Applications

The Applications page provides a list of enumerated Applications in entire Azure. The list contains the Object ID , Application ID, Publisher Domain , Tier 0, Risk Score , Exposure Point and Issue Counts of each domain object.

Application Details

Details page contains the Risk Score of the application,Exposure Point, Details tab, Visualize button, Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side.

Details

Details tab contains attributes below about domain.

Attribute

Description

Name

The unique name of the application object, typically matching the service principal’s identifier in Azure AD.

Publisher Domain

The domain name under which the application was published or registered, usually matching the tenant’s default domain.

Display Name

The name shown for the application in the Azure portal and sign-in logs; used for identification by users and admins.

Sign In Audience

Specifies the scope of users who can sign in to the application. For example, AzureADMyOrg means only users in the same Azure AD tenant can authenticate.

Description

A free-text field to describe the application's purpose; blank if not provided during registration.

App ID

The globally unique identifier (client ID) assigned to the registered application. In this case, the field is blank or not shown.

When Created

The date and time the application or its associated service principal was created in the Azure AD tenant.

Tenant ID

The unique identifier (GUID) of the Azure AD tenant where the application is registered or being used.

Last Seen

The most recent timestamp when the application was used or accessed within the tenant.

Object ID

A unique object identifier (GUID) for the application’s service principal within the Azure AD directory.

Issues

Issues pane contains identified issues on the application object.

Trusts

Trusts pane contains trust relationships of the domain object and attributes about the trust.

Target Domain: The name of the domain with which a trust exists.

Direction: Indicates in which direction the trust flows. (Field Reference)

Active: Indicates whether the trust is actively used or not. The activity threshold is 40 days. (Ldap Display Name: whenChanged)

Transitive: Indicates whether the trust is transitive or not. Transitive trust refers to a trust relationship between two domains that allows authentication and authorization to be passed through multiple domains in a chain.

Selective Authentication: Authentication type of a trust. True if the authentication of the trust is selective; false if the authentication is domain or forest wide. Selective authentication allows control over which objects in a trusted domain can access resources in the trusting domain.

SID Filtering: SID filtering status of a trust. True if SID filtering is enabled; otherwise, false. SID (Security Identifier) filtering is a security mechanism used in Microsoft Active Directory to prevent security principal (user or group) impersonation with SIDHistory.

TGT Delegation: Indicates whether the TGT delegation across trusts is active or not. TGT delegation allows a domain controller to forward authentication requests to another domain controller without the need to re-authenticate. This is also known as cross-domain authentication or cross-forest authentication.

Type: Indicates the type of trust. (Field Reference)

PreviousDevices NextService Principals

Last updated 22 days ago

Was this helpful?