question

ox1ygen avatar image
0 Votes"
ox1ygen asked azure-cxp-api edited

How to secure an Azure AD Application?

Hello,

Could anyone please tell me any valid way to secure an Azure AD application that is operated via client_credentials flow?

Is there any way to restrict access by IP?

I store my credentials in Azure Key Vault. But if the credentials were stolen, at least an IP restriction policy for the applicaion could help a bit.

Thanks in advance!

azure-active-directory
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

michev avatar image
1 Vote"
michev answered

That's all on the roadmap. For the time being, pray :D Or use certificate instead, as you can restrict the use of the private key to specific machines only.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JamesHamil-MSFT avatar image
0 Votes"
JamesHamil-MSFT answered

Hi @ox1ygen , I can't speak on the roadmap but I concur with @michev about using a certificate. Thanks for your help @michev !

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.