Updates Archives
Monthly updates for November 2019
The latest Azure IoT Edge release is now available
The latest version of Azure IoT Edge includes the following improvements. See the full release notes on the GitHub release page.
Azure HDInsight—Simplify NSG rules management using service tags
Azure HDInsight now supports the use of service tags to simplify inbound network security group (NSG) rule management. Azure service tags group multiple IP addresses under a single user friendly tag. Administrators need to only create rules by referring to the tags while Microsoft takes the responsibility of keeping the IP addresses up to date. Administrators maintaining Azure HDInsight clusters can now benefit from this manageability improvement.
Publish to Azure Active Directory protected endpoints from Azure Event Grid now in preview
Azure Event Grid can now publish events to AAD protected endpoints
New Azure policies to manage certificates across your organisation, currently in preview
Large organisations have thousands of certificates in key vaults distributed across thousands of applications and subscriptions.
Azure Key Vault Virtual Machine extension now generally available
The Azure Key Vault Virtual Machine extension makes it easier for apps running on virtual machines to use certificates from a key vault, by abstracting the common tasks as well as best practices.
Extension of Customer Lockbox for Microsoft Azure beyond virtual machines
Customer Lockbox provides customers the capability to control Azure support engineers' access to workloads that contain customer data This expanded support now provides customers control over access to their data for a larger set of Azure offerings.
Azure Disk Encryption in more places and more services offering customer-managed keys
Azure Disk Encryption enables you to encrypt your Azure Virtual Machine disks with your keys safeguarded in Azure Key Vault.
Release of Microsoft Secure Code Analysis toolkit to help you build secure code
With the Microsoft Security Code Analysis extension, you can infuse security analysis tools including Credential Scanner, BinSkim and others into your Azure DevOps continuous integration and delivery (CI/CD) pipelines.
Threat Protection for Azure Key Vault in Public Preview in North America Regions
Azure Key Vault is an essential service for protecting data and improving performance of cloud applications by offering the ability to centrally manage keys, secrets, cryptographic keys and policies in the cloud.
Threat Protection for Azure Storage includes Malware Reputation Screening
You can now view detected malware across storage accounts using Azure Security Center.
Transparent data encryption with customer-managed keys for Azure SQL Database managed instance is now generally available
Transparent data encryption (TDE) with customer-managed keys for Azure SQL Database managed instance is now generally available.
Azure HDInsight—Restrict outbound network traffic clusters by using Firewall
Target availability: Q4 2019
The integration of Azure HDInsight and Azure Firewall, in order to restrict outbound traffic from the cluster to unauthorised destinations, is now generally available.
Azure Firewall Manager is now in preview
Azure Firewall Manager Preview is a security management service that provides central security policy and route management for cloud-based security perimeters. It works with Azure Virtual WAN Hub, a Microsoft-managed resource that lets you easily create hub and spoke architectures. When security and routing policies are associated with such a hub, it is referred to as a Secured Virtual Hub.
Azure Private Link is now available in all regions
Azure Private Link, which provides private connectivity to Azure services, is now available in all regions.
Workflow automation with Logic Apps
Today we are introducing a new capability in Security Center that allows customers to create automation configurations leveraging Azure Logic Apps and to create policies that will automatically trigger them based on specific ASC findings such as Recommendations or Alerts.
Azure Security Center Quick Fix for bulk resources generally available
With the many tasks that a user is given as part of Secure Score, the ability to effectively remediate issues across a large fleet can become challenging. In order to simplify remediation of security misconfigurations and to be able to quickly remediate recommendations on a bulk of resources and improve your secure score you can use Quick Fix.
Additional regulatory compliance standards in Azure Security Center
The Regulatory Compliance dashboard provides insights into your compliance posture based on Security Center assessments. The dashboard shows how your environment complies with controls and requirements designated by specific regulatory standards and industry benchmarks and provides prescriptive recommendations for how to address these requirements.
Scan container images for vulnerabilities in Azure Security Center
Azure Security Center can now scan container images in Azure Container Registry for vulnerabilities. The image scanning works by parsing the container image file, then checking to see whether there are any known vulnerabilities (powered by Qualys).
Threat Protection for Azure Kubernetes Service (AKS) Support in Security Center
Security Center is expanding its support in the container space to one of the fastest growing services in Azure - Azure Kubernetes Service.
Vulnerability assessment in Azure Security Center
Applications that are installed in virtual machines could often have vulnerabilities that could lead to a breach of the virtual machine. We are announcing that the Security Center Standard tier includes built-in vulnerability assessment for virtual machines for no additional fee.
Updates by date
Get answers to your questions from Microsoft and Community experts.
Community supportRead commonly asked questions on Azure updates.
FAQTell us what you think of Azure and what you want to see in the future.
Provide feedbackAzure is available in more regions than any other cloud provider.
Check product availability in your region