APP-01: Application Ownership for Apps with Credentials
Frequently asked questions about implementing and managing the APP-01 security control in Microsoft 365 and Entra ID.
QWhat is APP-01 (Application Ownership for Apps with Credentials)?▼
APP-01 is a security control that apps with credentials (secrets or certificates) benefit from having owners for accountability during credential rotation. apps without credentials don't need ownership tracking. note: owners can add credentials, so for privileged apps, restrict ownership to administrators. It requires that apps with secrets or certificates should have owners assigned and owners enable accountability for credential rotation.
QWhy is Application Ownership for Apps with Credentials important for Microsoft 365 security?▼
Apps with credentials (secrets or certificates) benefit from having owners for accountability during credential rotation. Apps without credentials don't need ownership tracking. Note: Owners can add credentials, so for privileged apps, restrict ownership to administrators.
QHow do I implement APP-01 in my tenant?▼
APP-01 requires manual implementation. Informational only - tracks apps with credentials that lack owners
QWhat license do I need for APP-01?▼
This control can be implemented with any Microsoft 365 subscription, including free Azure AD.
QWhich security baseline includes APP-01?▼
APP-01 is included in the TrueConfig Recommended Secure baseline (Level 1). This is the foundation level suitable for most organizations.
5
Questions
1
Related Controls
—
Categorized
Related Resources
Still have questions?
Our security experts are here to help. Start a free trial and get personalized guidance for your Microsoft 365 environment.
Start Free Trial