Security implications on EDS because of storing SPN creds in KV and passing it to secret svc APIs.
Looking for more details on these SPN and credentials that customer or operator would share with EDS/Secret service. Are we providing guidelines to have a separate SPN’s or Client Id’s for only EDS purposes. While we cannot restrict that but we want to make sure that customers sharing there SPN doesn’t lead to some security threat where these SPN’s are used for other operations as well.