Entra ๐ News #88 โ This week in Microsoft Entra
Learn about our new podcast Entra.Chat ๐๏ธ๐ง, Conditional Access policy impact preview ๐ฎ๐, Microsoft Entra Health alerts ๐จ๐ป, External ID deployment guide ๐๐ and more! โจ๐
Hi, Merill and Joshua here with this weekโs roundup of the latest news on Microsoft Entra from around the globe ๐.
This weekโs newsletter is packed with so much great content your bookmarks are going to get a real working.
Plus quick reminder that Entra.News now has its very own weekly podcast Entra.Chat! Subscribe today on your favorite podcast app (Apple Podcast, Spotify, YouTube, Overcast, PocketCast) and join us for fascinating chats on Entra with an amazing lineup of guests.
Enjoy!
Sponsored by:
EasyEntra: Consolidated Hybrid Microsoft 365 Management
Managing Microsoft 365 and hybrid AD doesnโt have to be slow and complex. EasyEntra streamlines user administration into a single, intuitive console and enables first-level IT support to resolve tickets quickly, consistently, and without escalating to senior IT. With EasyEntra, you can save time, reduce complexity, and improve service delivery.
โ Unified Hybrid Management โ Seamlessly manage Entra ID and on-prem AD in one console.
โ Fast & Responsive UI โ Perform user admin tasks at the speed of your thought.
โ User Lifecycle Automation โ Streamline user onboarding and offboarding with consistent automation.
โ Freemium Version โ Manage any number of small tenants (< 25 licensed users) side-by-side completely free.
โ No Infrastructure Changes โ Install and configure in less than one minute.
โก๏ธ Microsoft
๐ฅ Public Preview
Introducing Microsoft Entra Health alerts: An enhancement to tenant health monitoring โข Shobhit Sahay
Conditional Access - Policy Impact Preview โข Microsoft Learn
๐ Read
Hardening update to Microsoft Entra Connect Sync from April 7, 2025 โข Microsoft Learn
Microsoft Entra External ID deployment guide โข Microsoft Learn
๐บ Watch
Configure auto-assignment policies in Microsoft Entra ID Governance using Entitlement Management (4 min) โข Jorge Lopez
Implementing managed identities | Protect identities and secrets (22 min) โข Sarah Young, Nick Wryter, Michael Howard
Secure access to internet resources with Microsoft Entra Suite (44 min) โข Amelie Darchicourt, Pramiti Bhatnagar
From the communityโฆ
๐ Most popular posts from last week
Create a Free Interactive License Usage Report for Microsoft 365 โข Daniel Bradley
Passkeys for macOS and addressing the phishing resistant authentication registration loop โข Rahul Jindal
Evilginx loves Temporary Access Passes too โข Jan Bakker
Sponsored by:
How much is Autopilot FreshStart really costing you?
Manual workstation migrations can drain your time and budget. Fresh-starting devices, IT tickets, and user downtime all add hidden costs. But what if you could cut migration costs by over half?
PowerSyncPro Migration Agent automates the entire process, eliminating manual effort and reducing disruptions.
Keep user profiles, settings, and applications intact - no reconfiguration needed. Complete migrations in minutes, not hours, with minimal downtime. Go Entra-Joined seamlessly, with user initiated migrations, at a convenient time for them.
Check how much you can save with PowerSyncPro Migration Agent today.
โ๏ธ Learn
๐ฎโโ๏ธ ID Governance
Lifecycle Workflows and Custom Extensions - step-by-step-guide โข Klaus Bierschenk
๐ Private Access & Internet Access (GSA)
Quick look โ Entra ID Global Secure Access โ Microsoft Traffic Profile โข Mohammed Sajid
๐ฆ Apps
Entra tenant policy to forbid long-lived secrets for Applications and Service Principals โข Peter Lorenzen
Using Microsoft Entra ID To Authenticate With Model Context Protocol Servers โข Den Delimarsky
๐ Authentication
Playing with Time Drift Tolerances in Entra ID: A Hands-On Experiment โข Dr. Emin Huseynov
QR Code Authentication for Front Line Workers โ Setting Security Controls From the Get Go! โข Shehan Perera
You shall not pass(key)! โข Jan Bakker
Why Are Some FIDO2 Credentials Visible as Passkeys and Others Not? โข Dr. Emin Huseynov
Authentication best practices for Teams phones โข Microsoft Learn
๐ฅ User & Group Management
๐ค DevOps & PowerShell
Easily add login to your Azure app with Bicep โข Pamela Fox
Automate Microsoft Graph PowerShell Scripts for Unattended Execution โข Thiraviam
Authenticate to Graph in Azure Functions With Managed Identites (Part 2) โข Ben Reader
SharePoint Online PowerShell Module Gets Modern Authentication โข Tony Redmond
๐ฆ Conditional Access
Entra: Integrate Passkey registration with your Conditional Access Framework โข Will Francillette
Managed Conditional Access Policy โข Stefan Wey
๐ Credential Management
๐ฅ๏ธ Devices
Windows LAPS and Legacy LAPS โ Key Differences โข Andreas Hartig
Reporting on group membership for Entra ID devices (including assigned licenses) โข Vasil Michev
Enforcing Tenant Restrictions v2 on Windows Devices โ Strengthening Microsoft Entra Security โข Sreejith Reghunathan Pillai
๐๏ธ External ID - Guests & Multi-Tenant Organizations
ADSS TSync vs Entra Cross-Tenant Sync: A Comprehensive Comparison โข Sankara Narayanan
Entra ID Guest Expiration Automation โข Chris Greenacre
๐ Reporting and Insights
Create a free interactive Entra Authentication methods report โข Daniel Bradley
๐ฅท Security
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD โข Cymulate Research Lab
Your MFA Is No Match for Sneaky2FA โข eSentire Threat Response
Adversarial lateral motion in Azure PaaS: are we prepared? โข Christophe Parisel
๐๏ธ External ID - Customers
Connecting Entra External ID as an SP to Azure AD B2C via SAML โข Rory Braybrook
โ๏ธ Toolkit
Monitor Your Break Glass Account CA Policy Exclusions: Introducing Invoke-CAIQBreakGlassAssessment; Another ConditionalAccessIQ Tool โข Gabriel Delaney
glueckkanja/MyWorkID - MyWorkID enables secure self-service solutions for handling compromised accounts, generating Temporary Access Passes (TAP), resetting passwords, and verifying user identities.
๐๏ธ Podcasts
Maester, Intro to Zero Trust & Conditional Access Policies & Oversharing Controls in M365 - Cloudy with a Chance of Insights (43 min) โข Richard Hogan, David Rowley, Cyrus Irandoust
Securing Microsoft Entra - Ctrl+Alt+Azure โข Tobias Zimmergren, Jussi Roine
Chronicles of a Rogue Device - Out of Band โข Shehan Perera, Anthony 'Anto' Porter, Andrew 'Abe' O'Young
๐บ Watch
UnOAuthorized: A Technique to Privilege Escalation to Global Administrator- Black Hat (28 min) โข Eric Woodruff
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD (5 min) โข Ilan Kalendarov, Elad Beber, Avigayil Stein
Microsoft Entra ID: Gateway to Supply Chain Attacks on a Global Scale - Disobey (41 min) โข Martin Haller
Exploiting Token Based Authentication - Disobey (45 min) โข Dr Nestori Syynimaa
Staying Sneaky in Microsoft Azure - Disobey (28 min) โข Christian Philipov
AME 2024 session - You can't do Zero Trust with AD FS (48 min) โข Sander Berkouwer, Raymond Comvalius
Why Microsoft 365 Business Premium is a Game Changer in 2025? (13 min) โข Peter Rising
Every Small Business MUST Know These E5 Security Features Now! (11 min) โข Jonathan Edwards
Difference between Microsoft Entra ID Enterprise Apps and App Registrations | Cybersecurity World (12 min) โข Cybersecurity World
Block User Consent in ChatGPT & Third-Party Apps using Entra ID (3 min) โข Rio Hindle
Secure Application Management | Getting Started (9 min) โข Nick Ross
Azure App Registration Simple Explanation and Demo with PowerShell (33 min) โข Mike in the Cloud
Migrating from MIM Sync: User Provisioning with Microsoft Entra ID (35 min) โข Oxford Computer Group US
๐ฅ Maester
Maester Adds Support for GitLab โข Stefan Wey
๐จ๐ฝโ๐ป Merillโs corner
Want to get featured on Entra.News? โ Submit your content ๐
Want us to say nice things about your company? Sponsor entra.news ๐คฉ
๐ช Acknowledgement of Country
Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. I pay my respect to them and their cultures and to elders both past and present.