What is a one sentence summary of your feature request?
Have NDC to additionally support the use of Entra client secrets or multiple certificate thumbprints.
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
Adding SharePoint/Exchange Online (Auto-detect and crawl) data source with Modern (O365) authentication type, NDC currently only supports the use of a single ‘certificate thumbprint’.
When enabling DQS mode, having the ability to configure Entra ID client secret in the app registration, or the ability to upload multiple SSL certificates to Entra ID app registration and configuring the NDC source with multiple server SSL certificate thumbprints. Either solution would be ideal to most environments.
How do you currently solve the challenges you have by not having this feature?
Without DQS mode enabled a single SSL certificate does not pose any issues.
With DQS mode enabled we had to generate a single SSL cert from our CA, then import the certificate and configure IIS to use that certificate on all DQS nodes. This process is more time consuming than allow client secrets, especially for SSL certificate renewals and client secret password rotation policies.
