What is a service principal?
  • 16 Jun 2026
  • 1 Minute to read
  • Dark
    Light
  • Download PDF

What is a service principal?

  • Dark
    Light
  • Download PDF

Article summary

Introduction

Service principal is an application within Microsoft Entra ID, which is authorized to access resources in Azure. This access is restricted by the roles assigned to the service principal, giving you control over which resources can be accessed and at which level.

Turbo360 leverages the authentication tokens of the service principal to manage resources by associating the azure service principal with the required permissions. These permissions are restricted to exactly what Turbo360 can do.

1.png

The necessary activities to perform such restrictions include:

  • Create a service principal.

  • Authorize and Assign a role to the service principal.

To associate a Service Principal with Turbo360, the following values are required:

  • Microsoft Entra ID - Tenant directory Id.

  • Client Id - Id of the service principal object / App registered with the Microsoft Entra ID.

  • Client Secret - Application password.

Why does Turbo360 needs reader access for the service principal?

  • To access the user's azure subscription cost, the service principal must have Reader access at the Subscription level. Without this permission, users won't be able to view their subscription's cost.

  • Reservation Reader access must be provided to the service principal to view reservations and reservation-based recommendations.

  • Savings Plan Reader access must be provided to the service principal to view savings plans.


Was this article helpful?