Share via

Entra App Registration - Policy to Restrict Client Secret Expiration to 6 Months Globally

Terru Ahmad 40 Reputation points Microsoft Employee
2024-11-05T16:53:50.8366667+00:00

Hello,

A customer wants to restrict App registration client secret to 6 months for all developers globally. Is there a way to implement this, for example, using Azure Policy?

Thanks.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
25,016 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andy David - MVP 157.2K Reputation points MVP Volunteer Moderator
    2024-11-05T17:42:32.1533333+00:00
    0 comments
  2. Raja Pothuraju 22,980 Reputation points Microsoft External Staff Moderator
    2024-11-06T19:50:32.7833333+00:00

    Hello @Terru Ahmad,

    Thank you for posting your query on Microsoft Q&A.

    From your description, I understand that you want to restrict client secret validity to 6 months. As Andy suggested, you can manage this using an application management policy.

    Additionally, if your main objective is to ensure that client secrets only remain active for 6 months, I recommend creating client secrets in your App Registration with a 6-month expiration. This can be easily configured in the Azure Portal when setting up the client secret.User's image

    I hope this information is helpful. Please feel free to reach out if you have any further questions.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Thanks,
    Raja Pothuraju.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.