078 - Azure Identities mit Thomas Naunheim

Fri, Mar 11, 2022

Special Guest für diese Folge: Unser Kollege Thomas Naunheim und wir sprechen über das Thema Identitäten im Azure Umfeld. Benutzer, Service Principal, App Regsitration, Enterprise Apps, Workload Identities… am Ende habt ihr den Durchblick.

https://twitter.com/thomas_live
https://www.cloud-architekt.net

Show notes:

Federated identity credentials https://docs.microsoft.com/en-us/graph/api/resources/federatedidentitycredentials-overview?view=graph-rest-beta

Managed Identities (System vs. Assigned): https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview#managed-identity-types

Application Registration vs. Service Principal https://docs.microsoft.com/en-us/azure/active-directory/develop/app-objects-and-service-principals

Detection of abusing Azure AD Federated Identity Credentials in GitHub Actions https://www.cloud-architekt.net/github-enterprise-monitoring-sentinel/