What's New in Entra ID for February 2024 : Sander Berkouwer

Reader
March 01, 2024
What's New in Entra ID for February 2024
by: Sander Berkouwer
blow post content copied from  The DirTeam.com / ActiveDir.org Weblogs
click here to view original post

Reading Time: 3 minutes

Microsoft Entra ID

Entra ID, previously known as Azure AD is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Entra ID and through the Microsoft 365 Message Center, Microsoft communicated the following planned, new and changed functionality for Entra ID for February 2024:

 

What's Planned

Microsoft Entra ID Protection: "Low" risk age out Planned

Service category: Identity Protection
Product capability: Identity Security & Protection

Starting March 31st, 2024, all low risk detections and users in Microsoft Entra ID Protection that are older than 6 months will be automatically aged out and dismissed. This allows organizations to focus on more relevant risks and provides a cleaner investigation environment.

 

What's Deprecated

Windows Azure Active Directory Connector for Forefront Identity Manager Deprecated

Service category: Microsoft Identity Manager
Product capability: Inbound to Microsoft Entra ID

The Windows Azure Active Directory Connector for Forefront Identity Manager (FIM WAAD Connector) from 2014 was deprecated in 2021. The standard support for this connector ends in April 2024. Organizations should remove this connector from their Microsoft Identity Manager (MIM) sync deployment, and instead use an alternative provisioning mechanism.

 

What's New

Granular filtering of Conditional Access policy list General Availability

Service category: Conditional Access
Product capability: Access Control

Conditional access policies can now be filtered on actor, target resources, conditions, grant control and session control. The granular filtering experience can help admins quickly discover policies containing specific configurations.

 

Microsoft Entra ID Protection: New premium user risk detection; Suspicious API Traffic General Availability

Service category: Identity Protection
Product capability: Identity Security & Protection

Microsoft has released a new premium user risk detection in Identity Protection called Suspicious API Traffic. This detection is reported when Identity Protection detects anomalous Graph traffic by a user. Suspicious API traffic might suggest that a user account is compromised and abused to conduct reconnaissance in the environment.

 

Identity Protection and Risk Remediation on the Azure Mobile App General Availability

Service category: Identity Protection
Product capability: Identity Security & Protection

Previously supported only in the portal, Identity Protection is a powerful tool that empowers admins to proactively manage identity risks. Now available in the Azure Mobile app, admins can respond to potential threats with ease and efficiency. This feature includes comprehensive reporting, offering insights into risky behaviors such as compromised user accounts and suspicious sign-ins.

  • The Risky users report provides visibility into accounts flagged as compromised or vulnerable. Actions such as blocking/unblocking sign-ins, confirming the legitimacy of compromises, or resetting passwords are conveniently accessible, ensuring timely risk mitigation.
  • The Risky sign-ins report provides a detailed overview of suspicious sign-in activities, aiding admins in identifying potential security breaches. While capabilities on mobile are limited to viewing sign-in details, admins can take necessary actions through the portal, such as blocking sign-ins. Alternatively, admins can choose to manage the corresponding risky user's account until all risks are mitigated.

Stay ahead of identity risks effortlessly with Identity Protection on the Azure Mobile app. These capabilities are intended to provide user with the tools to maintain a secure environment and peace of mind for their organization.

 

New provisioning connectors in the Microsoft Entra Application Gallery General Availability

Service category: App Provisioning
Product capability: 3rd Party Integration

Microsoft has added the following new applications in the Entra App gallery with Provisioning support. Admins can now automate creating, updating, and deleting of user accounts for these newly integrated apps:

 

New Federated Apps available in Microsoft Entra Application gallery General Availability

Service category: Enterprise Apps
Product capability: 3rd Party Integration

In February 2024, Microsoft has added the following new applications in the Entra App gallery with Federation support:

  1. Presswise
  2. Stonebranch Universal Automation Center (SaaS Cloud)
  3. ProductPlan
  4. Bigtincan for Outlook
  5. Blinktime
  6. Stargo
  7. Garage Hive BC v2
  8. Avochato
  9. Luscii
  10. LEVR
  11. XM Discover
  12. Sailsdock
  13. Mercado Eletronico SAML
  14. Moveworks
  15. Silbo
  16.  Alation Data Catalog
  17. Papirfly SSO
  18. Secure Cloud User Integration
  19. AlbertStudio
  20. Automatic Email Manager
  21. Streamboxy
  22. NewHotel PMS
  23. Ving Room
  24. Trevanna Tracks
  25. Alteryx Server
  26. RICOH Smart Integration
  27. Genius
  28. Othership Workplace Scheduler
  29. GitHub Enterprise Managed User – ghe.com
  30. Thumb Technologies
  31. Freightender SSO for TRP (Tender Response Platform)
  32. BeWhere Portal (UPS Access)
  33. Flexiroute
  34. SEEDL
  35. Isolocity
  36. SpotDraft
  37. Blinq
  38. Cisco Phone OBTJ
  39. Applitools Eyes

 

What's Changed

Expansion of the Conditional Access re-authentication policy for additional scenarios Public Preview

Service category: Conditional Access
Product capability: Identity Security & Protection

Re-authentication policies lets admins require people in the organization to interactively provide their credentials again, typically before accessing critical applications and taking sensitive actions. Combined with the Conditional Access session control Sign-in frequency, admins can require re-authentication for users and sign-ins with risk, or for Intune enrollment. With this public preview, admins can now require re-authentication on any resource protected by Conditional Access.

The post What's New in Entra ID for February 2024 appeared first on The DirTeam.com / ActiveDir.org Weblogs.


March 01, 2024 at 07:09PM
Click here for more details...

=============================
The original post is available in The DirTeam.com / ActiveDir.org Weblogs by Sander Berkouwer
this post has been published as it is through automation. Automation script brings all the top bloggers post under a single umbrella.
The purpose of this blog, Follow the top Salesforce bloggers and collect all blogs in a single place through automation.
============================

Salesforce