Migrating Secrets from Azure AD to Entra ID RPC

Microsoft is retiring the Azure AD PowerShell module that powers our Azure AD remote password changer. Thus, you must migrate any secret templates using that password changer to the Entra ID changer to maintain functionality. You also must set privileged accounts for all secrets based on that template.

To accomplish this:

  1. Go to the Secret Template page for the template you want to change via the Settings page.

  2. Click the Mapping tab.

  3. Click the Edit button.

  4. Click the Password type to use dropdown list and select Entra ID Password. The Password type fields appear.

  5. Ensure the fields are set to Domain, Username, and Password.

  6. Click the Save button.

  7. Go to the All Secrets page (Secrets > All Secrets).

  8. Click to select the secrets based on the template you just changed.

  9. Click the Bulk Actions button. The bulk action choices appear.

  10. Click Set Privileged Account link in the Remote password changing section. The Set privileged account section appears.

  11. Click to select the Privileged account credentials selection button.

  12. Click the No secret selected link. The Select Secret popup appears.

  13. Select a secret that uses the Azure Application Registration template or any other secret template using the OAuth Application Registration extended mapping.

  14. Click the Confirm Action button.

  15. If you need different privileged accounts for different secrets, select all the secrets for each privileged account and repeat the bulk operation described above.