About Show #864
Do your applications need identities? Richard talks to Martin Ehrnst about how all Azure resources, including your applications, need an identity to function well in the Azure ecosystem. Martin talks about registering an application with Azure AD, a process that includes a manifest showing how it should be authenticated and what resources it needs. Then to the more confusing part - the service principals that show up as enterprise applications to provide access to the application within your tenant or even across tenants! The conversation goes further into managed identities and this emerging world of many-to-many identity relationships. Ultimately it's the most powerful way to deal with access rights, but that doesn't mean it's simple!
Links:
- Azure Active Directory
- Azure Entra
- Azure AD Application Model
- Key Vault
- Managed Identities for Azure Resources
- Bicep
Recorded December 14, 2022