Going Loopy rotating Entra ID App Certificates with PowerShell
Going Loopy rotating Entra ID App Certificates with PowerShell

While working on my appeal against Application.ReadWrite.All, I stumbled upon a potential way to rotate an application’s authentication certificate without Graph API permissions. After some experimentation, I was unable to get it running in PowerShell, so I set it aside for the time being to finish the article. However, the topic continued to intrigue me,... » read more

You (probably) don’t need Application.ReadWrite.All
You (probably) don’t need Application.ReadWrite.All

When Microsoft first disclosed the January Midnight Blizzard attack and posted their subsequent deeper analysis I followed the resulting content with great interest – risks posed by Enterprise Applications are a topic near and dear to me. I will try to keep this article standalone, but it might be a good idea to skim the... » read more