.
@@ -132,12 +167,10 @@ If you have created a resource group, skip this step.
 <br>
 <br>
 
-## 3. Assign roles
+## 4 Assign Role
 
 [Role](https://docs.microsoft.com/en-us/azure/role-based-access-control/role-definitions) is a collection of access permissions to Azure resources.
 The Azure plugin requires a role setup with appropriate permissions to collect resource information.
-> You can create a role with the required permissions by creating a custom role.<br>
-> You can check how to create a custom role in [Course 7] (#7-User-Role-Assignment-Add-Select).
 
 The collector plugin does not require any permissions other than read permission.
 The permission information required for each plugin is as follows.
@@ -152,7 +185,9 @@ The process of granting permission in Azure for the plugin to collect resources
 2. Grant roles to resource groups
 
 (1) This is the process of assigning roles to subscriptions.
+
 (1-1) Go to [Azure Portal](https://portal.azure.com/#home).
+
 (1-2) Enter ‘Subscription’ in the search box and click [Subscription] in the service list.
 
 <img src="./GUIDE-img/create-role(h2)-1.png" width="80%" height="80%">
@@ -170,21 +205,24 @@ The process of granting permission in Azure for the plugin to collect resources
 <img src="./GUIDE-img/create-role(h2)-4.png" width="80%" height="80%">
 
 (1-6) Click the [Select Member] button to select an application as a member.
+
 (1-7) After adding members, click the [Select] button.
 Click the Review + Assign button when it becomes active.
 
 <img src="./GUIDE-img/create-role(h2)-5.png" width="80%" height="80%">
 
->💡 Please select the application with the corresponding icon.
-> <img src="./GUIDE-img/create-role(h2)-icon.svg">
+>💡 Please select the application with the corresponding role.
 
+<img src="./GUIDE-img/create-role(h2)-5-1.png" width="80%" height="80%">
 <br>
 
 (2) This is the process of assigning roles to resource groups.
+
 If you only want to collect resources from a specific resource group that belongs to your subscription, you must grant a role to that resource group.
 If you have assigned a role to your subscription, you can skip this step.
 
 (2-1) Log in to [Azure Portal](https://portal.azure.com/#home).
+
 (2-2) Enter ‘resource group’ in the search box and click [Resource Group] in the service list.
 
 <img src="./GUIDE-img/create-role(h2)-6.png" width="80%" height="80%">
@@ -201,119 +239,16 @@ If you have assigned a role to your subscription, you can skip this step.
 <img src="./GUIDE-img/create-role(h2)-9.png" width="80%" height="80%">
 
 (2-6) Select [User, Group, Service Principal] and then click [Select Members].
-(2-7) Check [Selected members] and click the [Select] button.
-The [Review + Assignment] button becomes activated and click it.
 
+(2-7) Check [Selected members] and click the [Select] button.
 
-> 💡 Selected members must have access to the selected resource group.
+The [Review + Assignment] button becomes activated and click it.
 
 <img src="./GUIDE-img/create-role(h2)-10.png" width="80%" height="80%">
 
-<br>
-<br>
-
-## 4. Generate authentication key
-
-Authentication keys contain **credentials** information to access Azure resources.
-You can obtain **[Client Secret]** setting information by creating an authentication key.
-
-(1) Go to [Azure Portal](https://portal.azure.com/#home).
-(1-1) Enter ‘app registration’ in the search box and click [app registration] in the service list.
-
-<img src="./GUIDE-img/create-key(h2)-1.png" width="80%" height="80%">
-
-(2) Click the application for which you want to create an authentication key.
-
-<img src="./GUIDE-img/create-key(h2)-2.png" width="80%" height="80%">
-
-(3) Click the [Certificate & Secret > Client Secret] tab and then click the [New Client Secret] button.
-
-<img src="./GUIDE-img/create-key(h2)-3.png" width="80%" height="80%">
-
-(3-1) Enter the description information and click the [Add] button.
-
-<img src="./GUIDE-img/create-key(h2)-4.png" width="80%" height="80%">
-
-(3-2) Since you cannot see the generated password value again when moving the page, **note** the encryption key information.
-The information in the [Value] column corresponds to the **[Client Secret]** setting information.
-
-<img src="./GUIDE-img/create-key(h2)-5.png" width="80%" height="80%">
-
-<br>
-<br>
-
-## 5. Check Subscription
-
-This is the process of checking the **Subsciprtion ID**, which is the setup information required for the **[azure_client_secret]** method.
-Cloudforet's user guide **does not include** the process of creating an Azure subscription.
-For a guide to creating an Azure subscription, see [Azure Documentation](https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/initial-subscriptions).
-
-(1) Go to [Azure Portal](https://portal.azure.com/#home).
-(1-1) Enter ‘Subscription’ in the search box and click [Subscription] in the service list.
-
-<img src="./GUIDE-img/check-subscription-id(h2)-1.png" width="80%" height="80%">
-
-(1-2) Check the subscription ID information, which is the value corresponding to **[Subscription ID]**.
+> 💡 Selected members must have access to the selected resource group.
 
-<img src="./GUIDE-img/check-subscription-id(h2)-2.png" width="80%" height="80%">
 
+<img src="./GUIDE-img/create-role(h2)-10-1.png" width="80%" height="80%">
 <br>
 <br>
-
-## 6. Register service account
-
-Now you are ready to add Cloudforet service account.
-You can register a service account using the setup information you obtained while going through the setup guide so far.
-For detailed information on how to register a service account, see **[[Cloudforet User Guide]](https://cloudforet.io/docs/guides/asset-inventory/service-account/)** Please refer to .
-
-(1) Setting information required for the **[azure_client_secret]** method.
-Please enter the setting information below using direct input.
-
-- **Subscription ID**
-- **Tenant ID**
-- **Client ID**
-- **Client Secret**
-
-<img src="./GUIDE-img/create-service-account(h2)-1.png" width="80%" height="80%">
-
-(1-1) Click the [Save] button.
-
-(2) Afterwards, how to create Cloudforet’s **collector plugin** is **[[Cloudforet’s User Guide]](https://cloudforet.io/docs/guides/asset-inventory/collector/)* Please see *.
-
-
-## 7. Add custom role (optional)
-
-(1) Go to subscription service.
-
-(1-1) Select the [Access Control (IAM)] menu.
-
-(1-2) Click the [Add] button.
-
-(1-3) Click [Add custom role].
-
-<img src="./GUIDE-img/create-custom-role(h2)-1.png" width="80%" height="80%">
-
-(2) Enter [spaceone_custom_role] in the custom role name.
-
-(2-1) Click [Start from scratch] in the standard permissions.
-
-(2-2) Click the [Next] button at the bottom left.
-
-<img src="./GUIDE-img/create-custom-role(h2)-2.png" width="80%" height="80%">
-
-(3) Click [JSON] in the tab menu.
-
-(3-1) Click the [Edit] button.
-
-<img src="./GUIDE-img/create-custom-role(h2)-3.png" width="80%" height="80%">
-
-(3-2) In the code block, go to [properties > permissions > actions] and [in the document](https://github.com/cloudforet-io/plugin-azure-inven-collector#custom-roles-for-collecting-azure -cloud-resources) Add the permissions listed.
-
-<img src="./GUIDE-img/create-custom-role(h2)-4.png" width="80%" height="80%">
-
-(3-3) Click the [Save] button.
-
-(3-4) Click the [Next] button.
-
-(4) After creating a custom role [3. Roles are assigned through the [Role Grant] (#3-Role-Grant) process.
-