Learn about important Azure product updates, roadmap, and announcements. Subscribe to notifications to stay informed.
Gain visibility and control over your security posture by discovering opportunities that will help to improve security across your organization
Azure AD Conditional Access policy for the combined MFA and password reset security info registration experience
Control the conditions in which sentive security information for multi-factor authentication and self-service password reset can be registered.
Passwords for accounts created in Azure AD can now be up to 256 characters including spaces.
.NET developers can use MSAL.NET to securely sign-in and authenticate any Microsoft identity (Azure AD and Microsoft Accounts) and call Microsoft Graph or other APIs.
Register, configure and manage all your apps in the new application registration blade in the Azure portal.
GitHub Enterprise customers can synchronize groups of users with Azure AD to leverage existing infrastructure.
Create conditional access policies which determine how often users need to provide sign-in credentials and if they need to provide them after closing and reopening browsers.
Govern employee and partner access requests, approvals, auditing, and reviews for any app integrated with Azure AD.
User group membership information can be emitted from SAML and OIDC/OAuth tokens issued by Azure AD so organizations so apps that require this information can be managed and secured from the cloud.
Azure Active Directory activity logs integration with Diagnostics Logs for Azure Monitor and Log Analytics in Azure Monitor
Gain insights from Azure AD user activity logs stored in an Azure storage account and streamed to your preferred SIEM or custom environment, or integration with Log Analytics in Azure Monitor directly in the Azure portal.
We are changing our Azure Active Directory (Azure AD) sign-in behavior to make room for new authentication methods and improve usability. During sign-in, Azure AD determines where a user needs to authenticate. Azure AD makes intelligent decisions by reading organization and user settings for the username entered on the sign-in page. This is a step towards a password-free future that enables additional credentials like FIDO 2.0.
Target availability: Q2 2019
We're updating the Microsoft 365 sign-in page for Azure Active Directory (Azure AD) to add a new sign-in options link. This link will be added only to sign-in pages that accept personal Microsoft accounts.
Azure AD password protection helps you eliminate easily guessed passwords from your environment, which can dramatically lower the risk of being compromised by a password spray attack.
Securely tap into the rich workforce identity and organization data present in Workday and automate inbound user provisioning into Active Directory and Azure AD.
Scalably assign Microsoft service licenses to groups of users rather than individuals in Azure AD.
Azure AD activity logs integration with Azure Monitor Diagnostics and Azure Log Analytics is in public preview
Gain insights from Azure AD user activity logs stored in an Azure storage account and streamed to your preferred SIEM or custom environment, or integration with Azure Log Analytics tools directily in the Azure portal.
The ability to forward your Azure Active Directory logs to Azure Log Analytics is now available.
Identify and remediate directory errors caused by duplicate user attributes and orphaned objects, which complicate synchronizing your AD and Azure AD hybrid identity environment.
System-assigned Managed Identity for Virtual Machines and Virtual Machine Scale Sets is now available
Use a system assigned managed identity with a Virtual Machine and Virtual Machine Scale Sets.