![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 19%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
406 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 50%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
It sounds like you deployed the Connected Machine Agent via a script using a service principal, correct? The client secret is just for initial registration of the agent so your machines will continue checking into Azure Arc after the expiration. Your script however will need an updated client secret in order to register agents after the current client secret expires. To generate a new client secret:
- In the Azure portal, go to App registrations -> All applications
- Search for the ServicePrincipalID used in your script and click on the result
- Click Certificates & Secrets -> New client secret
- Set your expiration
- Click Add
- Update your script with the new client secret