Modern control tower to manage all Azure Service Principals and their lifecycle
Our Services
Self-service and centralised management of all Azure Service Principals
With a single Web Portal, gain control back on the whole lifecycle of your Azure Service Principals. From creation/update/deletion, credentials generation/rotation, federate identity configuration down to Web redirect URIs, token parameters and MS Graph permissions, SP Center enables a total ownership and secured control of your Service Principals in a self-service mode.
Project-level organization and fined grain access control
SP Center introduces a new level of control: the project. At the project scope, you can organise all your Service Principals and grant access control to them using pre-defined roles: PROJECT ADMIN, SECURITY OFFICER or SECURITY READER
Secured by design with pre-authorized sets of actions
To allow your teams to create and manage all Azure Service Principals by themselves, SP Center provide the tools for GLOBAL ADMIN people to whitelist by default some actions, hostnames, MS Graph permissions that can be configured on each Service Principal
Flexible naming convention
Organising properly all Service Principals requires a naming convention. SP Center offer a flexible naming scheme with customisable fields when creating new Service Principals
Identity Federation integration with major CI/CD providers
SP Center leverages the new Federated Identity feature exposed by Microsoft Entra Id. Its supports integration with Azure Devops, GitHub Actions and GitLab for a password-less user experience. You no longer need to provide any Service Credentials in your automation pipelines !
Advanced credentials management with automated rotation and alerting
SP Center support password and certificate credentials for Service Principals. Whenever one credential is about to expire, you will be notified by an alert email. Credentials can be configured for automated rotation few days before their expiration date. With SP Center, you no longer need to worry about expiration !
Mass import of existing Service Principals
SP Center can import all existing Service Principals into the application. Once imported, all your existing Service Principals will benefit all the features like alerting and automated credentials rotation
Full automation with REST API
You can automate all actions in SP Center using the exposed REST API. This REST API is secured by the same rules and permissions as the Web Portal
360° security vision and audit
SP Center is tailor-made for Security Compliance. Each action on the Web Portal or by REST API is logged and archived. In addition, the application generates every day an extract of all Projects, Users, their roles as well as the Service Principals details. Your Security team can perform point-in-time forensic analysis of all Service Principals.
Performant and scalable architecture
SP Center has been designed with performance and scalability in its core. It can handle tens of thousands Service Principals and thousands of concurrent users using robust and scalable Azure PaaS services. This design makes SP Center well-suited for large scale companies with multiple organisations.
Easy deployment in your infrastructure with low TCO
SP Center can be deployed in your infrastructure, either on Azure using Azure Web App, Azure AKS, Azure Container Apps or on-premise with any Kubernetes cluster.
Leveraging robust and reliable Azure services like Storage Account, KeyVault and Log Analytics Workspace, the Total Cost of Ownership (TCO) of SP Center is very affordable.