Keith Weaver
@keithmweaver.com
Christian, husband, & father. Passionate about security. #Microsoft365 #MicrosoftTeams
Reposted by Keith Weaver
Someone smarter than me described customer data as toxic waste. Whatever you can't destroy must be buried deep, with heavy security.
July 26, 2025 at 1:02 AM
Someone smarter than me described customer data as toxic waste. Whatever you can't destroy must be buried deep, with heavy security.
Grr, the problem was that we had enabled app instance property lock on all app registrations in our tenant a few months ago. Microsoft creates a P2P Server app reg in every tenant and add certs to the service principal instead of the app reg.
learn.microsoft.com/en-us/entra/...
learn.microsoft.com/en-us/entra/...
Microsoft Entra device management FAQ - Microsoft Entra ID
Microsoft Entra device management FAQ.
learn.microsoft.com
March 7, 2025 at 6:32 PM
Grr, the problem was that we had enabled app instance property lock on all app registrations in our tenant a few months ago. Microsoft creates a P2P Server app reg in every tenant and add certs to the service principal instead of the app reg.
learn.microsoft.com/en-us/entra/...
learn.microsoft.com/en-us/entra/...
Thanks! And would the signing key show up as a credential on the service principals in our tenant or is that something that wouldn't be visible to customers?
Support has escalated this to the product group so I'm hoping they get it figured out soon...
Support has escalated this to the product group so I'm hoping they get it figured out soon...
March 4, 2025 at 1:18 PM
Thanks! And would the signing key show up as a credential on the service principals in our tenant or is that something that wouldn't be visible to customers?
Support has escalated this to the product group so I'm hoping they get it figured out soon...
Support has escalated this to the product group so I'm hoping they get it figured out soon...
Has anyone ever seen this issue before? I have a support ticket open, but that hasn't made any progress yet. It really seems like it's some weird backend Entra cert/key issue.
@awakecoding.com or @syfuhs.net, do you have any ideas?
@awakecoding.com or @syfuhs.net, do you have any ideas?
March 4, 2025 at 3:08 AM
Has anyone ever seen this issue before? I have a support ticket open, but that hasn't made any progress yet. It really seems like it's some weird backend Entra cert/key issue.
@awakecoding.com or @syfuhs.net, do you have any ideas?
@awakecoding.com or @syfuhs.net, do you have any ideas?