👋 Hey friends, Merill and Joshua here, bringing you this week’s Entra news from every corner of the globe 🌍

This week’s got a bit of everything: deadlines, deep dives, PowerShell magic, and don’t miss the Practitioner’s Playbook - your Entra Suite masterclass from Ramiro, Thomas, Martin, and yours truly.

PS. On this week’s Entra Chat I sat down with Dirk-jan Mollema, the legendary researcher behind one of Entra’s craziest exploits. We unpack the story, the chaos, and the mindset that led to it’s discovery.

I found a bug that could hack ANY Microsoft 365 tenant - Here's what happened

Merill Fernando

·

Oct 24

Read full story

Enjoy!

Sponsored by:

The identity sync & workstation migration solution

PowerSyncPro Migration Agent easily migrates Windows workstations between multiple AD and Microsoft 365 environments.

Migration Agent Features:
- Fast workstation migration across AD, Entra ID & M365
- Preserves user profiles, settings & data
- Reconfigures Outlook, Teams, OneDrive & more
- Runs as a system service, no local admin needed
- Supports self-service and scheduled batch migrations

PowerSyncPro DirSync offers user-friendly directory synchronisation between Microsoft 365 tenants and Active Directories.

Chat with us at Ignite booth #5431

⚡️ Microsoft

📖 Read

• 11 days remaining: Support for Microsoft Entra Permissions Management ends November 1, 2025 • Joseph Dadzie

📺 Watch

• Security Copilot Access Review Agent in Microsoft Entra (3 min) • Microsoft Security

• App Governance in Action: Preventing OAuth Exploits in Salesforce and Beyond (58 min) • Greg Wiselkar, Ronen Refaeli

• Practitioner’s Playbook for Microsoft Entra Suite in Action • Ramiro Calderon, Thomas Detzner, Martin Coetzer, Merill Fernando

🗣️ Message Center

• 24 Oct - MC1179154 - Microsoft Authenticator app: Upcoming changes to jailbreak and root detection

• 20 Oct - MC1097225 - Entra ID: Upcoming changes to support passkey profiles in the authentication methods policy (preview)

From the community…

🚀 Most popular posts from last week

• 🥇Dashboard of Windows authentication methods usage (WHfB vs password) • Damien Van Robaeys

• 🥈Mastering Certificate Rotation in Entra ID • Tim Groothuis

• 🥉Tackling Expiring Entra ID Client Secrets And SAML Certificates • Flavio Meyer

Sponsored by:

“EasyEntra Has Transformed Our Daily IT Operations”

If onboarding a hybrid user takes 20 minutes and senior tech keeps getting dragged into first-line support, perhaps the problem is not your support team. It’s their tools.
Unlock a new level of IT efficiency for your entire organization.
EasyEntra streamlines your AD + M365 management by:

✅ Automating onboarding and offboarding.
✅ Consolidating management of users, mailboxes, and licenses.
✅ Stopping escalations of (what should be) simple helpdesk tickets.

Trusted by organizations worldwide:
“One of the best products I’ve used” – Mirick Law, US
“It feels almost like a revolution” – Arjeplog Municipality, SE
“This is the best software ever” – Core Healthcare, US

No infrastructure changes. No security changes. One-minute installation.

Free 30-Day Trial

☀️ Learn

👩‍✈️ AI & Copilot

• Why You Should Start Using Microsoft Learn MCP Today • Brian Veldman

🧰 Workload ID

• A public bug report for Entra ID application policies • Jan Bakker

• Secretless cross-tenant dataverse access • Luise Freese

👮‍♂️ ID Governance

• Identity and Access Management with Microsoft Entra, Part III: SuccessFactors and Role Provisioning • Martin Raepple

• Enhance Identity Security with the Microsoft Entra Suite Workshop • Shanchana

🌐 Private Access & Internet Access (GSA)

• Automating Web Application Creation in Global Secure Access Using PowerShell • Christian Frohn

📦 Apps

• Allowing Users to Add Enterprise Apps to Entra ID is a Bad Idea • Tony Redmond

• Custom attributes in entra id decision tree • David Lundell

• How to Find All Gallery Applications in Microsoft Entra • Daniel Bradley

• How to Hide Enterprise Apps from Entra with Non-privileged Access • Daniel Bradley

🔑 Authentication

• Enable Passwordless Authentication for Hybrid Domain with Microsoft Entra Kerberos • Karthi

• Entra ID Passkey Settings Get Important Change in Nov 2025 • Tony Redmond

• Entra auth methods you’re better off without • Arvind Suthar

• Physical Security Cards: Phish-Resistant Authentication • Ewelina Paczkowska

• 📺 Stop Using SMS for MFA – Do This Instead! (15 min) • Jonathan Edwards

🤖 DevOps & PowerShell

• Updating the Entra ID Password Protection Policy with the Microsoft Graph PowerShell SDK • Tony Redmond

• Updating AllowToAddGuests • Rakhesh Sasidharan

• How to Install Microsoft Graph PowerShell module » Prajwal Desai • Prajwal Desai

• Identify Device state in EntraID/Defender with PowerShell • edgarus

🚦 Conditional Access

• How to Test Microsoft Entra Conditional Access Policies Safely with the What If Tool • Mark Oldham

• Mastering Microsoft Entra Authentication Contexts - Part 3: Advanced Data Protection • Sebastian Flæng Markdanner

🔐 Credential Management

• 📺 Updates to Passwordless Authentication in Microsoft Entra (2 min)• Cyrus Irandoust

🖥️ Devices

• Balancing Control and Convenience: Preventing Edge Password Sync on Unmanaged Devices - Modern Workplace Blog • Kenneth

• Fixing Existing Office 365 Mobile MDM enrollments • Gannon Novak

• HP OneAgent Update Broke Entra Trust on HP AI Devices • Rudy Ooms

• 📺 Microsoft Just Gave AVD Admins Exactly What They Asked For! • Azure Academy

🥷 Security

• CoPhish: Using Microsoft Copilot Studio as a wrapper for OAuth phishing • Katie Knowles

• Detecting Password-Spraying in Entra ID Using a Honeypot Account • Sean Metcalf

• How Azure CLI handles your tokens and what you might be ignoring • Luise Freese

• The Invisible Enemy: Unmasking Microsoft 365’s Logging Blind Spots • Abstract Security

• How to Secure Admin Accounts in Hybrid Environment • Kavya

• PowerShell Script: Automated Have I Been Pwned Breach Checks for Entra ID Groups • Martin Bengtsson

• SC-300: Implementing Microsoft Identity and Access Administration • Jon Hope

♻️ Sync

• Disable Entra Connect Seamless SSO – Step-by-Step Guide • Oliver Müller

📒 Tenant Configuration

• App Administrator role - Reduce Tenant Wide Assignments! • Jay Kerai

• Entra Id Defense in Depth for your Most Privileged Roles • Gabriel Delaney

🔥 Maester

👨🏽‍💻 Merill’s corner

• Want to get featured on Entra.News? → Submit your content 😎

• Want us to say nice things about your company? Sponsor entra.news 🤩

• Love the newsletter? Tell us 💚❤️💜

🪃 Acknowledgement of Country

Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.