Hi @Evan.Bonnett ,
For delegated permissions, the effective permissions of your app are the intersection of the delegated permissions the app has been granted and the privileges of the currently signed-in user. Your app can never have more privileges than the signed-in user.
Besides, AllSites.Manage permission doesn't require admin consent. So you could register an app as a normal user and give it allsite.manage permission. As the below:
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.