👋 Hi, Merill and Joshua here with this week’s roundup of the latest news on Microsoft Entra from around the globe 🌍.

This week's highlights:

• Released the second episode of our Entra.Chat podcast featuring Kuba Gretzky, creator of the popular Evilginx phishing toolkit for red teamers.

• I launched Lokka.dev – a free and open source MCP server for Microsoft Graph. Check it out! Will there be a little less PowerShell in our life with tools like this?

⚠️ Important Reminder: Entra Connect Sync must be upgraded to the versions listed below before April 7. Without this upgrade, you won't be able to use connect sync wizard capabilities.

Note: Your sync service will continue running as usual, and changes will still sync to Entra

See Hardening update to Microsoft Entra Connect Sync from April 7, 2025

Catch the latest Entra.Chat podcast featuring Kuba Gretzky 👇

Sponsor:

Get Expert Answers on Entra ID App Security! 🔐

Struggling with security and governance of Application Registrations, Enterprise Apps, or Entra ID tenant defaults? Join the AppGov Score Forum 🔗 community.appgovscore.com - your go-to space for expert insights, MVP discussions, and real-world solutions.

✅ Ask questions & get expert advice
✅ Discuss best practices with IT pros
✅ Strengthen your Entra ID security

🔥 Discussions in the forum:
❓ “What is the difference between an Application Registration and Enterprise Application?”
❓ “Parameters to identify high-risk app registrations?”

Plus, check out our latest blog posts on AppGovScore.com for deeper insights into governing Entra ID applications! Our latest topic - addressing the impact of the Azure AD Graph API deprecation on your applications. Take control of your Entra ID environment! 🚀

Join the Community Forum

⚡️ Microsoft

🏆 General Availability

• Announcing the General Availability of OpenID Connect external identity provider support for Microsoft Entra External ID • Bora Ozbayburtlu

• Introducing Copilot in the Microsoft 365 admin centers • Zachary-Cavanell

📺 Watch

• A Copilot designed for admins - Introducing Copilot in the Microsoft 365 admin centers (9 min) • Microsoft Mechanics

• Find users with specific attributes using a simple prompt. Save time on common admin tasks. (1 min) • Microsoft Mechanics

• Securing B2B Collaboration with Microsoft Entra ID (48 min) • Jef Bley

• Managing devices w/Intune & implementing conditional access | Protect tenants & isolate prod systems (18 min) • Clay Taylor, Shehzad Khoja, Michael Howard, Sarah Young

From the community…

🚀 Most popular posts from last week

• Entra tenant policy to forbid long-lived secrets for Applications and Service Principals • Peter Lorenzen

• Entra: Integrate Passkey registration with your Conditional Access Framework • Will Francillette

• You shall not pass(key)! • Jan Bakker

☀️ Learn

👮‍♂️ ID Governance

• Controlling Access to Microsoft 365 for Entra ID Apps • Tony Redmond

📦 Apps

• Migrating from OKTA to Microsoft Entra can pay for the entire XDR Suite • Joe Stocker

• From the field: Three gotchas when migrating applications from AD FS to Entra • Sander Berkouwer

🔑 Authentication

• Essential Eight Compliance Assistant - A Free GPT that Makes Your Solution Architecture Assessment Easy! • Hassan Syed

• How to authenticate with Windows Hello for Business or FIDO security key in RDP session ? • Morten Knudsen

• Mandatory MFA for Admins and more (Entra, Intune, Azure) • Stefan Wey

• MS MFA Mandate : Essential Insights and Strategies • Ankit Gupta

🤖 Dev & DevOps

• Entra or Microsoft Graph PowerShell • Stefan Wey

• Dynamics 365 F&O IAM PowerShell Module • Darren Robinson

• Acquiring Tokens For Non-Graph APIs In Azure Functions • Den Delimarsky

🚦 Conditional Access

• Entra ID – Get conditional access policy impact • Benoit Hamet

🔐 Credential Management

• Disabling Removable Storage in Group Policy Does Not Affect FIDO2 Keys • Dr. Emin Huseynov

• EntraFIDOFinder now with over 50 new keys! • Clayton Tyger

• Entra Password Protection Smarter Security, Fewer Pop-Tarts • Dustin Gullett

🖥️ Devices

• Using a QR code to easily sign in to apps on shared Android devices • Peter van der Woude

• How to enable QR Code Authentication Method in Microsoft 365 • Lokesh

• Extending Cloud Native PC Wireless Authentication to Cloud RADIUS • Jon Towles

📈 Reporting and Insights

• Create a free Enterprise App Permissions report in Microsoft Entra • Daniel Bradley

• Future-Proofing Microsoft Entra Logs : Practical Azure Storage • Ankit Gupta

🥷 Security

• Are Attackers "Passing Through" Your Azure App Proxy? • Scott White

• Mitigating AiTM Token Theft in 2025: Why It’s Time to Adopt Passkeys • Joe Stocker

• Break the glass – Not your organization! • Per-Torben Sørensen

• Protecting Actions in Entra ID • Brian Reid

• Securing Microsoft Business Premium Part 03: Authorization Best Practices from Zero Trust to Complete Access Control • Sebastian Flæng Markdanner

♻️ Sync

• Entra ID – Ensure you are running at least a specific version of Entra ID Connect before April 7 • Benoit Hamet

• MSOL decommisioning and emergency Entra ID federated domain trust repair • Martin Rublik

⚒️ Toolkit

• AllwaysHyPe/graph-automation - Script to automate user photo updates in Microsoft Entra ID (Azure AD) by finding matching photos in a local directory • Hailey Phillips

  • Azure Arc and Azure Automation • Hailey Phillips

🎙️ Podcasts

• WPNinjasNL Podcast: Passkeys & Entra ID Authentication – The Future of Secure Access (33 min) • Frans Oudendorp, Peter Daalmans, Jan Bakker, Sander Berkouwer

📺 Watch

• Smart Lockouts in Microsoft Entra ID | Cybersecurity World (10 min) • Cybersecurity World

• Application Inventory Management | Use these templates (21 min) • Nick Ross

🔥 Maester

👨🏽‍💻 Merill’s corner

Watch the full demo 👇

• Want to get featured on Entra.News? → Submit your content 😎

• Want us to say nice things about your company? Sponsor entra.news 🤩

🪃 Acknowledgement of Country

Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. I pay my respect to them and their cultures and to elders both past and present.