In this Azure article, we will discuss the steps to create service principal in Azure Portal.
Table of Contents
How to create service principal in Azure
Follow the below steps to create a service principal in Azure Portal.
- Log in to the Azure Portal.
- Search for Azure Active Directory and click on the search result Azure Active Directory.
3. Click on the App registrations link from the left navigation.
4. Click on the + New Registration button.
5. On the Register an application window, choose the below details
- Provide a meaningful name. This will be the user-facing display name for this application (which can be changed later).
- Choose the supported account types (Who can use this application or access this API?): Select the “Accounts in this organizational directory only (Default Directory only – Single tenant)” option. You can also choose the other options based on your requirements.
- Redirect URI (Optional): Select the Web option. Anyway, this is optional.
Now, click on the Register button.
The application will be created successfully within seconds.
6. On the Application page, locate the Application (client) ID, then click on the Copy to Clipboard button next to the Application (client) ID to copy the ID. Then, click on the Certificates & secrets link from the left navigation.
7. Click on the + New client secret button.
8. On the Add a client secret window, Provide a description and choose when it expires. You can choose the “Recommended: 180 days (6 months)” option, which Microsoft recommends. You can also choose the other options from the dropdown based on your requirements.
Now, the client’s secret will be added successfully.
9. Now, search for Subscriptions and click on the search result Subscriptions.
10. Click on the Subscription name from the list you want to use here.
11. On the Subscription page, click the Access Control (IAM) option from the left navigation.
12. Click on the Role Assignments tab.
13. Click the + Add button –> then choose the Add role assignment option from the list.
14. On the Add role assignment window, search for Contributor –> then click the next button to move to the Members tab.
15. On the Members tab, select the below options.
- Assign access to Choose User, group, or service principal option.
- Members: Click on the + Select members option, search for the user principal you created above, and then click the Select button.
16. Click on the Review + Assign button on the below window and again click on the Review + Assign button, and you are done.
Now, it has been added successfully. See the below screenshot for reference.
Now that the service principal is ready, you can pass this client ID and secret through your client app requests. Then, it gets authenticated, and you can get an access token that can be used for all the requests for the client apps to access the Azure resources.
You may also like following the articles below
- How to create and add members to Azure Active Directory Group
- How to create a user in Azure active directory
Wrapping Up
This Azure article discussed creating a service principal in the Azure portal. Now, it’s your turn to utilize the information above to create your Azure service principal. Thanks for reading this article !!!
I am Rajkishore, and I have over 14 years of experience in Microsoft Azure and AWS, with good experience in Azure Functions, Storage, Virtual Machine, Logic Apps, PowerShell Commands, CLI Commands, Machine Learning, AI, Azure Cognitive Services, DevOps, etc. Not only that, I do have good real-time experience in designing and developing cloud-native data integrations on Azure or AWS, etc. I hope you will learn from these practical Azure tutorials. Read more.