078 - Azure Identities mit Thomas Naunheim
Special Guest für diese Folge: Unser Kollege Thomas Naunheim und wir sprechen über das Thema Identitäten im Azure Umfeld. Benutzer, Service Principal, App Regsitration, Enterprise Apps, Workload Identities… am Ende habt ihr den Durchblick.
Show notes:
Federated identity credentials https://docs.microsoft.com/en-us/graph/api/resources/federatedidentitycredentials-overview?view=graph-rest-beta
Managed Identities (System vs. Assigned): https://docs.microsoft.com/en-us/azure/active-directory/managed-identities-azure-resources/overview#managed-identity-types
Application Registration vs. Service Principal https://docs.microsoft.com/en-us/azure/active-directory/develop/app-objects-and-service-principals
Detection of abusing Azure AD Federated Identity Credentials in GitHub Actions https://www.cloud-architekt.net/github-enterprise-monitoring-sentinel/