Entra ID - Creating App uses client secret instead of certificate

[sumeet]

Hello,

Entra ID - Creating App uses client secret instead of certificate.
If I use the option to create the App from VBR -- https://helpcenter.veeam.com/docs/backu ... ml?ver=120
I see that Client secret is setup, which I think VBR must be recording to request tokens when authenticating with Entra ID. This secret is valid only for a year.

But when using the option to specify an existing application -- https://helpcenter.veeam.com/docs/backu ... ml?ver=120
There is an option to either use client secret or certificate.

Why has this not been designed as VBM365 -- https://helpcenter.veeam.com/docs/vbo36 ... tml?ver=80
Where-in in both cases of either creating a new App or using an existing App, certificates are used.

Microsoft recommends using a certificate (instead of a client secret) as a credential.

[PetrM]

Hello,

It's an interesting idea, many thanks for bringing it up! We will discuss it internally, but I cannot provide any timelines or an ETA for this enhancement.

Thanks!

[sumeet]

Hello Petr,

Thanks for your reply and considering this enhancement request.
Understand about the ETA - not asking for one.

It is about the experience to use the product - currently we are setting up the Azure app using the manual steps, which is time consuming.

Also, will be good if you can get your Doco updated, to call out the client secret is used if app created from VBR and most importantly call out that the secret is valid only for an year and post that the secret has to be updated, or what error to expect the backup when the secret has expired.