Hello,
I have an Application. It has an Application Permission set (Directory.Read.All). It has a client secret set.
So, is there a way to update password credentials or generate a new client secret without any delegated permissions AND without Application Permission - Application.ReadWrite.All?
Something like Application.ReadWrite.Self.
Thanks in advance!
Perhaps, @michev, you know any way to perform something like this?
@ox1ygen, I believe you can use the following PS cmdlet to create a new App Secret:
$startDate = Get-Date
$endDate = $startDate.AddYears(3)
$aadAppsecret01 = New-AzureADApplicationPasswordCredential -ObjectId {objectID of the registered application} -CustomKeyIdentifier "Secret01" -StartDate $startDate -EndDate $endDate
Do let me know if this helps. Also, if this helps in answering your query, it would be great if you can mark this response as "Answer", so that it helps others in the community too.
@soumi-MSFT Thank you for your reply. Well, it would work if I provided my application with an application permission "Application.ReadWrite.All". But! I do not intend to use such a permission. Is there any other permission that I can use to perform such an action (change app secret fro itself)?
10 people are following this question.
