New-AzADServicePrincipal

Active Directory Auditing Tool

The Who, Where and When information is very important for an administrator to have complete knowledge of all activities that occur on their Active Directory. This helps them identify any desired / undesired activity happening. ADAudit Plus assists an administrator with this information in the form of reports. In real-time, ensure critical resources in the network like the Domain Controllers are audited, monitored and reported with the entire information on AD objects - Users, Groups, GPO, Computer, OU, DNS, AD Schema and Configuration changes with 200+ detailed event specific GUI reports and email alerts.

Object Access » New-AzADServicePrincipal

How to create a new Azure Active Directory service principal

Cmdlet Description:

A new Azure AD service principal is created when this cmdlet is executed. It assigns default parameter values if the parameter values are not specified by the user. The cmdlet can also use specified values for 'Role' and 'Scope' parameters to assign a Role to a service principal. If the Role and Scope parameters are not defined, the service principal takes a default value of "contributor" for the current subscription. The cmdlet can also create an application and add properties to it automatically if the user has not provided ApplicationID. The user can use Update-AzADApplication cmdlet to update parameter values.

PowerShell Syntax:

New-AzADServicePrincipal -ApplicationObject <PSADApplication> [-StartDate <DateTime>] [-EndDate <DateTime>] [-DefaultProfile <IAzureContextContainer>] [-WhatIf] [-Confirm] [<CommonParameters>]

Example: Creating a Azure AD service principal

New-AzADServicePrincipal
Secret : System.Security.SecureString
ServicePrincipalNames : {00000000-0000-0000-0000-000000000000, http://azure-powershell-05-24-2019-18-23-43}
ApplicationId : 00000000-0000-0000-0000-000000000000
DisplayName : azure-powershell-05-24-2019-18-23-43
Id : 00000000-0000-0000-0000-000000000000
Type : ServicePrincipal

Description: The above example creates an AD service principal using default values for parameters that were not specified. Since an application ID is not provided, an application is created for the service principal. Role or Scope parameters are not specified either, so the created service principal is assigned the contributor role for the current subscription.

About ADAudit Plus

ADAudit Plus is a real-time, web-based Windows Active Directory change reporting software that audits, tracks, reports and alerts on Windows (Active Directory, workstations logon/logoff, file servers and servers), NetApp filers and EMC servers to help meet the demands of the much-needed security, audit and compliance.

With ADAudit Plus, track authorized/unauthorized AD management changes, access of users, GPO, groups, computer, OU. Track every file, folder modifications, access and permissions changes with 200+ detailed event-specific reports and get instant emails alerts. You can also export the results to XLS, HTML, PDF and CSV formats to assist in interpretation and computer forensics. For more information on ADAudit Plus, visit https://www.manageengine.com/active-directory-audit/.

Explore Active Directory auditing and reporting with ADAudit Plus.

  •  
  •  
  •  
  • By clicking 'Schedule a personalized demo' you agree to processing of personal data according to the Privacy Policy.
Account Management Auditing
Active Directory Auditing
Windows Server Auditing