Forum Discussion
How to recognize the correct Enterprise Application
Hello All, I have a DevOps project with several ARM service connections with workload identity federation. I can find them from the Azure portal by name, but the generated name is the same on...
Take this:
- Check the Application Object and Service Principal Object: Each registered application in Azure Active Directory (AAD) creates two objects. The Application Object is what you see under App Registrations, and the Service Principal Object is what you see under Enterprise Applications. Ensure you're looking at the correct Service Principal Object.
- Use the Application (Client) ID: The Application ID (also known as Client ID) is unique to each application and can help you differentiate between them. You can find this ID in the App Registration details.
- Review the ObjectID and ApplicationID: The ObjectID and ApplicationID should match the Service Principal Object in the Enterprise Applications blade. If they don't, there might be an issue with how the service connections were set up.
- Check the Permissions and Roles: Look at the permissions and roles assigned to each Service Principal Object. This can give you clues about which application it corresponds to based on the resources it can access.
- Use Azure CLI or PowerShell: You can use Azure CLI or PowerShell commands to list and inspect the details of your service connections and Enterprise Applications. This can help you gather more information and identify discrepancies.