Workload Identity & Applications control for Microsoft 365 and Entra ID
Why This Control Matters
Apps with credentials (secrets or certificates) benefit from having owners for accountability during credential rotation. Apps without credentials don't need ownership tracking. Note: Owners can add credentials, so for privileged apps, restrict ownership to administrators.
Expected State
When this control is compliant, your tenant should meet these criteria:
1Apps with secrets or certificates should have owners assigned
2Owners enable accountability for credential rotation
Enforcement
Default Mode
Advisory
Alerts on deviations but does not make changes
Auto-Remediation
Manual Only
Informational only - tracks apps with credentials that lack owners
Ready to implement this control?
TrueConfig continuously monitors your Microsoft 365 tenant for compliance with this and 50+ other security controls.