Marius Solbakken and Olav Tvedt are going deeper into the "Managed Identity" universe. There has been no good way to have a managed service identity on tenant A granted access to resources or graph scopes in tenant B. Finally, now there is. Marius will show you how to achieve this! 00:00-00:35 Welcome 01:15-03:15 The cross tenant setup 03:15-05:54 The App registration 05:54-08:22 Requestion permissions 08:22-09:48 Adding user-assigned managed identity 09:48-12:08 Adding federated credential 12:08-13:45 Using the identity (Automation account) 13:45-16:10 Create a runbook with TokenExchange 16:10-18:15 Analysing the token ( ) 18:15-22:18 Getting access token for the other tenant 22:18-23:40- Analysing the second token 23:40-24:56 Usage scenarios 24:56-25:40 Does not expire! 25:40-26:55 FortyTwo usage scenario 26:55- Wrapup and goodbye Read Marius blogpost about it here: