This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
Cloud platforms
Questions about AWS, Azure, and Google Cloud Platform.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Retrieve Azure App Credential Expiration Dates for Secure Access

Go to solution
JeanBlanc
Mentor

‎19 Jun 2025 08:53 AM - last edited on ‎16 Dec 2025 01:25 PM by Community Team

Hi community,

Has anyone succeeded in pulling the expiration dates of Azure App Credentials (client-secret / certificate) directly into Dynatrace?

I’m not referring to secrets stored in Azure Key Vault (those are already covered by the Key Vault integration). I need to surface the expiry information that Azure exposes under:

Azure AD ➡ App registrations ➡ Certificates & secrets

Context

  • Dynatrace SaaS, ActiveGate 1.313

  • Azure Monitor integration already enabled

What I’ve tried

  1. Azure Monitor Metrics/Logs – couldn’t find any metric or table that exposes credential expiry.

  2. Dynatrace Extensions 2.0 – checked available extension libraries; none seem to target applications endpoints.

  3. Custom API pull – considered building an Extension 2.0 that calls
    GET https://graph.microsoft.com/v1.0/applications/{id}?$select=id,displayName,passwordCredentials
    …but before investing time I’d like to know if there’s an existing solution or best practice.

Questions

  1. Did you manage to ingest this data into Dynatrace (metric, log, or event)?

  2. If so, which approach worked best (builtin integration, Extension 1.0/2.0, Synthetic Monitor)?

  3. Any pitfalls around token scopes, rate limits, or schema mapping I should watch out for?

Thanks in advance for any insights or code snippets!

Best,

Labels:
0 Kudos
Reply
2 REPLIES 2

Go to solution
IzabelaRokita
Community Team
Community Team

‎16 Dec 2025 01:25 PM

Hey @JeanBlanc ,
I just wanted to check in and see if you still need help with this. If so, I’d be happy to look into it for you! 😊
Please let me know what works best for you.

0 Kudos
Reply

Go to solution
JeanBlanc
Mentor

‎17 Dec 2025 03:32 PM

Hi @IzabelaRokita,

Thanks for checking back 😊
Yes — I can confirm that I’ve already implemented a fully functional solution for this use case.

What I ended up doing

I built an export based on Microsoft Graph to pull App Registration credential expiry (client secrets + certificates) and bring it into Dynatrace in a way that supports dashboards and alerting for customers.

So overall: solution is already in production, and my customers are using it today to monitor expiration dates and get proactive alerts.

Best,

Reply
Ask a question

Featured Posts