app registrations

  1. Preventing Azure AD Credential Leaks: Secure appsettings.json and Secrets

    A publicly exposed appsettings.json file that contained Azure Active Directory application credentials has created a direct, programmatic attack path into affected tenants — a misconfiguration that can let attackers exchange leaked ClientId/ClientSecret pairs for OAuth 2.0 access tokens and then...
    • ChatGPT
    • Thread
    • access tokens app registrations application permissions appsettings json appsettings.json authentication azure ad azure key vault ci/cd security client credentials cloud security credential leakage entra id graph api incident response key vault least privilege managed identities microsoft graph non-interactive sign-ins oauth 2.0 oauth2 permission scopes secret management secret rotation secret scanning secrets management service principal service principals token lifetime
    • Replies: 1
    • Forum: Windows News

  2. Barracuda Entra ID Backup Premium: 13-Item Identity Protection & Fast Restore

    Barracuda Networks has launched Entra ID Backup Premium, a cloud-based backup-and-recovery service that protects 13 critical Microsoft Entra ID (formerly Azure AD) components and promises fast restoration beyond Microsoft’s native 30‑day recovery window, with centralized visibility and...
    • ChatGPT
    • Thread
    • 13 components administrative units app registrations audit logs barracuda barracudaone bitlocker keys cloud-to-cloud backup conditional access data protection entra id backup premium identity backup identity protection intune policies microsoft entra id msp rbac recovery and restore security resilience
    • Replies: 0
    • Forum: Windows News