Microsoft Entra Identity Platform
A developer platform that helps protect your users and data.
Latest posts
December 2023: A look at the latest Microsoft Entra key feature releases, announcements, and updates
An overview of the latest updates in Microsoft Entra for December 2023, including new single sign-on (SSO) capabilities and improved identity governance tools. Learn how to integrate these enhancements into your projects for better workflow and security management.
Introducing trust direction options for Microsoft Entra Domain Services
Announcing the addition of two-way trust relationships in Microsoft Entra Domain Services, enhancing security and accessibility between cloud and on-premises resources. This update allows for more flexible trust configurations, enabling users in both managed and on-premises domains to mutually access resources.
Using device state for an improved SSO experience on browsers with blocked third-party cookies
IT admins can leverage managed devices to minimize the impact of blocked third-party cookies on the user experience.
SPA developers: Migrate to auth code flow with PKCE
SPA developers should leverage the auth code flow with PKCE for improved resiliency, security, and UX when third-party cookies are blocked by a browser.
Adding flexibility to authentication with Microsoft Entra External ID custom extensions
As the Microsoft Ignite conference gets underway, we announce the public preview of a new set of custom extension points for Microsoft Entra External ID.
Introducing Native Authentication for consumer mobile applications
This blog post outlines the importance of smooth and brand-aligned login processes for customer satisfaction and loyalty. We invite you to take an early look at work we're doing to help you make your mobile app login journeys more user-friendly and in line with your brand's identity.
Introducing Trusted Certificate Authorities (public preview) in App management policy
In March 2023, we announced a framework called App management policy which allows admins to implement security best practices for applications in their tenant. Now, we've added a new capability that allows admins to define trusted certificate issuers for their tenant. Attempts to add an app certificate that does not meet the criteria defined in the policy will be rejected.
Feature recap ahead of our annual conference, Microsoft Ignite!
In the run-up to Microsoft Ignite, we look at a new feature, released to public preview, that informs strategy and bolsters decision-making for a more intuitive and informed development process.
Public vs. confidential clients and how to avoid common security pitfalls in identity
This blog post delves into the critical differences between public clients, which are inherently more exposed and vulnerable, and confidential clients, which operate under stringent security measures to safeguard sensitive data. You’ll discover why knowing the difference matters and learn a few best practices to help you avoid common pitfalls.