About a year ago, Microsoft has introduced Azure AD recommendations to help you improve your Azure AD security posture (see https://t.co/92sR2y0bR4).
Well, these recommendations have been updated to introduce recommendations for Azure AD applications.
While the first recommendations apply to all Azure AD license, these new recommendations for applications require Azure AD P2.
The available recommendations cover:
- Remove unused applications: will show up if you have applications not used for more than 30 days (https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/recommendation-remove-unused-apps/)
- Remove unused credentials from applications: will show up if the application credentials have not been in use for more than 30 days (https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/recommendation-remove-unused-credential-from-apps/)
- Renew expiring application credentials: will show up if you credentials going to expire soon (https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/recommendation-renew-expiring-application-credential/)
- Renew expiring service principal credentials: will show up if SPN credential is going to expire (https://learn.microsoft.com/en-us/azure/active-directory/reports-monitoring/recommendation-renew-expiring-service-principal-credential/)
You can easily identify these recommendations as the impacted resource type will show Applications