leapp icon indicating copy to clipboard operation
leapp copied to clipboard
verified publisher icon Noovolari

Support for Azure AD Service Principals

Open andreacavagna01 opened this issue 4 years ago • 1 comments

Add plain support for Azure AD Service Principals like we've done for AWS Plain Account

andreacavagna01 avatar Mar 25 '21 09:03 andreacavagna01

It is an interesting feature. I would spend my two cents on it, as I've taken some time to understand how SPs work. So, basically, they're thought to be used for automation script and application development, but I've already found two different use case in which support to Service Principal could come in handy.

  • First one: you can log into Azure with Service Principals credentials using the password or certificate-based authentication.
  • Second option: you can use az ad sp create-for-rbac — sdk-auth command to obtain a JSON representation of the Service Principal, that can be used by applications based on Azure SDK.

Let me know if it makes sense to you.

References:

  • https://docs.microsoft.com/en-us/dotnet/azure/authentication
  • https://docs.microsoft.com/it-it/cli/azure/ad/sp?view=azure-cli-latest#az_ad_sp_create_for_rbac

ericvilla avatar Mar 25 '21 14:03 ericvilla