May 29 2020
- last edited on
Jan 14 2022
I would like to know more about the service principal in Azure AD.
When we create a service principal in Azure AD,It creates two resources :
1) Service Principal in App Registration
2) Service Principal in Enterprise Application
Application Id for both is same but object Ids are different ?
How to retrieve these object Ids via powershell?
May 29 2020 08:56 AM
One is the actual application object, where you configure the properties of your app (authentication, permissions, replyURIs and so on). The other one is a representation of the application within a directory, this can be your own directory or another company directory, etc. It "inherits" the settings from the application object and is what's used to grant consent/permissions to resources.
May 30 2020 04:15 AM
Hi @Vasil Michev ,
Thanks for the explanation.
Can you elaborate a bit more one when to use application object id and when to use service principal object id?
May 30 2020 09:20 AM
Not sure what you are trying to do, so don't know what to elaborate :) The documentation gives you more details if needed: https://docs.microsoft.com/en-us/azure/active-directory/develop/app-objects-and-service-principals
Jun 01 2020 01:07 AM