Skip to main content
Version: 1.4.6

Apps settings

This section lets you configure settings for App Registrations and Enterprise Applications.

Custom Expiration Thresholds

The Custom Expiration Thresholds feature allows you to set specific expiration thresholds for certificates and secrets used in App Registrations and Enterprise Applications. This is particularly useful for organizations that need to manage the lifecycle of these credentials more closely.

There are two settings available:

  • Expiration threshold (days):
    Defines how many days before a certificate or secret expires it should be marked as expiring.
    The default is 30 days, and it can be set between 7 and 90 days.

  • Single sign-on SAML Certificates expiration threshold (days):
    Sets how many days before a SAML-based certificate used for SSO should be flagged as expiring.
    The default is 60 days, and it can be set between 7 and 90 days.

Changing these settings impacts both the user interface and background jobs. Increasing the threshold results in more warnings in the UI and additional notifications. Conversely, decreasing it reduces warnings but also shortens the time available to replace credentials after being notified.

Managing Well-Known Owners for Self-Managed Applications

This feature helps EasyLife 365 Identity determine which applications have credentials that are externally managed. Apps owned by known service principals or users in this list are automatically considered “managed” and will not receive expiration-related notifications.

This page allows administrators to customize the list of well-known owners used during automated daily scans.

  • To add an entry:
    Use the search field to find and select a service principal or user. Once added, they will be considered a well-known owner during the next scan.

  • To remove an entry:
    Click the trash icon next to the entry you want to delete. This removes the owner from the well-known list and may result in their applications being classified as unmanaged in future scans.

  • Built-in defaults are editable:
    Default entries can be removed or replaced if your organization prefers to fully manage this list.

Update this list when:

  • You introduce new automated systems that manage credentials for apps.
  • You no longer want to treat apps owned by certain service principals as self-managed.
  • You need to override the default behavior to better reflect your organization’s credential management model.

Please note that app owners can override this default behavior for a given app using the app's Settings tab.

Built-In App Defaults (Enterprise Applications in Entra ID)

Here’s a table of commonly preconfigured built-in enterprise applications in Microsoft Entra ID that are automatically added by EasyLife as part of our default automation. If you identify an app that aligns well with this setup and should be included as a default for all tenants, please reach out to our support team.

Display NameApplication IDDescription
Power Virtual Agents96ff4394-9197-43aa-b393-6a41652e21f8Power Virtual Agents is a no-code, guided graphical interface solution that empowers every member of your team to create rich, conversational chatbots that easily integrate with the Teams platform.