Azure Consent To Application
Records an admin or user granting an Entra ID application permission to access resources via an OAuth 2.0 consent grant.
Adversaries can steal application access tokens as a means of acquiring credentials to access remote systems and resources.
View on MITRE ATT&CK →Records an admin or user granting an Entra ID application permission to access resources via an OAuth 2.0 consent grant.
Generates a short-lived OAuth2 access token for a service account, used for impersonation or workload federation. This is the admin activity audit log format; see also iam.serviceAccounts.getAccessToken for the data access format.
Returns temporary security credentials for a federated user, optionally scoped to an inline IAM policy.
Returns temporary credentials for an IAM user, typically used to satisfy an MFA requirement for subsequent API calls.
Generates a sign-in token used to construct a federation URL for single sign-on to the AWS Management Console.
Signs a JWT on behalf of a service account via the IAM Credentials API, used for authentication or token exchange.
Regenerates one of the two access keys for an Azure Storage account, invalidating the previous key.