Service Principal Account Management

To access resources that are secured by an Microsoft Entra ID tenant, the entity that requires access must be represented by a security principal. This requirement is true for both users (user principal) and applications (service principal). The security principal defines the access policy and permissions for the user/application in the Microsoft Entra ID tenant.

This is the companion discussion topic for the documentation at

2 posts were split to a new topic: Schema Attributes for Managing Service Principals as Accounts

There is an information I found on the HomePage and not on this one :
“If you want to enable additional cloud governance features (for example, […] managing the life cycle of Service Principals as “accounts”) for your Azure Cloud Objects, you must have a CIEM license”
Do we need extra licenses ?

A post was split to a new topic: Managing service principals as accounts

Hi Dylan, some cloud governance features require the additional license. Managing Service Principals as accounts no longer requires an additional license. For more information on features requiring a CIEM license, refer to Group Management for Azure Cloud Objects.