Entra 🆔 News #94 → This week in Microsoft Entra
Authenticator sign-in page updates 📱➡️🔐, SP-less auth support shifts 🛑⚙️, tune into the Entra Chat podcast with George from McDonald's 🎧💬, and discover much more! 👇
👋 Hi, Merill and Joshua here with this week’s roundup of the latest news on Microsoft Entra from around the globe 🌍.
This week, we have a heads-up about the upcoming change to the sign-in page when using Microsoft Authenticator, and Entra ID will also no longer support SP-less authentication behavior soon.
I also wrote a summary blog post for the poll I ran the other day about using Service Principals as a backup for emergency access accounts. There are some cool insights there from the community. Check it out.
By the way, make time for this week's Entra Chat podcast with George from McDonald's. It's a fantastic opportunity to hear how identity is managed at a massive scale (we're talking 2.2 million users!). Listening in and comparing his experiences to managing your own tenant, no matter the size, is a really valuable exercise and you're bound to pick up some great insights.
Sponsored by:
EasyEntra: Empower First-Level Support to Work Efficiently
Managing standard first-level user support in a hybrid environment is overly complex. To handle even basic tasks, your team needs expertise across multiple platforms like ADUC, Exchange on-premises Admin Center, M365 Admin Center, Entra Admin Center, EXO Admin Center, EXO PowerShell, and Entra Connect PowerShell.
EasyEntra eliminates this complexity and allows first-level support to work without headaches:
✅ Intuitive – The interface mimics the familiar AD Users & Computers layout.
✅ Consolidated – Manage all user settings from a single-pane-of-glass.
✅ Responsive – Preloads all properties for lightning-fast navigation of settings.
✅ Reduces junior IT training – Onboard junior IT staff in minutes.
✅ Protects senior IT staff – Prevent first-level support tickets from escalating.
⚡️ Microsoft
🏆 General Availability
🏁 Upcoming changes
Service principal required for Microsoft Entra ID • Shirling Xu
📖 Read
Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative • Charlie Bell
🗣️ Message Center
25 Apr - MC1062453 - Changes to how users install Microsoft 365 apps from the Microsoft 365 Copilot app
📆 Upcoming Events
Connect with Microsoft Entra at upcoming events • Irina Nechaeva
From the community…
🚀 Most popular posts from last week
🥇 Entra User at High Risk – leaked credentials • Christian Decker
🥈 Practicalities of Using Passkeys with Entra ID: What You Need to Know • Emin Huseynov
🥉 Deploy Conditional Access Policies with GitHub Actions • Marcel Nguyen
Sponsored by:
You’re spending too much on workstation migrations
Every workstation migration comes with hidden costs. IT labour, unexpected downtime, app failures, and security risks are bleeding your IT budget dry. Just a single migration can cost you hundreds per device.
PowerSyncPro Migration Agent slashes these expenses by automating the entire process, eliminating manual effort and reducing disruptions.
• Keep user profiles, settings, and applications intact - no reconfiguration needed.
• Complete migrations in minutes, not hours, with minimal downtime.
• Go Entra-Joined seamlessly, with user-initiated migrations, at a convenient time for them.
Want to see the numbers for yourself? Use our cost calculator today to reveal how much workstation migrations are really costing you - and how much you will save by automating.
☀️ Learn
👩✈️ AI & Copilot
The New MCP Authorization Specification • Den Delimarsky
Secure Remote MCP Servers With Entra ID And Azure API Management • Den Delimarsky
The Azure MCP Server • Brian Veldman
🧰 Workload ID
Stop Storing Secrets/Keys in Your Apps: Switch to Azure Managed Identity • Tracy Yu
Set Up Microsoft Entra Application Management Policies Using Graph API • Karthi
⛑️ ID Protection
Leaked Credentials Flag Entra ID Users as High Risk – What You Need to Know • Rudy Mens
An Account Blocked by MACE Credential Revocation is A Good Way to Start a Saturday Morning • Tony Redmond
👮♂️ ID Governance
A Way to Manage On-Prem AD Group Memberships Using Entra ID Governance • Christian Frohn
🔑 Authentication
Customising Microsoft Entra's Sign-In Page 🖌️ • Chris Greenacre
🚦 Conditional Access
Report Conditional Access Blocked Sign-in Metrics with PowerShell • Daniel Bradley
🏙️ External ID - Guests & Multi-Tenant Organizations
B2B tenant collaborations quirks • Jay Kerai
🥷 Security
Phishing despite FIDO, leveraging a novel technique based on the Device Code Flow • Dennis Kniep
Despite Recent Security Hardening, Entra ID Synchronization Feature Remains Open for Abuse • Clément Notin
📒 Tenant Configuration
Securing your new Azure Tenant • James Agombar
⚒️ Toolkit
LicenseLens - M365 License Reporting & Monitoring • Lee Dowdells
dougsbaker/CA-Export • Douglas Baker
🎙️ Podcasts
On-Premises Pain, Copilot Curiosity, and a Glimpse into Global Secure Access: Practical 365 Podcast S04E38 • Steve Goodman, Paul Robichaux
📺 Watch
Simplify MFA Compliance with FIDO2 Security Keys • Michael Epping, David Maples, John Asan
BREAKING: Microsoft 365 Developer Program Changes - What You Need to Know + My Honest Take • Andrew Connell
The Entra ID Leaked Credentials Mishap • TWiT Tech Podcast Network
Analyze Your Conditional Access Policies (and Find Hidden Gaps) • Doug Does Tech
Privileged Access Management with Conditional Access and Compliant Devices • Dean Ellerby
Client Credentials Flow • Duende Software
Blocking user consent to Microsoft Entra ID enterprise apps | Cybersecurity World • Cybersecurity World
🔥 Maester
👨🏽💻 Merill’s corner
Want to get featured on Entra.News? → Submit your content 😎
Want us to say nice things about your company? Sponsor entra.news 🤩
🪃 Acknowledgement of Country
Entra.News is created on Wurundjeri land and acknowledges the traditional owners of country throughout Australia, recognising their continuing connection to land, water and community. We pay our respect to them and their cultures and to elders both past and present.