https://www.verboon.info/tags/azuresentinel/Recent content in Azuresentinel on Anything About ITHugoen-usSat, 10 Oct 2020 14:14:12 +0000https://www.verboon.info/2020/10/monitoring-service-principal-sign-ins-with-azuread-and-azure-sentinel/Sat, 10 Oct 2020 14:14:12 +0000https://www.verboon.info/2020/10/monitoring-service-principal-sign-ins-with-azuread-and-azure-sentinel/<p>Here is a conversation between Jeffrey (Developer) and Marc (IT Admin) working for ECorp Ltd.</p> <p> <img src="images/101020_1404_MonitoringS1.png" alt=""> </p> <p>Looks familiar? Take a look in your Azure Active directory, how many applications do you have there? In an ideal world you maintain an inventory of all these applications somewhere in your asset management database so that you know who is the owner of the Application and what it is used for and what API permissions are granted. As for the client secret, this should be stored in a Vault.</p>