Microsoft Entra Identity Platform

A developer platform that helps protect your users and data.

Feb 2024: A look at the latest Microsoft Entra key feature releases, announcements, and updates

An overview of the latest updates in Microsoft Entra for February 2024, including updates on app filters for Conditional Access policies and an array of new Public Previews, like Microsoft Entra Internet Access for all apps. Discover how these enhancements can be integrated into your projects for optimal performance and security.

Introducing Trusted Certificate Authorities (public preview) in App management policy

In March 2023, we announced a framework called App management policy which allows admins to implement security best practices for applications in their tenant. Now, we've added a new capability that allows admins to define trusted certificate issuers for their tenant. Attempts to add an app certificate that does not meet the criteria defined in the policy will be rejected.

Public vs. confidential clients and how to avoid common security pitfalls in identity

This blog post delves into the critical differences between public clients, which are inherently more exposed and vulnerable, and confidential clients, which operate under stringent security measures to safeguard sensitive data. You’ll discover why knowing the difference matters and learn a few best practices to help you avoid common pitfalls.

Get Microsoft Entra developer news in your inbox

We're excited to announce that you can now subscribe to the Microsoft Entra Developer blog via email! By subscribing, you’ll get the latest updates on Microsoft Entra delivered straight to your inbox. And let’s be honest, who doesn’t love getting fun and exciting emails?

Using the Microsoft Authentication Library with the Windows authentication broker

One of the interesting developments in the last few years in the field of authentication is the use of authentication brokers. Authentication brokers help make your applications more secure and resilient by enabling developers to remove the need to handle refresh tokens, simplify the user authentication flow and remove any variability from it, and take advantage of more complex authentication features, like Windows Hello, conditional access, and FIDO keys.