Entra App Owners = Global Admin Power? Audit It with Privileged App Path Auditor

Petri Dish

LISTEN ON:

Most Entra ID reviews focus on roles and permissions. I.e., who’s a Global Admin, what’s been consented, what looks obviously dangerous.

But what if the real risk isn’t a privileged user at all?

What if a regular user, with no admin role, can still put themselves on a path toward Global Administrator, simply because of an application they own?

That’s the question behind today’s episode. Today on Petri Dish, I’m joined by Nicolas Blank, identity architect and Microsoft MVP, to talk about a class of Entra ID risk that many teams completely miss, why traditional reviews don’t catch it, and a new tool that he’s developed called Privileged App Path Auditor.

🔗 Privileged App Path Auditor on Github

👏 Thanks to Cayosoft for sponsoring this episode!

Russell Smith

Russell Smith, the Editorial Director at Petri IT Knowledgebase, has over two decades of hands-on experience in IT, in both small business settings and government IT infrastructure projects. Russell started writing for Windows IT Pro Magazine in the early 2000s. Since then, he has contributed insights to various IT publications, including Petri and CDW. His authoritative voice has resonated across industry blogs, where he dissects complex topics into an ‘easy read’. Russell has authored over a thousand articles, each a testament to his depth of knowledge. His expertise doesn’t stop there: he wrote a book on Privilege Management and co-authored another for Microsoft’s MOAC series. Moreover, Russell’s commitment to education shines through in the courses he crafted for Pluralsight. He is also presenter on his own YouTube channel, This Week in IT, and the current presenter of Petri Dish.