AzureADAppCredWatcher
1.0.0
Azure AD Application Credential Watcher : Watch if Azure AD application certificates & secrets expire soon (or have already expired) and send an alert (via Office 365 mail).
/!\ REQUIRE AZURE AUTOMATION /!\
Use this script as Azure Automation PowerShell runbook
/!\ REQUIRE AZURE AD SERVICE PRINCIPAL /!\
Like many apps / runbooks in Azure, Azure AD this runbook n
/!\ REQUIRE AZURE AUTOMATION /!\
Use this script as Azure Automation PowerShell runbook
/!\ REQUIRE AZURE AD SERVICE PRINCIPAL /!\
Like many apps / runbooks in Azure, Azure AD this runbook n
Azure AD Application Credential Watcher : Watch if Azure AD application certificates & secrets expire soon (or have already expired) and send an alert (via Office 365 mail).
/!\ REQUIRE AZURE AUTOMATION /!\
Use this script as Azure Automation PowerShell runbook
/!\ REQUIRE AZURE AD SERVICE PRINCIPAL /!\
Like many apps / runbooks in Azure, Azure AD this runbook needs a service principal to run (also known as Automation RunAs Account / Automation Connection). This service principal needs to read Azure AD application data (e.g. Global Reader).
See https://github.com/jdmsft/AzureADAppCredWatcher#prerequisites for all details on how to create a dedicated Service Principal for this runbook.
/!\ REQUIRE AZURE AUTOMATION ASSETS (Shared Resources) /!\
* Connection : an AzureServicePrincipal connection used by "AAD App Cred Watcher" to read your Azure AD applications.
* Certificate : used by above connection to authenticate with Azure Active Directory.
* Schedule : to automate your runbook execution, you should define an Automation schedule associated to this runbook for a recurring mail report (we recommend a 1-month recurrence without expiration).
Show more
/!\ REQUIRE AZURE AUTOMATION /!\
Use this script as Azure Automation PowerShell runbook
/!\ REQUIRE AZURE AD SERVICE PRINCIPAL /!\
Like many apps / runbooks in Azure, Azure AD this runbook needs a service principal to run (also known as Automation RunAs Account / Automation Connection). This service principal needs to read Azure AD application data (e.g. Global Reader).
See https://github.com/jdmsft/AzureADAppCredWatcher#prerequisites for all details on how to create a dedicated Service Principal for this runbook.
/!\ REQUIRE AZURE AUTOMATION ASSETS (Shared Resources) /!\
* Connection : an AzureServicePrincipal connection used by "AAD App Cred Watcher" to read your Azure AD applications.
* Certificate : used by above connection to authenticate with Azure Active Directory.
* Schedule : to automate your runbook execution, you should define an Automation schedule associated to this runbook for a recurring mail report (we recommend a 1-month recurrence without expiration).
Installation Options
Owners
Copyright
(c) 2021 JDMSFT. All Right Reserved.
Package Details
Author(s)
- JDMSFT
Tags
AzureAutomation Runbook AzureAD Application Credential Certificate Secret Expiration Notification Watcher Report AAD Cred Cert Expire Alert Notify Mail
Dependencies
This script has no dependencies.
Release Notes
1.0.0 First release (list aad aplication certs and secrets + optionally send mail report using o365 mail account)
FileList
- AzureADAppCredWatcher.nuspec
- AzureADAppCredWatcher.ps1
Version History
| Version | Downloads | Last updated |
|---|---|---|
| 1.1.1 | 135 | 6/9/2021 |
| 1.1.0 | 86 | 6/9/2021 |
| 1.0.2 | 85 | 6/9/2021 |
| 1.0.1 | 86 | 6/4/2021 |
| 1.0.0 (current version) | 87 | 6/3/2021 |