App registrations should no longer use secrets
Why This Matters
Application secrets, such as client secrets or passwords, can be compromised if stored improperly or exposed in code repositories. Attackers who obtain these secrets can impersonate your applications and access sensitive data without authorization. Moving to certificate-based authentication or managed identities eliminates this risk by removing long-lived, static credentials.
What Aether365 Checks
This check scans your Microsoft 365 tenant for app registrations that still rely on client secrets for authentication. It appears in the Aether365 dashboard under the microsoft-365 checks section and highlights applications that should be updated to more secure authentication methods.