This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 34%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJL%3C/text%3E%3C/svg%3E)
Hi everyone, curious to know how other Entra ID Admins have named their "App Registrations" and if they have some sort of naming convention they found useful which they could share or suggest?
I was thinking something along the lines of:
Example Format:
<organization/team> - <workload, application, or project> - <app scope> - <environment> - <instance>
Examples:
contoso-abc-user_read-prod-01
contoso-abc-user_read_all-prod-01
contoso-xyz-user_read_write-prod-01
contoso-abc-directory_read_write_all-qa-02
P.S. I am not referring to the Azure Resource Naming Convention :)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
That's a great question and one that a lot of Entra ID admins grapple with, especially as the number of app registrations grows and the importance of lifecycle management, auditing, and automation increases.
Your proposed format is actually quite clean and aligns with the approach I've been using. I also tend to use the following naming elements for app registrations:
| Element | Description | Example |
|---|---|---|
org or team |
Your organization or the owning team | contoso, hr, it, billing |
app name / workload |
The actual purpose, system, or integration name | crm, timesheet, invoicing |
scope/type |
What the app does or what API access it needs | user_read, directory_rw, graph_client |
env |
Environment indicator | dev, qa, prod, uat |
instance (optional) |
For multiple copies or versions | 01, 02, int, alt |
You might consider the following format (just a slight refinement comparing with the one you originally suggested):
<org/team>-<workload/app>-<access_scope>-<environment>[-<instance>]
Examples:
contoso-crm-user_read-prodcontoso-hr-graph_rw-qa-02finance-tax-reporting-client_creds-devsalesforce-api-access-token-exchange-prodintune-device-mgmt-graph_rw-prod-01If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.
hth
Marcin