Have Platform Common services for PI use least privilege access on the Azure directory

Some Azure Active Directory (Entra ID) administrators will be hesitant to give the registered application for the AIM Server Directory.Read.All privileges. It should be feasible to give the application lesser privileges on the directory while still having it function properly.