Entra 🆔 News #107 → This week in Microsoft Entra
Learn about linkable token identifiers going GA, changes to token protection licensing and more!
Welcome to your weekly roundup of news and insights from the world of Microsoft Entra and Identity. This week, Microsoft is making significant moves to enhance security, with the General Availability of linkable token identifiers to strengthen threat detection and response. For administrators, an important change is on the horizon as browser access will soon be enabled by default for all Android users.
From the community, the most popular posts dive deep into automating PIM roles with PowerShell and upcoming changes to Access Package visibility. We're also covering the latest in AI for identity, new features in the Authenticator app, and much more.
Also, checkout this week’s Entra Chat podcast 👇
Building Entra's CA AI Agent: A Creator's Perspective
In this episode, I sit down with Jordan Dahl, a Product Manager on the Entra Conditional Access team, to discuss the newly GA'd Conditional Access Optimization Agent. Jordan shares the origin story of the agent, explaining how customer feedback about the difficulties of managing CA policies at scale led to its creation. We delve into how this AI-powered…
⚡️ Microsoft
🏆 General Availability
📺 Watch
OAuth apps in Exposure Management | Microsoft Defender for Cloud Apps (5 min) • Microsoft Security
🗣️ Message Center
From the community…
🚀 Most popular posts from last week
🥇Activate you PIM Roles with PowerShell Pt 2. • Mark Orr
🥈Microsoft Entra Access Package Visibility Is Changing • Praba
🥉The Push for Passwordless Authentication and What It Means for You • Rod Trent
📆 Upcoming Community Events
Community Event: Cloud Identity Summit (Sept 4th, 2025)
This free, on-site community event in Dortmund (Germany) focuses on the latest trends in identity management and security in Microsoft Entra. Attendees can join deep-dive sessions led by Microsoft MVPs and security researchers from across Europe and beyond.
☀️ Learn
👩✈️ AI & Copilot
Secure Smarter, Not Harder: Let AI Fix Your Conditional Access Mess with Microsoft’s CA Optimization Agent • Sreejith Reghunathan Pillai
Creating Identity for agentic AI • Brian Baldock
EntraPulse – Your AI-Powered Gateway to Microsoft Graph & Docs • Darren Robinson
📺 Microsoft Entra Conditional Access optimization agent (17 min) • Rio Hindle
🔑 Authentication
Changes Coming to Smoothen Edges in Microsoft Authenticator App • Tony Redmond
No, FIDO2 Was Not Bypassed — Just Poor Implementation • Dr. Emin Huseynov
Cloud PKI • Michael Frank
Microsoft to streamline the same-device sign-in experience for Microsoft Authenticator • Daniel Bradley
🤖 DevOps & PowerShell
Backstage for Entra ID Team • Mateusz Jendza
How to Remove Members from Microsoft 365 Groups with PowerShell • Tony Redmond
Microsoft messes up reporting on password never expires flag… twice! • Vasil Michev
Searching Entra ID users via mg-graph on non-empty values in extension attributes • Martin Rublik
🚦 Conditional Access
Microsoft Makes Token Protection Available for Entra ID P1 Licenses • Daniel Bradley
📺 Why Your Conditional Access Policies are Failing [5 Missing Pieces] (12 min) • Ru Campbell
🖥️ Devices
Fasten Hybrid Join AVD + Intune Deployment • Joey Verlinden
📺 All The Possible Ways to Manage Local Admins in Entra ID - New Updates! (8 min) • Dean Ellerby MVP
🥷 Security
Entra ID Introduces Linkable Token Identifiers for Audit Events • Tony Redmond
Planned Change Prevents Microsoft Tenant Domain Enumeration • Daniel Bradley
I just wanted to see what SSSO looks like • Sapir Federovsky
Automating Azure App Services Token Decryption • Karl Fosaaen
Part 2 — AD, Entra, and Azure Walk Into a Bar… A Security Introduction • Omri Refaeli
Why Microsoft’s New Sentinel Data Lake Actually Matters • Maxim Deweerdt
🛍️ External ID - Customers
Sign-up and sign-in with Discord using Entra External ID - Arinco • Chris Padgett
Unit testing Conditional Access (CA) with Azure AD B2C custom policies • Rory Braybrook
Using Conditional Access (CA) with Azure AD B2C custom policies • Rory Braybrook
⚒️ Toolkit
robm82/M365-Passkey-FIDO2 - PowerShell script identifies Azure AD users who do not have FIDO2 security keys registered • Robert Milner
M-21-31 Maturity Model Management App - The M-21-31 Maturity Model Management App is a comprehensive solution designed to strengthen the cybersecurity capabilities of U.S. Federal agencies • Michael Crane
👨🏽💻 Merill’s corner
Want to get featured on Entra.News? → Submit your content 😎
Want us to say nice things about your company? Sponsor entra.news 🤩
Love the newsletter? Tell us 💚❤️💜
🪃 Acknowledgement of Country
Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.