I understand its a basic question, but my doubts were not cleared.
Suppose I have an application that supports Managed Identities. Does that mean the application will have an identity in the Azure AD and on top of that client id, tenant id and client secret would be used to authenticate the application which is trying to authenticate to AD?
Secondly, suppose I share the three credentials with some one outside the organization, will he be able to impersonate me? My understanding is no because the identity of the application in Azure AD would be a mismatch and the communication will not be permitted.