You have a service principal in your tenant. Either you created it yourself or it’s a service principal for an app registration from another tenant (multi tenant application). Now this service principal needs access to an addition role. It’s not always possible to do a new admin consent sometimes you want the change just for a single service principal in a single tenant. I wrote about this before, but since the Azure AD module is depreciated, it’s time to do the same with the new Micros...| Coding Stephan
You have this multi-tenant application that is protected with Azure AD, great! How about the certificate you’re using as a client credential? If you followed the Microsoft samples it’s probably stored in the Azure Key Vault. This seems really secure, but there is one thing no one thought about Certificate Extraction.| svrooij.io
Ever used Managed Identities in Azure? You should, it’s a great way to get rid off passwords in your code and configuration. In this post I’ll show you how managed identities actually work. And how I built a small app that should help you use the ManagedIdentityCredential in Docker and or during development. App running in docker using Managed Identity| svrooij.io
Ever since Microsoft created managed identities, people are asking how/if they work for multi-tenant applications. They even spend a faq on it. Previously you had to go through some hoops to use managed identities with your multi tenant app. Let’s have a look if we can solve this with in combination with federated credentials.| svrooij.io