IT admins can leverage managed devices to minimize the impact of blocked third-party cookies on the user experience.
SPA developers should leverage the auth code flow with PKCE for improved resiliency, security, and UX when third-party cookies are blocked by a browser.
As the Microsoft Ignite conference gets underway, we announce the public preview of a new set of custom extension points for Microsoft Entra External ID.
This blog post outlines the importance of smooth and brand-aligned login processes for customer satisfaction and loyalty. We invite you to take an early look at work we're doing to help you make your mobile app login journeys more user-friendly and in line with your brand's identity.
In March 2023, we announced a framework called App management policy which allows admins to implement security best practices for applications in their tenant. Now, we've added a new capability that allows admins to define trusted certificate issuers for their tenant. Attempts to add an app certificate that does not meet the criteria defined in the...
In the run-up to Microsoft Ignite, we look at a new feature, released to public preview, that informs strategy and bolsters decision-making for a more intuitive and informed development process.
This blog post delves into the critical differences between public clients, which are inherently more exposed and vulnerable, and confidential clients, which operate under stringent security measures to safeguard sensitive data. You’ll discover why knowing the difference matters and learn a few best practices to help you avoid common pitfalls.
As businesses adopt multicloud strategies, the challenge of deploying, maintaining, and managing least privilege access between workloads within and across clouds is growing. We’re building a streamlined, unified solution and we want your input. Join us on this journey!
Part one of a three-part series on why we need machine identities, what the key building blocks are, what standards are available, and what gaps we need to fill.
MSAL.Browser releases a v3 with performance improvements, updated framework support, and minimal breaking changes.
