👋 Hi, Merill and Joshua here with this week’s roundup of the latest news on Microsoft Entra from around the globe 🌍.

Well folks, there’s a lot happening in the Entra world, we have over seven features becoming GA, a bunch of new public preview features, and an upcoming change to enforce CA policies during WHfB registration. Check them all out below.

BTW, I caught up with some Microsoft Entra MVPs to get their take on the big updates—queue it up on Spotify, Apple Podcasts, or watch on YouTube 👇

Enjoy!

Sponsored by:

Announcing the Month of Azure Red Teaming 2026

Altered Security Month of Azure Red Teaming is an initiative to raise awareness and spark discussion around one of the most critical and in-demand skillsets: Azure Red Teaming. Throughout the month we want to keep the community engaged to help infosec professionals and students understand, practice and analyze attack vectors in Azure.

What to expect during the month:

- Four Free Azure Red Team Webinars with hands-on labs (April 10th, 17th, 24th and 30th).

- Flat 20% OFF on the accoladed Azure Red Team certifications: CARTP and CARTE.

- Free labs on Altered Security’s Red Labs Platform

Get ready for a month full of free labs, webinars, blog posts, giveaways and discounts!

Know More

⚡️ Microsoft

🏆 General Availability

• Microsoft Entra expands SCIM support with new SCIM 2.0 APIs for identity lifecycle operations • Joseph Dadzie

• Microsoft Single Sign-On for Linux support for authenticating with Phish-Resistant MFA credentials

• New M365 group creation experience in My Groups

• Microsoft Entra Connect Health now enforces TLS 1.2

• General Availability: Social Identity Providers for Native Authentication via Browser‑Delegated Flows (web-view) in Microsoft Entra External ID • Sasha Mars

• Just‑in‑Time Password Migration in Microsoft Entra External ID

• Enabling Email and SMS OTP MFA in Entra External ID Native Authentication

🔥 Public Preview

• Phased Rollout with the Conditional Access Agent

• Passkey Adoption Campaigns with the Conditional Access Optimization Agent

• Microsoft Entra hybrid join using Microsoft Entra Kerberos

📖 Read

• Plan for change – Conditional Access enforcement during credential registration for Windows Hello for Business and macOS Platform SSO

• Troubleshoot the Global Secure Access mobile client with Health check utility • Microsoft Learn

📺 Watch

• Developer Tools for Agent ID: SDKs, CLIs & Samples (37 min) • Kyle Marsh

• Self‑Service Account Recovery with Microsoft Entra (2 min) • Microsoft Security

🗣️ Message Center

• MC1260708 - Microsoft Entra ID: Improved readability for Authentication Methods Policy Update audit logs

From the community…

🚀 Most popular posts from last week

• 🥇Don’t let Entra ID Protection miss your next breach! • Nicola Suter

• 🥈Conditional Access: CA Analyzer Product Updates • Jon Hope

• 🥉How to Automate Inactive Guest User Removal in Microsoft 365 Using Power Automate • Dhinesh

Sponsored by:

Uncover Entra App Risk in Minutes

Most Entra ID tenants contain hundreds of applications with unclear ownership, excessive OAuth permissions, and long-lived secrets. These gaps are difficult to identify using native tools alone, especially at scale.

ENow’s AppGov Score provides a read-only assessment of your Entra environment using 24 Microsoft-aligned checks. It surfaces risky consent grants, privileged service principals, expired credentials, and ownerless apps, then translates findings into a clear, defensible risk score.

Instead of manual reviews or scripting, administrators gain immediate visibility into application sprawl and permission exposure, making it easier to prioritize remediation and improve governance across Microsoft 365.

Get Your App Risk Score

☀️ Learn

👩‍✈️ AI & Copilot

• Your Copilot Studio agent is acting as someone, do you know who? • Derk van der Woude

• 🎙️ Governing the Ungoverned: Agent 365 and Entra Agent ID • Jussi Roine & Tobias Zimmergren

🧰 Workload ID

• 🔐 SPIFFE & SPIRE: The Workload Identity Standard Quietly Powering Zero Trust • Sameer Bhanushali

👮‍♂️ ID Governance

• How to Extend Entra Provisioning to Apps Without SCIM or API • Nick Hunt

• Managing Shared Mailbox Access with Entra ID Governance • Christian Frohn

• 📺 Access Reviews Reimagined: What’s New in Microsoft Entra (6 min) • Peter Rising

🌐 Private Access & Internet Access (GSA)

• 🛠️ GSA Private Access Sizing Planner • Thomas Detzner

📦 Apps

• A Token of Appreciation - JWTs & Microsoft Authentication for Security Research • Tom Rolvers

🫆 Authentication

• Seamless Access: Using QR Code Sign‑In on Android Enterprise Shared Devices with Microsoft Entra • Nicky De Westelinck

👥 User & Group Management

• How to Configure Cross-Tenant Group Synchronization in Microsoft Entra ID • Karthi

• Ownerless Group Policy finally supported by the Graph API • Vasil Michev

🚦 Conditional Access

• Conditional Access Policies are the Best Way to Block Weekend Access to Microsoft 365 • Tony Redmond

• Hidden Gem in Microsoft Entra Conditional Access: Authentication context • Henrik Piecha

🖥️ Devices

• Microsoft Entra Hybrid Join Using Entra Kerberos – Step-by-Step Guide Without Sync Dependency • Sreejith Reghunathan Pillai

🏙️ External ID - Guests & Multi-Tenant Organizations

• 📺 Entra ID - Guest User Governance – Licensing Made Easy (2 min) • Julian Rasmussen MVP

📈 Reporting and Insights

• How to Report Entra ID Group Insights • Tony Redmond

🥷 Security

• Abusing Overly Permissive Roles in Azure File Sync • Christian Bortone

• Common Entra ID Security Assessment Findings – Part 2: Privileged Unprotected Groups • Christian Feuchter

• 🛠️ GoXDR - KQL Query Library • Göksel Atakan

♻️ Sync

• Hard Match & Sync Hijacking! The Part Everyone Skips Over • Moe Kinani

📒 Tenant Configuration

• Entra ID Backup and Recovery • Julian Rasmussen

• Introduction to Microsoft Tenant Governance part 1: basics and establishing relationships • Vasil Michev

• Introduction to Microsoft Tenant Governance part 2: tenant discovery and creation • Vasil Michev

• Microsoft Entra Backup and Recovery: Prerequisites, Backup, and Restore in Detail • Oliver Müller

• Tenant governance • Michael Frank

• 📺 Entra ID Free vs Premium in 2026 - Is Premium Worth It? (22 min) • Andy Malone

🔥 Maester

• Azure DevOps tests for Maester • Sebastian Claesson

• Want to get featured on Entra.News? → Submit your content 😎

• Want us to say nice things about your company? Sponsor entra.news 🤩

• Love the newsletter? Tell us 💚❤️💜

🪃 Acknowledgement of Country

Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.