Forum Discussion
App secret (application secret) Azure AD - Azure AD App Secrets
- Mar 23, 2023
There are two types of authentication available for service principals: password-based authentication (application secret) and certificate-based authentication. We recommend using a certificate, but you can also create an application secret.
Option 2: Create a new application secret
If you choose not to use a certificate, you can create a new application secret.
- Search for and select Azure Active Directory.
- Select App registrations and select your application from the list.
- Select Certificates & secrets.
- Select Client secrets, and then Select New client secret.
- Provide a description of the secret, and a duration.
- Select Add.
Once you've saved the client secret, the value of the client secret is displayed. Copy this value because you won't be able to retrieve the key later. You'll provide the key value with the application ID to sign in as the application. Store the key value where your application can retrieve it.
Please click Mark as Best Response & Like if my post helped you to solve your issue. This will help others to find the correct solution easily.
See how to do it:
1- Click on Monitor in the left-hand menu
2- In the Monitor pane, click on Alerts
3- Click on the + New alert rule button
4- In the Scope section, click on Select resource and choose your desired subscription and Azure Active Directory tenant
5- In the Condition section, click on Add to define a new condition
6- In the Signal type dropdown, choose Activity Log
7- In the Activity Log - Event search box, type Add service principal credentials and select it
8- Set the Threshold value to 1 (to trigger an alert for every instance of the event)
9- Click on Done to add the condition
10- In the Actions section, click on Create a new action group or select an existing action group to specify the alert's recipients and notification methods (email, SMS, or push notification)
11- Set the Alert rule details by providing a name, description, and severity for the alert
12- Click on Create alert rule to save the new alert.
Once the alert is set up, you'll be notified when a new App Secret is created in your Azure Active Directory tenant based on the notification methods defined in your action group.
- josequintinoMar 27, 2023Iron Contributorayoub92635, you're welcome!
- ayoub92635Mar 27, 2023Copper ContributorMany thanks ! For the "Unsecure Account" you sent me recommendations to apply, I want to know how to be notified to receive alerts when an "unsecure account" is created, knowing that I only have Microsoft Defender to view the alerts.
An alert created when "unsecure account " is created please