You can use the App registrations page in the Microsoft Entra admin center to list and manage the application objects in your home tenant. The actions that the application can take.The resources that the application might need to access.How the service can issue tokens in order to access the application.The application object describes three aspects of an application: Similar to a class in object-oriented programming, the application object has some static properties that are applied to all the created service principals (or application instances). A service principal is created in every tenant where the application is used. An application object is used as a template or blueprint to create one or more service principal objects. Application objectĪ Microsoft Entra application is defined by its one and only application object, which resides in the Microsoft Entra tenant where the application was registered (known as the application's "home" tenant). If you register/create an application using the Microsoft Graph APIs, creating the service principal object is a separate step. If you register an application, an application object and a service principal object are automatically created in your home tenant. You can add secrets or certificates and scopes to make your app work, customize the branding of your app in the sign-in dialog, and more. You also have a globally unique ID for your app (the app/client ID). When you've completed the app registration, you have a globally unique instance of the app (the application object) that lives within your home tenant or directory. For step-by-step instructions on registering an app, see the app registration quickstart. When you register an app, you choose whether it's a single tenant, or multi-tenant, and can optionally set a redirect URI. When you register your application with Microsoft Entra ID, you're creating an identity configuration for your application that allows it to integrate with Microsoft Entra ID. To delegate identity and access management functions to Microsoft Entra ID, an application must be registered with a Microsoft Entra tenant. A multi-tenant example scenario is also presented to illustrate the relationship between an application's application object and corresponding service principal objects. This article describes application registration, application objects, and service principals in Microsoft Entra ID, what they are, how they're used, and how they're related to each other.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |