1. Answers
  2. Setting up Azure AD Application Federated Identity Credential

How do I set up an Azure Active Directory application federated identity credential?

In this guide, we will set up an Azure Active Directory (AD) application federated identity credential using Pulumi. This involves creating an Azure AD application and configuring a federated identity credential for it. This credential allows external identities to access Azure resources.

Key Points

  1. Azure AD Application: This represents an application within Azure Active Directory.
  2. Federated Identity Credential: This allows external identities to authenticate and access Azure resources.

Steps

  1. Create an Azure AD Application: Define and create the application in Azure AD.
  2. Configure Federated Identity Credential: Set up the federated identity credential for the application.
import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";

// Create an Azure AD Application
const exampleApp = new azuread.Application("exampleApp", {
    displayName: "ExampleApp",
});

// Create an Azure AD Application Federated Identity Credential
const federatedIdentityCredential = new azuread.ApplicationFederatedIdentityCredential("exampleFederatedIdentityCredential", {
    applicationObjectId: exampleApp.objectId,
    displayName: "ExampleFederatedIdentityCredential",
    issuer: "https://issuer.example.com",
    subject: "subject",
    audiences: ["api://default"],
});

Summary

In this example, we created an Azure AD application and configured a federated identity credential for it. This setup allows external identities to authenticate and access Azure resources using the federated identity credential. The key components include the Azure AD application and the federated identity credential, which specifies the issuer, subject, and audiences for the external identities.

Deploy this code

Want to deploy this code? Sign up for a free Pulumi account to deploy in a few clicks.

Sign up

New to Pulumi?

Want to deploy this code? Sign up with Pulumi to deploy in a few clicks.

Sign up