Service Principal Management
  • 05 Dec 2022
  • 2 Minutes to read
  • Contributors
  • Dark
    Light
  • PDF

Service Principal Management

  • Dark
    Light
  • PDF

Introduction

The first step in getting started with a Business Application in Serverless360 is to add a Service Principal.

Service Principal is an application within Azure Active Directory, which is authorized to access resources in Azure Stack.

Serverless360 uses the authentication tokens of the Service Principal to manage the resources.

Client secret expiry

  • Serverless360 allows users to configure the same date as the Azure portal in order to notify users 7 days before the expiration date to change the Client secret.

  • Users can change the Client secret expiry date when adding or editing a Service Principal during Service Principal management or Business Application management.

Adding a Service Principal

  • Users can add a Service Principal at any time by using the Explorer View to navigate to the Service principals section and clicking the Add button.

  • Provide the necessary Subscription details such as Tenant id, Client id, and Client secret expiration date or unselect Add new Service Principal and select a Service principal that was previously added in general settings.

Refer to this article to get to know about adding Service Principals in General-Settings.

sp add.png

add.png

  • A Friendly name helps to easily identify the Service Principal from Serverless360 if many Service Principals are added.

  • The next step in adding a Service Principal is to define the corresponding Service Principal's access policy within the Business Application module. Users are asked to specify which Business Groups should have access to the Service Principal.

Users can only manage the corresponding Service Principal's resources and perform its operations within the specified Business group level.

Updating a Service Principal

  • The added Service Principals can be updated by navigating to the Service principals section and editing the respective Service Principal with the help of the Edit icon.

  • The Service Principal Client secret information and its date, as well as the corresponding Service Principal's access policy, can be updated.

sp edit.png

edit sp 2.png

Removing a Service Principal

Removing the Service Principal will remove the associated resources referring to this Service Principal from Serverless360.

The added Service Principal can be removed with the help of the Delete icon in the Service principals section.

remove.png

Service Principal with Multiple Subscriptions

  • Previously, users had to provide service principal information for each subscription separately. However, this is no longer necessary because the Serverless360 team has reduced customer effort by allowing users to select all the required subscriptions available for a specific Service principal at the same time.

  • This functionality is available in key areas of Business Application operations, including Business Application Management, Business Application Group Management, and Service Principal Management.


Was this article helpful?