即使在机密到期后,az login 使用服务主体也能正常工作的任何情况?
[英]any situation where az login using Service principal works even after secret expiry?
问题描述
I have been recently added to an Azure subscription.
我最近加入了 Azure 订阅。 They shared me Service principal details.. which included Application(Client) ID, tenant ID, client secret.他们与我分享了服务主体详细信息……其中包括应用程序(客户端)ID、租户 ID、客户端机密。 I was able to log in successfully.我能够成功登录。 But, When I checked the secret details, it's expired in the month of January 2021. Is there any situation where the Service principal works even after secret expiry?但是,当我查看机密信息时,它已在 2021 年 1 月过期。是否存在机密过期后服务主体仍然工作的情况?
1 个解决方案
解决方案1
0 2021-11-11 04:15:45
No, It doesn't authenticate with an expired client secret and will result in AADSTS7000222 error.不,它不会使用过期的客户端密钥进行身份验证,并且会导致AADSTS7000222错误。
I tested the same on Bash and Powershell (Terraform Authentication with SP) using the above shown expired secret, Both gave me the expected results as shown below:我使用上面显示的过期密钥在Bash and Powershell (Terraform Authentication with SP)上进行了相同的测试,两者都给了我预期的结果,如下所示:
Note: If You are still seeing the same response , try deleting that secret and create a new one with custom expiry date of 1 day and check if you can successfully login using the new expired secret.注意:如果您仍然看到相同的响应,请尝试删除该密码并创建一个自定义到期日期为 1 天的新密码,并检查您是否可以使用新的已过期密码成功登录。 If you can with the new expired secret as well , then Please create a support request to Azure from Portal (Help+Support) for assisted guidance.如果您也可以使用新的过期密钥,请从门户(帮助+支持)创建对 Azure 的支持请求以获得辅助指导。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.