App Secret Expires [CHK-1162]
This check identifies application registrations with secrets that are due to expire within 30 days.
Rationale
Application Registrations are often used to automate processes, with authentication managed through secrets and certificates. These have an expiration date, and if not renewed, can lead to process interruptions and potential downtime.
Fix
An automated fix is not available for this issue. To fix it manually:
- Open the Entra ID management portal: https://entra.microsoft.com
- Navigate to Applications and App registrations.
- Click on All applications and find the application that the alarm is about.
- Click on the name of the application.
- Go to Certificates & secrets.
- Create a new Secret or upload a new certificate.
- Incorporate new authentication methods into other scripts or systems that communicate with App registration.
Impact
Renewing these secrets in time ensures the continuous operation of your applications and prevents unexpected downtime.