Create certificate for Azure AD app only permissions

If you are creating an Azure AD app with app only permissions, or a so called deamon app, you need to use a certificate. One option would be to create a self signed certificate. In most blog posts they use the deprecated makecert tool. If you haven’t used this before, it can be a bit hard to come by.

The alternative is to use PowerShell commandlets. So far I’ve seen some samples but not one complete script that does it all. Here I would like to share the script I use:

After you’ve run the script, you can copy paste the results in your Azure AD manifest files.

Leave a Reply

Your email address will not be published. Required fields are marked *