Blog Post

Microsoft Entra Blog
2 MIN READ

New Microsoft Entra Features Now Available

ShobhitSahay's avatar
ShobhitSahay
Icon for Microsoft rankMicrosoft
May 01, 2023

Microsoft has recently introduced a range of new security tools and features for their Entra product family, aimed at helping organizations to improve their security posture. With the ever-increasing sophistication of cyber-attacks and the increasing use of cloud-based services and the proliferation of mobile devices, it is essential that organizations have effective tools in place to manage their scope of security. 

 

These recent updates have been organized into capability areas or themes, making it easy to quickly find and access the latest updates. With these new features, Microsoft is aiming to provide their customers with a comprehensive security solution that covers all aspects of their organization's security needs. Going forward, you can expect to find new feature launch announcements like this as part of the change management blog post that is released every quarter.

 

Identity security / protecting Identities 

  

Identity modernization 

  

Identity Governance 

 

Identity for multicloud 

 

Passwordless 

  

External Identities (B2B & B2C) 

 

We look forward to introducing even more ways to help you protect your information in the coming months. In the meantime, let us know what you think about the new features and share with us how they’re benefiting your organization!  

 

 

Learn more about Microsoft identity: 

Updated May 05, 2023
Version 2.0

1 Comment

  • brlgen's avatar
    brlgen
    Brass Contributor

    Right now when you use Conditional Access to enforce strong auth methods such as phishing resistance auth. The user is asked for more info and then redirected to the following page:

    Additional authentication is required to complete this sign-in. Learn how to set up a security key (FIDO2), then go to https://aka.ms/mysecurityinfo to add the authentication method to your account.
    https://imgur.com/M66nCVe

    However when you click through on the Security Info url, you end up at the very start of the auth flow and get stuck in an infinite loop. It makes no sense that you cannot configure a Fido2 security key EVEN when other MFA methods were already registered, once enforced you cannot get out of the infinite-auth-loop-of-death.

    The only way around this loop is to configure a TAP for the user which allows them to bypass the policy and reach the Security Info page to add a new security key. We want to secure all our customers using FIDO2 but right now having to create a TAP for each and every user including guest users just to enable security key registration is very cumbersome and makes no sense when regular MFA allows you to register an app just fine at first logon.

    Issues likes these make convincing higher management at our customer base a lot more difficult when we need to do the very opposite in order to encourage adoption of more secure auth methods!