Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities - Lets Get Started!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Apps - Power Apps Governance and Administ... / Working with Service P...
Power Apps - Power Apps Governance and Administ...
Answered

Working with Service Principals

(0) ShareShare
ReportReport
Posted on by Serviced2000 172

Hi Everyone,

 

I have a large number of Power Automate flows that integrate with both Dynamics and other parts of the Power Platform (particularly Teams). We have a Service Account (User level account) that runs these flows as required, but I am wondering if using a Service Principal account is a better / more appropriate way to approach this? 

 

Setting up a Service Principal account seem relatively straightforward but are there any pitfalls to this - can this be reversed if required?

 

Thanks in advance!

Categories:
Management
  • Verified answer
    eleung83 Profile Picture
    eleung83 232 on at
    Re: Working with Service Principals

    One of them main difference between having your flows owned by a service principal vs a service account (a normal ad user account that is not a real user) would be the licensing of the flows.

     

    My understanding is that you cannot assign a license to a service principal, and hence, power automate licenses owned by a service principal would then have to be licensed on a per-flow basis rather than per user. This could get costly if you have many Flows (especially significantly more than you have users). Yet MS documentation is somewhat vague on this, as some blurb about Flow co-owners could workaround this licensing issue (e.g. by assigning a service account as the co-owner of the flow, then assigning a power automate license to that user account, which kind of defeats the purpose of the service principal owning the flow). Source: PA licensing 

     

    Another area where you may or may not yet see tangible benefits would be when enabling/turning on flows (e.g. as part of an ALM process). For the service principal to turn on any Flows, any connections used by these flows need to be shared with that service principal. At this current time, there is no automated way to create connections (or rather I'm not aware of a way for a service principal to create a connection), hence the creation and the sharing of a connection would have to be a manual process done using a normal user account. This is why currently any ALM that attempts to enable/turn on flows needs to use impersonation to turn on any flows, and cannot use a service principal directly. 

     

     

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities - Lets Get Started!

Quick Links

🌸 Community Spring Festival 2025 Challenge Winners! 🌸

Congratulations to all our community participants!

Warren Belz – Community Spotlight

We are honored to recognize Warren Belz as our May 2025 Community…

Congratulations to the April Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard > Power Apps - Power Apps Governance and Administering

#1
Michael E. Gernaey Profile Picture

Michael E. Gernaey 9 Super User 2025 Season 1

#2
bscarlavai33 Profile Picture

bscarlavai33 5 Super User 2025 Season 1

#3
getsplash Profile Picture

getsplash 2

Overall leaderboard

Featured topics

Product updates

Microsoft Power Platform Community release plans