onboard_azure_account.py 文件源码

python
阅读 17 收藏 0 点赞 0 评论 0
项目:automation 作者: EvidentSecurity 项目源码 文件源码 
def create_service_principal(options, sub_config):
    credentials = ServicePrincipalCredentials(
        tenant=options['tenant_id'],
        client_id=options['script_service_principal_client_id'],
        secret=options['script_service_principal_secret'],
        resource='https://graph.windows.net'
    )
    rbac_client = GraphRbacManagementClient(
        credentials, tenant_id=options['tenant_id'])
    # Create Service Principal
    current_time = datetime.now(timezone.utc)
    key = {
        'start_date': current_time.isoformat(),
        'end_date': current_time.replace(year=current_time.year + 3).isoformat(),
        'key_id': str(uuid.uuid4()),
        'value': str(uuid.uuid4())
    }
    sub_config['secret_key'] = key['value']
    sub_config['service_principal'] = rbac_client.service_principals.create({
        'app_id': sub_config['application'].app_id,
        'account_enabled': True,
        'password_credentials': [key]
    })
    return sub_config
您未登录,请先登录后再评论
评论列表
文章目录


问题


面经


文章

微信
公众号

扫码关注公众号