How to create service principal in Azure

How to create service principal in Azure

In this Azure article, we will discuss how to create a service principal in Azure. Along with that, we will discuss a few other topics.

How to create service principal in Azure

Follow the below steps to create a service principal in Azure Portal.

  1. Log in to the Azure Portal.
  2. Search for Azure Active Directory and click on the search result Azure Active Directory.
create a service principal in Azure

3. Click on the App registrations link from the left navigation.

App registrations

4. Click on the + New Registration button.

how to create service principal in azure portal

5. On the Register an application window, choose the below details

  • Provide a meaningful name. This will be the user-facing display name for this application (which can be changed later).
  • Choose the supported account types (Who can use this application or access this API?): Select the “Accounts in this organizational directory only (Default Directory only – Single tenant)” option. You can also choose the other options based on your requirements.
  • Redirect URI (Optional): Select the Web option. Anyway, this is optional.

Now, click on the Register button.

how to create a service principal in azure

The application will be created successfully within seconds.

6. On the Application page, locate the Application (client) ID, then click on the Copy to Clipboard button next to the Application (client) ID to copy the ID. Then, click on the Certificates & secrets link from the left navigation.

how to create a service principal in azure portal

7. Click on the + New client secret button.

how to create a service principal id in Azure

8. On the Add a client secret window, Provide a description and choose when it expires. You can choose the “Recommended: 180 days (6 months)” option, which Microsoft recommends. You can also choose the other options from the dropdown based on your requirements.

how to create a service principal id in Azure portal

Now, the client’s secret will be added successfully.

Client Secrets Azure Portal

9. Now, search for Subscriptions and click on the search result Subscriptions.

how to create a service principal in azure for disk encryption

10. Click on the Subscription name from the list you want to use here.

create a service principal in azure portal

11. On the Subscription page, click the Access Control (IAM) option from the left navigation.

create service principal in azure portal

12. Click on the Role Assignments tab.

Role assignments in azure portal

13. Click the + Add button –> then choose the Add role assignment option from the list.

Add Role assignment in azure portal

14. On the Add role assignment window, search for Contributor –> then click the next button to move to the Members tab.

Add Role assignment in azure

15. On the Members tab, select the below options.

  • Assign access to Choose User, group, or service principal option.
  • Members: Click on the + Select members option, search for the user principal you created above, and then click the Select button.
How to Add Role assignment in azure portal

16. Click on the Review + Assign button on the below window and again click on the Review + Assign button, and you are done.

Add Role assignments in azure portal

Now, it has been added successfully. See the below screenshot for reference.

Access control (IAM) Azure Portal

Now the service principal is ready, you can pass this client ID and secret through your client app requests, then it gets authenticated, and you can get an access token that can be used for all the requests for the client apps to access the Azure resources.

You may also like following the articles below

Wrapping Up

This Azure article discussed creating a service principal in the Azure portal. Now, it’s your turn to utilize the information above to create your Azure service principal. Thanks for reading this article !!!