Recovered first Step 7 and made other fixes

There was a "7." in "Install and configure Micro Focus ArcSight FlexConnector" starting the paragraph before the correctly formatted Step 7. I also replaced 'br' tags within that paragraph with paragraph breaks.

windows/security/threat-protection/microsoft-defender-atp/configure-arcsight.md

@@ -35,6 +35,7 @@ You'll need to install and configure some files and tools to use Micro Focus Arc
 >- [Microsoft Defender ATP Detection](api-portal-mapping.md) is composed from the suspicious event occurred on the Machine and its related Alert details.
 
 ## Before you begin
+
 Configuring the Micro Focus ArcSight Connector tool requires several configuration files for it to pull and parse detections from your Azure Active Directory (AAD) application.
 
 This section guides you in getting the necessary information to set and use the required configuration files correctly.
@@ -59,6 +60,7 @@ This section guides you in getting the necessary information to set and use the
   You can generate these tokens from the **SIEM integration** setup section of the portal.
 
 ## Install and configure Micro Focus ArcSight FlexConnector
+
 The following steps assume that you have completed all the required steps in [Before you begin](#before-you-begin).
 
 1. Install the latest 32-bit Windows FlexConnector installer. You can find this in the HPE Software center. The tool is typically installed in the following default location: `C:\Program Files\ArcSightFlexConnectors\current\bin`.</br></br>You can choose where to save the tool, for example C:\\*folder_location*\current\bin where *folder_location* represents the installation location.
@@ -79,8 +81,9 @@ The following steps assume that you have completed all the required steps in [Be
 
    - WDATP-connector.properties: C:\\*folder_location*\current\user\agent\flexagent\
 
-   NOTE:
+   > [!NOTE]
-   You must put the configuration files in this location, where *folder_location* represents the location where you installed the tool.
+   > 
+   > You must put the configuration files in this location, where *folder_location* represents the location where you installed the tool.
 
 4. After the installation of the core connector completes, the Connector Setup window opens. In the Connector Setup window, select **Add a Connector**.
 
@@ -114,30 +117,36 @@ The following steps assume that you have completed all the required steps in [Be
     </td>
     </tr>
     </tr>
-    </table><br/>7. A browser window is opened by the connector. Login with your application credentials. After you log in, you&#39;ll be asked to give permission to your OAuth2 Client. You must give permission to your OAuth 2 Client so that the connector configuration can authenticate. </br></br>
+    </table><br/>
-   If the <code>redirect_uri</code> is a https URL, you&#39;ll be redirected to a URL on the local host. You&#39;ll see a page that requests for you to trust the certificate supplied by the connector running on the local host. You&#39;ll need to trust this certificate if the redirect_uri is a https. </br></br> If however you specify a http URL for the redirect_uri, you do not need to provide consent in trusting the certificate.
     
-7. Continue with the connector setup by returning to the Micro Focus ArcSight Connector Setup window.
+7. A browser window is opened by the connector. Login with your application credentials. After you log in, you'll be asked to give permission to your OAuth2 Client. You must give permission to your OAuth 2 Client so that the connector configuration can authenticate.
 
-8. Select the **ArcSight Manager (encrypted)** as the destination and click **Next**.
+   If the <code>redirect_uri</code> is a https URL, you'll be redirected to a URL on the local host. You'll see a page that requests for you to trust the certificate supplied by the connector running on the local host. You'll need to trust this certificate if the redirect_uri is a https.
    
-9. Type in the destination IP/hostname in **Manager Hostname** and your credentials in the parameters form. All other values in the form should be retained with the default values. Click **Next**.
+   If however you specify a http URL for the redirect_uri, you do not need to provide consent in trusting the certificate.
 
-10. Type in a name for the connector in the connector details form. All other values in the form are optional and can be left blank. Click **Next**.
+8. Continue with the connector setup by returning to the Micro Focus ArcSight Connector Setup window.
 
-11. The ESM Manager import certificate window is shown. Select **Import the certificate to connector from destination** and click **Next**. The **Add connector Summary** window is displayed and the certificate is imported.
+9. Select the **ArcSight Manager (encrypted)** as the destination and click **Next**.
 
-12. Verify that the details in the **Add connector Summary** window is correct, then click **Next**.
+10. Type in the destination IP/hostname in **Manager Hostname** and your credentials in the parameters form. All other values in the form should be retained with the default values. Click **Next**.
 
-13. Select **Install as a service** and click **Next**.
+11. Type in a name for the connector in the connector details form. All other values in the form are optional and can be left blank. Click **Next**.
 
-14. Type a name in the **Service Internal Name** field. All other values in the form can be retained with the default values or left blank . Click **Next**.
+12. The ESM Manager import certificate window is shown. Select **Import the certificate to connector from destination** and click **Next**. The **Add connector Summary** window is displayed and the certificate is imported.
 
-15. Type in the service parameters and click **Next**. A window with the **Install Service Summary** is shown. Click **Next**.
+13. Verify that the details in the **Add connector Summary** window is correct, then click **Next**.
 
-16. Finish the installation by selecting **Exit** and **Next**.
+14. Select **Install as a service** and click **Next**.
+
+15. Type a name in the **Service Internal Name** field. All other values in the form can be retained with the default values or left blank . Click **Next**.
+
+16. Type in the service parameters and click **Next**. A window with the **Install Service Summary** is shown. Click **Next**.
+
+17. Finish the installation by selecting **Exit** and **Next**.
 
 ## Install and configure the Micro Focus ArcSight console
+
 1. Follow the installation wizard through the following tasks:
    - Introduction
    - License Agreement
@@ -170,6 +179,7 @@ Microsoft Defender ATP detections will appear as discrete events, with "Microsof
 
 
 ## Troubleshooting Micro Focus ArcSight connection
+
 **Problem:** Failed to refresh the token. You can find the log located in C:\\*folder_location*\current\logs where *folder_location* represents the location where you installed the tool. Open _agent.log_ and look for `ERROR/FATAL/WARN`.
 
 **Symptom:** You get the following error message:
@@ -177,7 +187,9 @@ Microsoft Defender ATP detections will appear as discrete events, with "Microsof
 `Failed to refresh the token. Set reauthenticate to true: com.arcsight.common.al.e: Failed to refresh access token: status=HTTP/1.1 400 Bad Request FATAL EXCEPTION: Could not refresh the access token`
 
 **Solution:**
+
 1. Stop the process by clicking Ctrl + C on the Connector window. Click **Y** when asked "Terminate batch job Y/N?".
+
 2. Navigate to the folder where you stored the WDATP-connector.properties file and edit it to add the following value:
    `reauthenticate=true`.