Monthly updates for May 2019
Web Application Firewall (WAF) for Azure Front Door service is now generally available. Customers can use WAF to define security policies that allow, block, forward or rate limit access to their web applications delivered through Azure Front Door.
The VMBoundPort data set is now available for Azure Monitor for VMs customers in all supported Log Analytics workspace regions, including East US and West Europe.
Automatic server-side geo disaster recovery of metadata in Event Grid is now available on the service.
With the adaptive network hardening feature, Security Center learns the network traffic and connectivity patterns of your Azure workloads and provides you with NSG rule recommendations for your internet facing virtual machines.
General Availability: Azure DDoS Protection Standard introduces DDoS Alert integration with Azure Security Center
We are announcing the ability for DDoS Protection Standard customers to view DDoS Alerts in Azure Security Center (ASC) and this capability is generally available for all ASC and DDoS Standard customers.
Gain visibility and control over your security posture by discovering opportunities that will help to improve security across your organization
Target retirement date: June 15, 2019
Azure log integration (AzLog) tool will be deprecated on June 15, 2019.
Azure Security Center is beginning roll out of a new Azure Linux analytics agent to improve the onboarding of Linux VMs and servers to Security Center
Azure AD Conditional Access policy for the combined MFA and password reset security info registration experience
Control the conditions in which sentive security information for multi-factor authentication and self-service password reset can be registered.
NSG service tag for Azure Backup aims to ease the process of running backups in an environment locked down using NSGs. With this, you now have the option to simply use the ‘AzureBackup’ tag to allow outbound access to Azure Backup for your workload (SQL server) agent running inside the VM, instead of managing whitelisting of required IPs.
Passwords for accounts created in Azure AD can now be up to 256 characters including spaces.
.NET developers can use MSAL.NET to securely sign-in and authenticate any Microsoft identity (Azure AD and Microsoft Accounts) and call Microsoft Graph or other APIs.
GitHub Enterprise customers can synchronize groups of users with Azure AD to leverage existing infrastructure.
Register, configure and manage all your apps in the new application registration blade in the Azure portal.
Adaptive network hardening is now in public preview
Adaptive application controls - changing a VM group membership
Regulatory Compliance Dashboard in Azure Security Center is now generally available
Virtual machine scale set support – now generally available
Advanced Threat Protection for Azure Storage is now generally available