Reputation: 149
Secure Azure App Service using Managed Identity (Asp.net Framework 4.7.2)
i'm trying to secure communication between two azure app services. i tried to use Managed Identity for that but the only thing i can find is: securing Database access using Managed identity.
So i'm kinda lost here, is Managed Identity can secure communication between two app services or its just responsible to secure resources like Azure Storage, Sql Server?
Upvotes: 0
Views: 483
Answers (1)
Reputation: 42133
The MSI(Managed Identity) is used to secure Azure resources, essentially, it is a service principal in your Azure AD tenant, when granted corresponding permission, the MSI will be able to access corresponding resources.
To secure communication between two azure app services, MSI is not for such usage, you need to use Azure AD Apps to do this, register two AD Apps in Azure AD, one for client-app, and one for backend-app. If you enable the MSI of your App Service, it will just create a service principal i.e. enterprise application for you automatically without AD App(App registration).
Please refer to the steps I mentioned in this post.
Upvotes: 1
Related Questions
- Azure App Service with User-Assigned Managed Identity crashes application
- Azure App Config, Key Vault & Managed Service Identity (.NET Core 3.1)
- App service to app service auth in Azure using Managed Identity
- Isolated Azure Function Managed Identity for SQL Server Auth
- I'm having problems authenticating with Managed Service Identity to an Azure App Service secured with AAD
- IdentityServer 4 as Identity Provider for Azure App Service
- User access/authorization to web app secured with azure AD
- .NET Core app with Azure App Service Authentication
- Microsoft Authentication in ASP.NET Core 2 and Azure App Services
- Azure App Service - Add Authentication