Azure

Service Principal Audit

Every Azure service principal with its credentials, role assignments and last-used dates.

Tier Explorer

Category Security & Identity

Refresh every 60 min

Scope subscription-wide

Live preview — demo data

Same idea on another cloud

GCP Service Account Audit

What this pane shows

Per-service-principal: display name, owned credentials (client secrets / certificates with creation date, age, last-used timestamp), Azure RBAC role assignments. Service principals with old credentials, unused credentials or excessive role assignments are surfaced first.

Key use cases

Rotate or delete service-principal credentials older than policy.
Identify service principals with unused credentials.
Audit which service principals hold privileged roles.
Catch a service principal with overly-broad role assignments.

How to embed

Drop this snippet on any HTML page that loads lp-embed.js. The pane mounts itself wherever the matching <div> is in the DOM.

<div class="lp-azure-iam-sa-audit-panel"
     data-lp-account="<your-account-alias>"></div>
<script src="https://lightpane.io/embed/lp-embed.js"
        data-lp-key="<your-access-key>"></script>
<script src="https://lightpane.io/_pane-tests/azure/iam-sa-audit/iam-sa-audit.js"
        defer></script>

Tier

Available on Explorer and above.

Build notes

Mock-only at the moment — live-wiring tracked in the roadmap.