Reporting Usage of Azure App Proxy App Registrations / Service Principals

Jamie Brandwood 131 Reputation points
2024-11-27T12:53:20.3+00:00

Is there anyway to report on the usage of the App Registration / Service Principal used for an Application Proxy? Even though the App Proxy service registers a client secret for pre-authentication there is never any sign-in data for the service principal ...

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,450 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Deepanshukatara-6769 11,700 Reputation points
    2024-11-27T13:01:23.6533333+00:00

    hello Jamies, Welcome to MS Q&A

    To report on the usage of the App Registration or Service Principal used for an Application Proxy, you can utilize the Service principal sign-in activity report available in Microsoft Entra. This report provides the last activity date for every service principal, detailing whether it was used as a client or resource app and in what context (app-only or delegated).

    You can access this report through the Microsoft Entra admin center or by using Microsoft Graph. Service principal sign-in activity using Microsoft Graph.The servicePrincipalSignInActivity reports can be viewed using Microsoft Graph.

    Add the following query in Graph Explorer to retrieve the service principal sign-in activity, then select the Run query button.

    GET https://graph.microsoft.com/beta/reports/servicePrincipalSignInActivities/{id}
    

    References:

    Please let us know if any questions

    Kindly accept answer if it helps

    Thanks

    Deepanshu


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.