Skip to main content

Edit Owners and Deputies for a Client Secret

AAs a delegated administrator or application owner, you can manage access to Microsoft Entra client secrets by editing the responsible party, owners, and deputies assigned to the credential using the Manage Credential Wizard.

This article guides you through the process in EmpowerID’s Resource Admin portal.

What You’ll Need

RequirementDescription
Access to Resource AdminYou must have permission to access and manage application credentials in Resource Admin.
Ownership or DelegationYou must be the owner or delegated administrator of the application containing the client secret.

Steps to Edit Owners and Deputies

1: Open the Application Overview Page

  1. Log in to Resource Admin.
  2. Select Applications from the Resource Type menu and search for the Azure application with the client secret you want to delete.
  3. Click the Details button for the application. Application Details Button This opens the Overview page for the selected Azure application.
    Application Overview

2: Launch the Manage Credential Wizard

  1. In the left application menu, click Client Secrets.
  2. Locate the client secret you want to manage.
  3. Click the gear icon on the client secret record and select Manage Credential Wizard.
    Create Microsoft Entra Application Client Secret Action

3: Select the Edit Owners and Deputies Action

  1. Under Select Options, select Edit Owners and Deputies. Edit Owners and Deputies
  2. Click Next.
    The Edit Who Can Manage this Credential form opens.
    Edit Who Can Manage

4: Edit the Credential Managers

  1. In the Responsible Party section, select the person ultimately accountable for the credential.
    • To remove the current responsible party, click the X next to their name.
  2. Under Manage Owners, search for and select the user(s) you want to assign as owners.
    • To remove an owner, click the X next to their name.
  3. Under Manage Deputies, search for and select the user(s) to act as deputies.
    • To remove a deputy, click the X next to their name.
  4. Click Next to continue.
tip

Owners and deputies inherit access permissions to manage the credential, including vault and checkout actions if those options are enabled.

Step 5: Review the Summary and Finish

  1. Review the Operation Execution Summary confirming the update completed successfully.
  2. Click Submit to continue.
  3. On the Finish or Start Over Workflow screen, choose one of the following:
    • Manage the same credential(s)
    • Manage different credential(s)
    • Finish the workflow Finish or Start Over Workflow
  4. Click Submit to confirm your choice.

You’ll be redirected based on your selection—either back into the wizard or out to the Workflows page.

What Happens Next

  • The credential’s updated responsible party, owners, and deputies are applied immediately.
  • Users assigned as owners or deputies can now manage the credential based on their access rights.
  • You can return to the Client Secrets tab in the application overview to review or take further actions on the secret.