Entra π News #102 β This week in Microsoft Entra
Learn about upcoming changes to app consent policies π±β , passkey authentication method policy π, and more! π
π Hi, Merill and Joshua here with this weekβs roundup of the latest news on Microsoft Entra from around the globe π.
This edition features official Microsoft guidance on getting started with the Entra Suite, configuring Private Access for SSH, and important upcoming changes to consent policy and passkey configuration. If you have rolled out passkeys in your organization, we recommend reviewing the message center post.
The community has also been buzzing with popular posts on generating Temporary Access Passes, automating PIM role activations, and debating the merits of cloud-native endpoints.
This week, we sat down with Mark Renoden to talk about his experience implementing a PAM (Privileged Access Management) solution using Entra ID, and his findings are very insightful. Queue it up in your favorite podcast player π
Pushing Microsoft Entra to its Limits to Secure On-Prem AD
In this episode, we talk with an identity expert, ex-Microsoftie and Principal Domain Architect, Mark Renoden, about creating a modern Privileged Access Management (PAM) solution for on-premises Active Directory. Discover how to build a secure "Bastion Forest" architecture using Microsoft Entra. We talk about PIM for Groups, group write-back, phish-resiβ¦
Enjoy!
Sponsored by:
Migrate workstations without the surprise costs
The hidden costs of Windows migrations run deep. Fresh starts, unexpected downtime, app failures, and piles of IT support tickets drive up the true price of every workstation migration.
PowerSyncPro Migration Agent slashes these expenses by automating the entire process, eliminating manual effort and reducing disruptions:
β’ Preserve user profiles, apps, and settings - no Fresh Start needed.
β’ Migrate thousands of devices in minutes, not hours, with minimal downtime.
β’ Let users migrate to the cloud at their convenience.
Uncover the full cost picture. Try our cost calculator today to see how much workstation migrations are really costing your business - and how much you will save by automating.
β‘οΈ Microsoft
π Read
Getting started with the Microsoft Entra Suite β’ Kaitlin Murphy
πΊ Watch
Configure Microsoft Entra Private Access to enable SSH-based server administration β’ Margaret Garcia Fani
π£οΈ Message Center
From the communityβ¦
π Most popular posts from last week
π₯Poor manβs IGA: Generate Temporary Access Pass for joiners β’ Jan Bakker
π₯Cloud Native Endpoints: Why are You on Entra Hybrid Joined Today? β’ Shehan Perera
π₯Automating Microsoft Entra ID PIM Role Activation with PowerShell and Microsoft Graph β’ Marco Notarrigo
βοΈ Learn
π¦ Apps
Microsoft to Block Users Granting Third-Party App Access to User Sites and Files β’ Tony Redmond
Require admin consent for third-party apps accessing files and sites β’ Daniel Bradley
π Authentication
Resolving MFA-Related RDP Issues To Azure VMs β’ Michele Blum
Say Goodbye to Basic Authentication in Exchange Online: What You Need to Know β’ Tom Rolvers
π₯ User & Group Management
Automate Compromised Account Remediation in Microsoft 365 β’ Blesslin Rinu
π€ DevOps & PowerShell
Taming the 429: How we analyzed Microsoft Graph API throttling and developed a workaround β’ Toni Pohl
Updating the Entra ID Custom Banned Password List with PowerShell β’ Tony Redmond
π¦ Conditional Access
Beyond the GUI: Properly Securing Your Admin Apps with Custom Security Attributes in Entra ID β’ Beau Lawalt
How to Configure Conditional Access Reauthentication in Azure PIM β Cloud Build β’ Imran Rashid
Using custom security attributes in conditional access β’ Beau Lawalt
π Credential Management
Configure Passkey Profiles for Group-Based Passkey Restrictions β’ Daniel Bradley
Block the Creation of Client Secrets in Microsoft Entra Applications Using Graph Explorer β’ Ramya
π Reporting and Insights
Advanced Monitoring of Microsoft Entra ID Break Glass Accounts with Sentinel, Logic Apps, and MDCA β’ Sreejith Reghunathan Pillai
π₯· Security
Attacking JWT using X509 Certificates β’ Kurt Muhl
What No One Tells You About Non-Interactive Logs β’ Sapir Federovsky
π Tenant Configuration
Entra Resiliency - Plans A - E β’ John Savill
ποΈ External ID - Customers
βANDingβ Preconditions in Azure AD B2C β’ Rory Braybrook
πΊ Watch
[Entra ID] Gaps You Must Fix Now β’ Lukas Beran, Ru Campbell
Entra Suite Demo - Modernize Remote Access β’ Dirk Prinsloo
π₯ Maester
π¨π½βπ» Merillβs corner
Want to get featured on Entra.News? β Submit your content π
Want us to say nice things about your company? Sponsor entra.news π€©
Love the newsletter? Tell us πβ€οΈπ
πͺ Acknowledgement of Country
Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.