Hello,
- Is it possible to throttle the incoming bearer token requests, ideally by client application?
- Is there any reporting available for bearer token requests? For instance, if one pathological application requested too many tokens that our bill jumped up very high, could we audit any Azure report or logs and ascertain the culprit?
- If I were to do a test of such a pathological app could I succeed in bringing our Azure instances down? What would be the repercussions? Could I negatively affect Azure in other areas outside AAD? (Perhaps there are bulkheads protecting the other areas.)
Thank you
Tom Schulte / Plex Systems