Allow certificates (in addition to client secrets) for Entra ID service connections

App Registrations in Entra permit client secrets or certificates to be used for authentication. Client secrets are simple and convenient, but they allow anyone with the secret to use it to authenticate to the application. Rotating the client secret on a regular schedule mitigates this risk, however I typically prefer using a certificate as my credential wherever possible. Microsoft also recommends this as a best practice. I would like to see the AzureActiveDirectory (Entra ID) Service Connection setup to allow client secrets OR certificates be used to authenticate to the App Registration. The administrator could be prompted to enter the thumbprint for the cert or select from a list of compatible certs found on the server.

https://learn.microsoft.com/en-us/entra/identity-platform/security-best-practices-for-app-registration#certificates-and-secrets