Technical Bulletin: Onboarding Service Principals and Vendor Applications
June 11, 2026 •Sean Hurley
The app onboarding process spectrum: simple or self-inflicted complexity
Onboarding an application, whether it's an internally registered service...
Read More
App Governance Accelerator 3.3 Detects Unused Microsoft Graph Permissions and Simplifies Governance Workflows
May 19, 2026 •ENow Software
Managing application governance in Microsoft Entra ID has become increasingly difficult for organizations operating large Microsoft 365 environments....
Read More
In a previous blog post, 'How to Restrict Microsoft Graph API Access to Mailboxes,' we explained why scoping your app registration permissions in...
Read More
Microsoft Entra ID Application Security Roadmap: How to Lock Down Modern Apps
March 12, 2026 •Alistair Pugin
Your Microsoft Entra ID application estate is already part of your attack surface – whether you’ve mapped it or not. In Microsoft 365 environments,...
Read More
Modern identity security is not about managing credentials; it is about designing trust boundaries between identity providers and relying parties....
Read More.png?height=630&name=Identity%20Security%20Predictions%20for%202026%20What%20Threat%20Actors%20are%20Targeting%20Next%20(1).png)
Identity Security Predictions for 2026: What Threat Actors are Targeting Next
February 19, 2026 •Alistair Pugin
Identity security is going through a reckoning. Organizations spent the last decade hardening user logins with MFA, Conditional Access, and...
Read More
The Hidden Risks of Entra ID Application Ownership (Part 1)
November 20, 2025 •Glenn Van Rymenant
Assigning ownership to your application and service principal objects in Entra ID might seem like good governance, but it introduces significant...
Read More
Microsoft Entra ID App Governance: How to Clean Up Apps Without the Chaos
August 22, 2025 •Matthew Levy
Cleaning up applications in Microsoft Entra ID (formerly Azure AD) is a critical part of application governance. Without the right data and process,...
Read More%20Exposed%20OAuth%20Credentials%20%20.png?height=630&name=Commvault%20Metallic%20Vulnerability%20(CVE-2025-3928)%20Exposed%20OAuth%20Credentials%20%20.png)
Commvault Metallic Vulnerability (CVE-2025-3928) Exposed OAuth Credentials
August 8, 2025 •Nicolas Blank
Backup applications are designed to protect your data, but when over-permissioned, they can become high-value targets for threat actors. I’ve been...
Read More
In Microsoft Entra ID, enterprise applications without assigned owners, often referred to as "ownerless apps" pose significant risks to...
Read More