A GivingData application registration in Microsoft Entra ID is created during the setup for each Microsoft integration with GivingData. The Client secret for the application registration expires in 24 months as a security measure against long-term credential risks.
Microsoft Entra ID Client secret keys no longer support "never - ending" secret dates (99 years). This change aligns with Microsoft's requirement for a two-year maximum lifespan for new secrets.
In GivingData, an error message similar to the example below displays when the client secret has expired.
Once the client secret for the application registration has expired, follow the steps below to generate a new client secret and share it with GivingData.
- Log into the Azure Portal (https://portal.azure.com) and navigate to the Microsoft EntraID service.
- In the left-side menu, click App registrations, and then click the GivingData application registration.
- In the left-side menu, click Certificates & secrets.
- Click Client secrets.
- Click New client secret.
- Enter any description, select 24 months in the Expires dropdown, and then click Add.
- Copy the Client secret value.
- ⚠️ Copy and securely store the client secret value immediately after creation, as it will not be visible again once you navigate away from the page.
- ⚠️ Copy and securely store the client secret value immediately after creation, as it will not be visible again once you navigate away from the page.
- Share the Client secret value with your GivingData contact. They will update the information in your GivingData site.