What is the difference between Entreprise App and App registration? What is the security risk of Entreprise App and App registration

TEST DIALLO 6 Reputation points
2022-11-16T04:20:14.847+00:00

Hi ,

Some can one explain me what is the difference between Entreprise App and Application registration.
I found some explantion in stackoverflow and in this forum but is not clear for me.

My second question, what is the security risk for your company to do not manage these applications ?
I find Alexa App in the list of EntrepriseApp, and the owners of some app have already left the company.
Is there any way to have data access of our Azure tenant ? I want to have some risk using app registration, and Entreprise App.

Thanks!

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Bruno Lucas 4,436 Reputation points MVP
    2022-11-16T05:31:11.397+00:00

    Hi @TEST DIALLO

    If you have an azure resource like an azure function or web app and you secure that with an app registration, that will create a Service Principal (a way to add your app to azure AD and secure that with AD authentication (very raw explanation))

    The service principal for your apps will display under the "Enterprise App" but only under your tenant unless you publish it like this:
    https://learn.microsoft.com/en-us/azure/active-directory/manage-apps/v2-howto-app-gallery-listing

    if you follow that publish procedure you make it available to other tenants

    regarding "My second question, what is the security risk for your company to do not manage these applications "
    are you planning to develop an app for other companies to use/integrate with or just for your own company?

    App registrations are very safe. Of course there are best practices to secure the Service principal secret or any other authentication means provided: https://learn.microsoft.com/en-us/azure/active-directory/develop/security-best-practices-for-app-registration

    Case that information helps, don't forget to vote or mark as Answer to help the community. Cheers!

    1 person found this answer helpful.
    0 comments No comments

  2. Cristian SPIRIDON 4,486 Reputation points Volunteer Moderator
    2022-11-16T05:31:24.737+00:00

    Hi,

    You can find more details about the difference in bellow answer:

    https://learn.microsoft.com/en-us/answers/questions/270680/app-registration-vs-enterprise-applications.html

    Regarding security risks, you should review the permisions that enterprise app have in your tenant and expecially the application permisions.

    Regarding app registration you can review the certicates and secrets and maybe you can rotate them.

    Hope this helps!

    1 person found this answer helpful.
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.