This solution gathers information about App Registrations and Service Principals of an Entra ID tenant and shows the information in a Power BI report.
There’s also some extra information like expiring credentials, permissions granted to the apps, and EXO policies tied to these apps.
- Power BI report with information of App Registrations and Service Principals.
- Email notifications of expiring credentials to application owners (see email notifications).
- EXO Application Access Policies related to the tenant's service principals.
- Information about EXO Role assignments assigned to service principals.
The solution uses these Azure resources:
| Resource | Reason |
|---|---|
| Automation Account | Used to execute the runbooks that gather information from Entra ID |
| Storage Account (tables) | Used to store the information about apps, service principals and sent notifications. |
A diagram to show the architecture:
The deployment consists of several steps:
- Create all the Azure resources.
- Set up variables in the Automation account.
- Schedule the runbooks.
- Connect and publish the report.
Head over to the install docs to get started.
More information available here: