Entra 🆔 News #153 → This week in Microsoft Entra
Learn about Microsoft Entra ID changes affecting Custom controls, credential registration, and self-service password reset (SSPR) enforcement and more
Hi, Merill and Joshua here with this week’s roundup of the latest Microsoft Entra news from around the globe 🌍
We’ve got some great updates this week! PIM has some cool improvements landing, and there are two important changes to be aware of: Conditional Access will now be enforced consistently during credential registration, and SSPR will require explicitly registered authentication methods going forward.
I also released Lokka 2.0 check out the video below for a full walkthrough.
On this week’s Entra Chat, we had a very special guest: Nikhil Boreddy, Group Engineering Manager on the Entra team. He shared some fascinating insights into securing AI agents in Entra — well worth a listen! 👇
Enjoy!
Sponsored by:
Would you bet your reputation on your current Microsoft 365 security posture?
Sure, you’ve checked Purview. Maybe tightened Conditional Access. We all do that.
But it’s usually the quiet stuff that bites... permissions that expanded, policies that drifted, exceptions nobody revisited.
You could assume it’s fine.
Or you could run the Microsoft 365 Security Posture Check.
It’s free.
It runs locally.
And no, it doesn’t send your tenant data back to us.
We’ll even help you set it up.
⚡️ Microsoft
🏆 General Availability
📺 Agent 365 | Identity & Access Controls in Entra • Vince Smith
🔥 Public Preview
Configure custom extensions for Privileged Identity Management role activation (Preview)
Tools for Azure AD B2C migration now available • Namita Singh
📖 Read
Microsoft Entra ID security updates: What organizations need to do now • Swaroop Krishnamurthy
📺 Watch
Sponsored by:
Webinar: Tame Credential Chaos in Microsoft Entra ID
Think your Microsoft Entra ID app credentials are under control? Expired client secrets and certificates often prove otherwise, breaking SSO at the worst possible moment. Meanwhile, long-lived and forgotten credentials can quietly linger in your tenant, creating unnecessary security and governance risks.
Join Microsoft MVPs Alistair Pugin and Nicolas Blank on June 24th as they dig into this underestimated area of Entra ID governance: application credential management. You’ll learn:
How to uncover expired, expiring, and risky credentials
How to understand their impact on business continuity
How to apply practical governance strategies, including the shift to Managed Identities.
Plus, get access to resources that help you quickly identify and remove risks. Register today!
From the community…
🚀 Most popular posts from last week
🥇Stop Applying Sign-In Frequency to All Users. Use Authentication Contexts for Step-Up MFA • Rawson Wade
🥈The Privileged Roles Nobody Talks About • Carlos Perez
🥉System-Preferred Authentication is Coming to the First-Factor Login Screen • Daniel Bradley
☀️ Learn
👩✈️ AI & Copilot
Entra Agent ID from a Security Perspective • Christian Feuchter
🧰 Workload ID
Workload Identities: The New Attack Surface in M365 • Karthi
Jaliya’s Blog: Connecting to Azure DocumentDB (with MongoDB compatibility) using Microsoft Entra ID Managed Identity • Jaliya Udagedara
🛠️ Managed Identity Permission Manager v1.1.0.5 is here! • Michael Morten Sonne
👮♂️ ID Governance
Stop wasting time and use Custom Extensions for PIM approvals • Daniel Bradley
Authentication
Passkeys: Security Only Works If People Use It • Jonathan Hope
SSPR Verification Requires Registered Authentication Methods • Shanchana
I.D.E.A #004 – MFA, you say? • Per-Torben Sorensen
📺 Entra Passkey Registration Campaign • John Savill’s Technical Training
📺 Nobody Registers Passkeys... Until You Do This | Entra ID Registration Campaigns • Azure Brother
👥 User & Group Management
Applying Sensitivity Labels to Groups In Entra • Colby Pryor
🤖 DevOps & PowerShell
Find Inactive Accounts with PowerShell • Tony Redmond
🖥️ Devices
Microsoft Entra - Soft Delete Devices (Preview) • Flavio Meyer
Secure Device Registration in Microsoft Entra and Microsoft Intune • Oliver Mueller
Detecting device code phishing attacks in Azure • Roni Hassidim
🏙️ External ID - Guests & Multi-Tenant Organizations
How to Stop Guests From Inviting More Guests in Microsoft Entra • Daniel Bradley
Entra – Do not delete your cross-tenant synced group before you do this • Benoit HAMET
🥷 Security
Entra Agent ID: The blueprint blast radius • Katie Knowles
🛠️ GitHub - ar0x4/tunnel-vision-toolkit • Arshia Reisi
📒 Tenant Configuration
Microsoft 365 Business Premium - Day 1 • Keith Doolan
📺 5 Microsoft Entra ID Updates You Need to Know – June 2026 • Andy Malone
👨🏽💻 Merill’s corner
Want to get featured on Entra.News? → Submit your content 😎
Want us to say nice things about your company? Sponsor entra.news 🤩
Love the newsletter? Tell us 💚❤️💜
🪃 Acknowledgement of Country
Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.