Share via

Azure Entra - Application Registrations - Stale Entries

Chris Hammond 21 Reputation points
2024-07-19T09:44:21.0966667+00:00

In our Azure estate, we use Microsoft as our OAuth token provided and we have a massive list of Application Registrations.

We have a weekly report that will produce a list of all entries where their client secret key is due to expire on next

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,997 questions
0 comments
Accepted answer
  1. akinbade abiola 12,900 Reputation points
    2024-07-19T10:11:48+00:00

    The closest data you can use is the sign-in activity of non-user accounts in the Entra sign-ins log. Service principals etc are included here so this might be what you are looking for: https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-all-sign-ins#non-interactive-user-sign-ins

    You can mark it 'Accept Answer' and 'Upvote' if this helped you

    Regards,

    Abiola

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Vinit Tyagi 0 Reputation points
    2024-07-19T10:20:33.0366667+00:00

    Identifying and managing stale entries in Azure Entra's Application Registrations can help keep your directory clean and secure. Here are some steps to do this:

    Audit Application Usage:

    • Navigate to the Azure Portal and go to Azure Active Directory.
      • Select "Enterprise applications" and then "All applications."
        • Review the sign-in activity for each application. Applications with no recent sign-ins may be stale.
        Review Application Owners: 
        - Check the list of owners for each application. If the owners are no longer with the organization or their roles have changed, the application might be outdated.

**Check App Registration Dates:**

   - Look at the creation and last updated dates of your app registrations. Older applications that haven't been updated in a while might be candidates for review.

   **Communicate with Teams:**

      - Reach out to the teams or individuals responsible for the applications. Confirm whether the applications are still in use or if they can be deprecated.

      **Set Policies:**

         - Implement policies for regular reviews of application registrations.

            - Establish a process for deprecating and deleting applications that are no longer needed.

            **Use Automation:**

               - Consider using Azure automation tools to identify and flag stale applications based on criteria like no recent sign-ins or owner inactivity.

    By regularly reviewing and managing your application registrations, you can ensure that your Azure environment remains secure and up-to-date.

    0 comments