Reputation: 3702
What's the difference between client id and tenant id?
Azure requires multiple IDs to create application ServicePrincipal credentials.
What's the difference between the client id and tenant id?
Why does Azure require separate IDs?
Upvotes: 22
Views: 34821
Answers (1)
Reputation: 4324
An application ID is the ID of the specific application you have created in Microsoft Entra ID (formerly known as Azure Active Directory), you will likely have many applications for different purposes. Each application can have different users assigned access, different criteria for access (MFA, conditional access etc.) and will be configured to authenticate users for different real applications or purposes. Each Microsoft Entra ID/Azure AD application has a unique ID, and this ID is what you give your application to use to talk to it when processing logins etc.
All of your applications sit within an Azure Active Directory instance, or as MS like to call it, a tenant. The tenant ID identifies which Azure AD instance the application sits under, so Azure knows where to look when you request things using that applicaiton ID.
I suppose in theory if Applicaiton IDs were unique globally then you could work out the tenant from the App ID, but that isn't how MS set it up.
Upvotes: 27
Related Questions
- What is the difference between an Azure tenant and Azure subscription?
- How to get the azure account tenant Id?
- Why are there multiple client secrets for each azure client id?
- Azure AD: Fetch Tenant ID using Client Details
- Azure B2C Xamarin Forms, clientId versus applicationId
- Understanding the single-tenant term in azure
- Is Azure client ID world wide unique?
- Are Azure Active Directory's TenantID and ClientID considered secrets?
- Is oid unique across all tenants in AAD?
- In Azure, why is an AuthClientId also called an Application Id?