Welcome to the March edition of our monthly developer update, where we dive into the latest news and announcements in Microsoft Entra. We’ve rolled out several significant enhancements, from new Generally Available (GA) Microsoft Entra ID Protection capabilities to Conditional Access updates which are under Public Preview. These updates can significantly streamline your workflow and security processes. You’ll find key information about these developments as well as links to further guidance, helping you integrate these updates effectively into your projects.

What went Generally Available (GA) since Feb 2024

• Microsoft Entra ID Protection – Suspicious API traffic detection for users: A new detection capability has been introduced which flags abnormal or suspicious Microsoft Graph traffic or directory enumeration activities observed by users. Suspicious API traffic might suggest that a user is compromised and conducting reconnaissance in their environment.

• Microsoft Entra ID Protection – Risk remediation on the Azure mobile app: Risk remediation capabilities of Microsoft Entra ID Protection, previously only available through the Microsoft Entra portal, are now accessible via the Azure mobile app. This includes comprehensive reporting, providing insights into risky behaviors such as compromised user accounts and suspicious sign-ins, along with the Risky users and Risky sign-ins report.

New Public Previews

• Authentication Flows for Conditional Access: This feature introduces the capability to configure Conditional Access (CA) policies to restrict or block the usage of specific authentication flows. The initial release of this feature is limited to device code flow and authentication transfer.

• Conditional Access – Require reauthentication every time: A new CA policy option that requires users to interactively reauthenticate—by providing their credentials again—before they access critical applications or take sensitive actions on any resource protected by CA.

News, updates, and resources

• New applications added to the Microsoft Entra ID app gallery supporting SSO and user provisioning.

• Understand how you can migrate Identity and Access Management scenarios from Microsoft Identity Manager to Microsoft Entra.

• To support alignment with Microsoft Entra ID HITRUST controls, detailed guidance is now available. It is organized to allow you to easily lookup the HITRUST control, objective, and HSR, with corresponding Microsoft Entra recommendations and advice.

• Check out the updated guidance on best practices to migrate applications and authentication from AD FS to Microsoft Entra ID. This guidance outlines the Application Migration tool, currently in preview, which facilitates discovering, evaluating, and configuring Microsoft Entra ID applications.

Workshop on-demand recordings

• Microsoft identity platform: Explore modern authentication and authorization foundations and adding authentication to an app and learn about token customization and best practices for protecting an API.

• Identity workshop: Explore what the Microsoft identity platform provides for developers, principles of modern authentication, and migrating apps from ADAL to Microsoft authentication library (MSAL).

Identity Blog

• ICYMI: An overview of the Microsoft Entra updates for February 2024, including updates on app filters for Conditional Access policies and an array of new Public Previews, like Microsoft Entra Internet Access for all apps.

• This blog post delves into the challenges and adaptations that came with moving to a hybrid and remote work environment, through the shared experiences of three team members. It highlights how the team maintained work quality and standards, offering useful tips and insights for readers.

• Discover the new Microsoft Entra External ID extension for Visual Studio Code, designed to streamline CIAM integration within your development workflow. Learn how this extension offers a seamless experience for configuring External ID applications directly in VS Code.

Videos

• Check out recent videos from the Microsoft Security YouTube channel and The 425 Show.

  • Microsoft Entra External ID CIAM Series

  • Getting Started With Microsoft Entra Verified ID

Stay connected and informed

This blog post aims to keep you informed and engaged with the latest Microsoft Entra developments, helping you harness these new features and capabilities in your identity development journey.

To learn more or test out features in the Microsoft Entra suite of products, visit our developer center. Make sure you subscribe to the Identity blog for more insights and to keep up with the latest on all things Identity. And, follow us on YouTube for video overviews, tutorials, and deep dives.