Who's managing your non-human identities?

Published 6 days ago • 1 min read

Episode 423 - Non-Human Identities in
Microsoft Entra with Eric Woodruff and Chris Brumm

Hello Reader,

The next episode of the Microsoft Cloud IT Pro podcast has been released!

Most Microsoft Entra tenants have a blind spot, and it is not the accounts you are thinking about.

Non-human identities like service principals, managed identities, and app registrations often outnumber user accounts in enterprise environments, yet they receive a fraction of the governance attention. That is a problem, because attackers have noticed.

In Episode 423, Ben sat down live at Workplace Ninjas with Eric Woodruff, Chief Identity Architect at Semperis, and Chris Brumm, Cyber Security Architect at glueckkanja. Both are Microsoft MVPs in Security, and together they cover the full landscape of non-human identities in Microsoft Entra ID, from foundational concepts to active exploitation patterns to what is coming next with AI agent identities.

Here is what you will walk away with:

A clear understanding of what service principals are and why they are a preferred attacker target
Practical guidance on credential management and the risks of improper owner assignments
Why managed identities should be your default approach wherever your architecture supports it
What to watch out for in multi-tenant app configurations
How to start thinking about AI agent identities before that surface area gets out of hand

Today's episode: https://www.msclouditpropodcast.com/episode423/

Like what you hear and want to support the show? Check out our membership options.

Show Notes

About the sponsors

TrustedTech is a leading Microsoft Cloud Solution Provider specializing in cloud services, perpetual licensing, and support for medium and enterprise businesses. Their U.S.-based team holds all 6 Microsoft Solutions Partner Designations. Learn more at TrustedTech.

Would you like to become the irreplaceable Microsoft 365 resource for your organization? Let us know!

View today's episodehttps://www.msclouditpropodcast.com/episode423/

Check out our episode archive!

Episode 422: Back to the Terminal: The Rise of AI CLI Interfaces

Episode 422: Back to the Terminal: The Rise of AI CLI Interfaces Hello Reader, The next episode of the Microsoft Cloud IT Pro podcast has been released! Listen Online Welcome to Episode 422 of the Microsoft Cloud IT Pro Podcast. In this episode, Scott and Ben discuss their growing use of in their daily workflows, particularly Claude Code, GitHub Copilot CLI, and Gemini CLI. They explore how these command-line interfaces offer powerful ways to interact with local files and MCP servers beyond...

20 days ago • 1 min read

Episode 421: Microsoft 365 Mergers and Divestitures with Frank Lesniak

Episode 421: Microsoft 365 Mergers and Divestitures with Frank Lesniak Hello Reader, The next episode of the Microsoft Cloud IT Pro podcast has been released! Listen Online Welcome to Episode 421 of the Microsoft Cloud IT Pro Podcast. In this episode Ben sits down for a conversation with Frank Lesniak, the lead of the Microsoft 365 team at West Monroe. In this episode, they dive into the intricacies of mergers and divestitures within Microsoft 365 environments. They discuss the initial due...

26 days ago • 1 min read

A quick note about this week’s episode

Hi everyone, We wanted to share a quick update with our listeners. Episode 421 of the Microsoft Cloud IT Pro Podcast has been postponed and will be released next week. Thanks, as always, for listening and for being part of our community. We’re looking forward to sharing the next episode with you soon. — The Microsoft Cloud IT Pro Podcast Team

about 1 month ago • 1 min read

Welcome to the Microsoft Cloud IT Podcast!