Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
936 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
A customer is looking to restrict app registration client secret to 6 months globally. Is there a way to accomplish this using Azure policy for example?
Thanks.
You can use the Application management method policy: https://learn.microsoft.com/en-us/graph/api/resources/applicationauthenticationmethodpolicy?view=graph-rest-1.0
Unfortunately, there is no UI to leverage for that, you have to configure it via the Graph API. And, since the feature was released, Microsoft updated the licensing requirements and you now need to have Entra Workload ID Premium SKU :(