This is an automated archive made by the Lemmit Bot.
The original was posted on /r/azure by /u/brepmassive on 2023-09-06 13:03:56.
Hi,
With the impending retirement of Azure Automation Run As Accounts I've been looking at the Runbooks I have within our Automation Account and how they authenticate.
I have a PowerShell Runbook for SharePoint Online that sets the OneDrive timezone using a version of this script. It authenticates to SharePoint Online using the following:
Connect-PnPOnline -Url $AdminSiteURL -Tenant $AADTenantID -ClientId $AppClientID -Certificate $Certificate -WarningAction Ignore
The -ClientId value is the Application ID of the Run As Application ID in AAD App Registrations.
The -Certificate value is a self-signed certificate that we created, not the Run As generated certificate, and the expiry is long, 2031.
My question...
Will the App Registration still existing post the retirement date of 30th September and therefore the certificate will still be usable? Or will the retirement of the Run As account mean the App Registration itself, along with the certificates/secrets will be removed and therefore the Runbook will no longer be able to authenticate?
Thanks in advance!