How do I set up an Azure Active Directory application federated identity credential?
In this guide, we will set up an Azure Active Directory (AD) application federated identity credential using Pulumi. This involves creating an Azure AD application and configuring a federated identity credential for it. This credential allows external identities to access Azure resources.
Key Points
- Azure AD Application: This represents an application within Azure Active Directory.
- Federated Identity Credential: This allows external identities to authenticate and access Azure resources.
Steps
- Create an Azure AD Application: Define and create the application in Azure AD.
- Configure Federated Identity Credential: Set up the federated identity credential for the application.
import * as pulumi from "@pulumi/pulumi";
import * as azuread from "@pulumi/azuread";
// Create an Azure AD Application
const exampleApp = new azuread.Application("exampleApp", {
displayName: "ExampleApp",
});
// Create an Azure AD Application Federated Identity Credential
const federatedIdentityCredential = new azuread.ApplicationFederatedIdentityCredential("exampleFederatedIdentityCredential", {
applicationObjectId: exampleApp.objectId,
displayName: "ExampleFederatedIdentityCredential",
issuer: "https://issuer.example.com",
subject: "subject",
audiences: ["api://default"],
});
Summary
In this example, we created an Azure AD application and configured a federated identity credential for it. This setup allows external identities to authenticate and access Azure resources using the federated identity credential. The key components include the Azure AD application and the federated identity credential, which specifies the issuer, subject, and audiences for the external identities.
Deploy this code
Want to deploy this code? Sign up for a free Pulumi account to deploy in a few clicks.
Sign upNew to Pulumi?
Want to deploy this code? Sign up with Pulumi to deploy in a few clicks.
Sign upThank you for your feedback!
If you have a question about how to use Pulumi, reach out in Community Slack.
Open an issue on GitHub to report a problem or suggest an improvement.