{"id":237664,"date":"2026-04-28T02:37:00","date_gmt":"2026-04-28T06:37:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/04\/28\/microsoft-patches-entra-id-role-flaw-that-enabled-service-principal-takeover\/"},"modified":"2026-04-30T20:20:11","modified_gmt":"2026-05-01T00:20:11","slug":"microsoft-patches-entra-id-role-flaw-that-enabled-service-principal-takeover","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/04\/28\/microsoft-patches-entra-id-role-flaw-that-enabled-service-principal-takeover\/","title":{"rendered":"Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover"},"content":{"rendered":"

Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover<\/a><\/p>\n

https:\/\/thehackernews.com\/2026\/04\/microsoft-patches-entra-id-role-flaw.html<\/a><\/p>\n

Publish Date: 2026-04-28 02:37:00<\/a><\/p>\n

Source Domain: thehackernews.com<\/a><\/p>\n

\ue804Ravie Lakshmanan<\/span>\ue802Apr 28, 2026<\/span><\/span>Vulnerability \/ Identity Management<\/span><\/p>\n

An administrative role meant for artificial intelligence (AI) agents within Microsoft Entra ID could enable privilege escalation and identity takeover attacks, according to new findings from Silverfort.<\/p>\n

Agent ID Administrator is a privileged built-in role introduced by Microsoft as part of its agent identity platform to handle all aspects of an AI agent’s identity lifecycle operations in a tenant. The platform enables AI agents to authenticate securely and access necessary resources, as well as discover other agents.<\/p>\n

However, the shortcoming discovered by the identity security platform meant that users assigned the Agent ID Administrator role could take over arbitrary service principals, including those beyond agent-related identities, by becoming an owner and then add their own credentials to authenticate as that principal.<\/p>\n

“That’s full service principal takeover,” security researcher Noa Ariel said. “In tenants where high-privileged service principals exist, it becomes a privilege escalation path.”<\/p>\n

\"\"<\/p>\n

This ownership of a service principal effectively opens the door to an attacker to operate within the scope of its existing permissions. If the targeted service principal holds elevated permissions \u2013 particularly privileged directory roles and high-impact Graph app permissions \u2013 it can give an attacker broader control over the tenant.<\/p>\n