Microsoft Entra Identity Platform
A developer platform that helps protect your users and data.
Latest posts
General Availability: Refresh Token (RT) Transfer to Apple Watch in Microsoft Entra External ID Native Authentication
We’re excited to announce the General Availability (GA) of Single Sign-On (SSO) from Native Apps to Embedded Web Views for Microsoft Entra External ID (EEID) Native Authentication. This release marks a major milestone in delivering end-to-end seamless authentication experiences for modern CIAM applications bridging the gap between native and web-based app surfaces. Why RT transfer matters for Native Auth Native Authentication enables developers to build fully in‑app, customizable sign-in experiences with secure token management. However, modern applications increasingly extend beyond a single device. Real-...
General Availability: Single Sign-On (SSO) from Native Apps to Embedded Web Views in Microsoft Entra External ID Native Authentication
We’re excited to announce the General Availability (GA) of Single Sign-On (SSO) from Native Apps to Embedded Web Views for Microsoft Entra External ID (EEID) Native Authentication. This release marks a major milestone in delivering end-to-end seamless authentication experiences for modern CIAM applications bridging the gap between native and web-based app surfaces. Why SSO matters for Native Auth Native Authentication gives developers full control over the identity UX—enabling pixel-perfect, in-app sign-in and sign-up experiences without browser redirects. However, real-world applications rarely stay fully ...
General Availability: Social Identity Providers for Native Authentication via Browser‑Delegated Flows (web-view) in Microsoft Entra External ID
We’re excited to announce the General Availability of Social Identity Provider (IdP) support for Native Authentication in Microsoft Entra External ID. This release enables developers to integrate popular social sign‑in options such as Google, Facebook, and Apple — into native and single‑page applications that use Native Authentication. Importantly, social identity providers are supported through a browser‑delegated (web‑view) authentication flow. This approach ensures compatibility with social providers while maintaining the security posture expected of enterprise‑grade identity systems. Clarifying native vs. ...
Designing for Eventual Consistency for Microsoft Entra
Microsoft Entra is a globally distributed service that provides identity and access management to millions of customers world-wide. To scale reliably and remain resilient during failures, Microsoft Entra uses an eventually consistent directory model. Key takeaway A successful write to Microsoft Entra does not guarantee that an immediate read will reflect that change. This article explains how eventual consistency appears in Microsoft Entra, why it exists, and the concrete patterns you should use when building applications that create, update, or manage directory objects. Eventual consistency applies regardless ...
General Availability: Email and SMS OTP as Second‑Factor MFA for Native Authentication in Entra External ID
Today we’re announcing the general availability of Email and SMS one‑time passcode (OTP) as second‑factor MFA for Native Authentication in Microsoft Entra External ID. This enables developers to add step‑up security to native sign‑in and sign‑up flows while keeping users fully inside their applications. This release focuses exclusively on MFA as a second factor, evaluated after first‑factor authentication completes, and is enforced through Microsoft Entra Conditional Access. Clarifying first factor vs. second factor Native Authentication in Entra External ID supports distinct authentication stages, allowing ...
Announcing GA of Bicep templates support for Microsoft Entra ID resources
We’re thrilled to announce that Bicep templates for Microsoft Entra ID resources is generally available from July 29th, 2025. Bicep templates bring declarative infrastructure as code (IaC) capabilities to Microsoft Graph resources. This new capability will initially be available for core Microsoft Entra ID resources. Bicep templates for Microsoft Graph resources allow you to define the tenant infrastructure you want to deploy, such as Microsoft Entra ID groups or applications, in a file, then use the file throughout the development lifecycle to repeatedly deploy your infrastructure. The file uses the Bicep langu...
General Availability of Native Authentication JavaScript SDK
Today we announce that Native Authentication JavaScript SDK for Microsoft Entra External ID is now Generally Available! Initially released in 2024, Native Authentication empowers developers to build sign-in, sign-up and sign-out experiences for single page applications (SPAs) in Entra External ID. How to use native authentication JavaScript SDK You can add native authentication to your single page applications (SPAs) by using the Microsoft Authentication Library (MSAL) for JavaScript with the native authentication extensions. Whenever possible, use MSAL to integrate native authentication for SPA experiences. ...
Now Generally Available: Apple identity provider support for Microsoft Entra External ID
I'm excited to announce that "Sign in with Apple" is now generally available for external tenants in Entra External ID. The feature has been in public preview since February, and many customers have already integrated Apple as an identity provider for their applications.
May 2025: A look at the latest Microsoft Entra key feature releases, announcements, and updates
Welcome to the May edition of our monthly newsletter, summarizing the latest news and developments in the exciting, ever-evolving world of Microsoft Entra.
Announcing the General Availability of Managed Identities as Federated Identity Credentials in your Entra apps
Announcing the GA of Managed Identities as Federated Identity Credentials for Microsoft Entra. Enhance security by replacing app secrets with managed identities, simplify setup, and enable seamless cross-tenant access to Entra-protected resources like Azure and Microsoft Graph.
April 2025: A look at the latest Microsoft Entra key feature releases, announcements, and updates
This is the April 2025 edition of our monthly developer update, summarizing the latest news and developments in Microsoft Entra. This month, we bring you feature updates, public previews, announcements, and other important updates. Read on to learn more and make the most of Microsoft Entra.
Announcing the General Availability of OpenID Connect external identity provider support for Microsoft Entra External ID
Discover the new OpenID Connect identity provider support in Microsoft Entra External ID, now generally available. Simplify user sign-in and partner integrations, and improve conversion rates and user satisfaction by federating with external identity providers like Okta, Amazon, Auth0, and Azure AD B2C.
February 2025: A look at the latest Microsoft Entra key feature releases, announcements, and updates
This is the February 2025 edition of our monthly developer update, summarizing the latest news and developments in Microsoft Entra. This month, we bring you feature updates, public previews, announcements, and other important updates. Read on to learn more and make the most of Microsoft Entra. What went Generally Available (GA) since January 2025? New Public Previews News, updates, and resources What's new in Microsoft Entra? Learn what is new with Microsoft Entra, such as the latest release notes, known issues, bug fixes, deprecation functionality, and upcoming changes. You can find releases sp...
January 2025: A look at the latest Microsoft Entra key feature releases, announcements, and updates
Welcome to the January 2025 edition of our monthly developer update, summarizing the latest news and developments in Microsoft Entra. This month, we bring you feature updates, public previews, announcements, and other important updates. Read on to learn more and make the most of Microsoft Entra.
Announcing the Public Preview of Apple Identity Provider Support for Microsoft Entra External ID
Announcing the public preview of "Sign in with Apple" support for Microsoft Entra External ID. This feature allows users to sign up and sign in to applications using their Apple ID. Apple joins Google and Facebook as pre-configured social identity providers, supporting Single Sign-On (SSO) through the OAuth framework.
Effortlessly access cloud resources across Azure tenants without using secrets
Announcing the Public Preview of Managed Identities as Federated Identity Credentials for Microsoft Entra. Enhance security by removing secrets, simplify setup, and enable seamless cross-tenant access to Entra-protected resources like Azure and Microsoft Graph.
Integrating Microsoft Entra ID for enhanced security in three-tier architecture
Explore how to secure three-tier architecture with Microsoft Entra ID in this first part of a three-part series. Learn how to implement robust authentication and authorization across client app, API, and data layers, ensuring secure and reliable application design in an Azure cloud environment.
Microsoft Entra External ID Custom URL Domains—now generally available
Discover Microsoft Entra External ID Custom URL Domains, now generally available (GA). Learn how to enhance the authentication experience by branding login endpoints with your own domain name, creating a seamless, secure, and familiar experience for users.