Service Principal Management
  • 22 Jun 2022
  • 1 Minute to read
  • Contributors
  • Dark
    Light
  • PDF

Service Principal Management

  • Dark
    Light
  • PDF

Introduction

The first step in getting started with a Business Application in Serverless360 is to add a Service Principal.

Service Principal is an application within Azure Active Directory, which is authorized to access resources in Azure Stack.

Serverless360 uses the authentication tokens of the Service Principal to manage the resources.

Client secret expiry

  • Serverless360 allows users to configure the same date as the Azure portal in order to notify users 7 days before the expiration date to change the Client secret.

  • Users can change the Client secret expiry date when adding or editing a Service Principal during Service Principal management or Business Application management.

Adding a Service Principal

  • Users can add a Service Principal at any time by using the Explorer View to navigate to the Service principals section and clicking the Add button.

  • Provide the necessary Subscription details such as Tenant id, Client id, and Client secret expiration date.

Add SP.png

  • A Friendly name helps to easily identify the Service Principal from Serverless360 if many Service Principals are added.

  • The next critical step in adding a Service Principal is to define the corresponding Service Principal's access policy within the Business Application module. Users are asked to specify which Business Groups should have access to the Service Principal.

SP Access Policy.png

Users can only manage the corresponding Service Principal's resources and perform its operations within the specified Business group level.

Updating a Service Principal

  • The added Service Principals can be updated by navigating to the Service principals section and editing the respective Service Principal with the help of Edit icon.

  • The Service Principal name and Client secret information, as well as the corresponding Service Principal's access policy, can be updated.

Edit SP.png

Updating Access Policy.png

Removing a Service Principal

  • Removing the Service Principal will remove the associated resources referring to this Service Principal from Serverless360.

  • The added Service Principal can be removed with the help of the Delete icon available next to it in the Service principals section.

Remove SP.png

Service Principal with Multiple Subscriptions

  • Previously, users had to provide service principal information for each subscription separately. However, this is no longer necessary because the Serverless360 team has reduced customer effort by allowing users to select all the required subscriptions available for a specific Service principal at the same time.

  • This functionality is available in key areas of Business Application operations, including Business Application management, Business Application Group management and Service Principal management.


Was this article helpful?