How to create service principal in Azure

How to create service principal in Azure

In this Azure article, we will discuss how to create a service principal in Azure. Along with that, we will discuss a few other topics.

How to create service principal in Azure

Follow the below steps to create a service principal in Azure Portal.

  1. Log in to the Azure Portal.
  2. Search for Azure Active Directory and click on the search result Azure Active Directory.
create a service principal in Azure

3. Click on the App registrations link from the left navigation.

App registrations

4. Click on the + New Registration button.

how to create service principal in azure portal

5. On the Register an application window, choose the below details

  • Provide a meaningful name. This will be the user-facing display name for this application (which can be changed later).
  • Choose the supported account types (Who can use this application or access this API?): Select “Accounts in this organizational directory only (Default Directory only – Single tenant)” option. You can also choose the other options based on your requirement.
  • Redirect URI (Optional): Select the Web option. Anyway, this is optional.

Now, click on the Register button.

how to create a service principal in azure

The application will get created successfully within a span of seconds.

6. On the Application page, locate the Application (client) ID, then click on the Copy to clipboard button next to the Application (client) ID to copy the ID. Then, click on the Certificates & secrets link from the left navigation.

how to create a service principal in azure portal

7. Click on the + New client secret button.

how to create a service principal id in Azure

8. On the Add a client secret window, Provide a description and choose when it expires. You can choose the “Recommended: 180 days (6 months)” option which is recommended by Microsoft. In fact, you can also choose the other options from the dropdown based on your actual requirement.

how to create a service principal id in Azure portal

Now, the client secret will get added successfully.

Client Secrets Azure Portal

9. Now, search for Subscriptions and click on the search result Subscriptions.

how to create a service principal in azure for disk encryption

10. Click on the Subscription name from the list that you want to use here.

create a service principal in azure portal

11. On the Subscription page, click on the Access control (IAM) option from the left navigation.

create service principal in azure portal

12. Click on the Role Assignments tab.

Role assignments in azure portal

13. Click on the + Add button –> then choose the Add role assignment option from the list.

Add Role assignment in azure portal

14. On the Add role assignment window, search for Contributor –> then click on the next button to move to the Members tab.

Add Role assignment in azure

15. On the Members tab, select the below options.

  • Assign access to: Choose User, group, or service principal option.
  • Members: Click on the + Select members option, search for the user principal you have created above, and then click on the Select button.
How to Add Role assignment in azure portal

16. Click on the Review + assign button on the below window and again click on the Review + assign button and you are done.

Add Role assignments in azure portal

Now, it is added successfully. See the below screenshot for reference.

Access control (IAM) Azure Portal

Now the service principal is ready, you can pass this client id and secret through your client app requests then it gets authenticated and you can get an access token that can be used for all the requests for the client apps to access the Azure resources.

You may also like following the below articles

Wrapping Up

In this Azure article, we discussed how to create service principal in the Azure portal, Now, it’s your turn to utilize the above information to create your own Azure service principal. Thanks for reading this article !!!