Check out 𝐄𝐧𝐭𝐫𝐚𝐃𝐨𝐜𝐬𝐓𝐫𝐚𝐜𝐤𝐞𝐫 to stay always up to date with everything Microsoft Entra > . 𝐓𝐡𝐢𝐬 𝐢𝐬 𝐝𝐞𝐟𝐢𝐧𝐢𝐭𝐞𝐥𝐲 𝐚 𝐩𝐚𝐠𝐞 𝐭𝐨 𝐛𝐨𝐨𝐤𝐦𝐚𝐫𝐤. One way I stay up to date with all changes in Microsoft Entra is by monitoring

Who can tell me what is different about this image?

𝐂𝐀 𝐏𝐨𝐥𝐢𝐜𝐲 𝐂𝐨𝐩𝐢𝐞𝐫 is now on the Chrome Web Store! Check out the instructions and install link here > With CA Policy Copier, you can quickly copy or download individual Conditional Access policies in JSON format, which can serve as a temporary

Tenant-level settings for access package approver visibility coming soon! >

If you are an Access Package approver, you can now delegate approvals. Here is how to enable the feature > 📜. Previously, for approvers, just going on leave or taking expected time off could lead to. 1. Delays and bottlenecks for approvals, leading to

𝐍𝐞𝐰 🩵 You can now find and restore deleted cross-tenant access policies in Microsoft Entra If someone now inadvertently or maliciously deletes a cross-tenant access policy, it essentially goes into a recycle bin, which you can restore from using

You can now allow the requester of an Access Package to see who the approvers are! Here is how > . Microsoft have just updated the documentation that states that you can now granularly and at the tenant-level configure whether the requester of an access

Microsoft have cancelled planned changes to Access Package visibility in Entitlement management > . A change planned for October would have made all Access Packages visible to all users, even when the users were only scoped to specific packages. However,

Microsoft recently published some new Graph APIs for sign-in and password change metrics, learn how to use them > It's amazing how easy it is today to obtain simple data and present it in a clear and digestible format within seconds. In my article, I

Did you see, you can no longer target privileged roles in Entitlement Management? This is a perfect time to improve your existing PIM configuration! > I can almost guarantee you are leaving some simple but valuable security capabilities off the table with

Automatic registration is rolling out for External Authentication Methods in 𝐒𝐞𝐩𝐭𝐞𝐦𝐛𝐞𝐫 𝟐𝟎𝟐𝟓 > ☄️. This may impact any enterprise or MSP using third-party identity solutions like Cisco Duo!. Previously, you didn't have to ensure that EAM

Have you updated your risk-based Conditional Access policies for your passwordless users? Start here ➡️ You've done the hard work of moving users to passwordless authentication, but to complete the journey, you need to realign your risk-based policies.

A change to the Windows Azure Service Management API may impact your Conditional Access coverage! Check ASAP > In 𝐒𝐞𝐩𝐭𝐞𝐦𝐛𝐞𝐫 𝟐𝟎𝟐𝟓, Microsoft are essentially decoupling the Azure DevOps service from the Windows Azure Service Management API.

A huge WIN for Microsoft customers today, 𝐓𝐨𝐤𝐞𝐧 𝐏𝐫𝐨𝐭𝐞𝐜𝐭𝐢𝐨𝐧 is available in 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐄𝐧𝐭𝐫𝐚 𝐏𝟏 > What was previously assumed to be a permanent feature of Microsoft Entra P2, although no official announcement has been made,

Microsoft have now limited domains returned from the Autodiscover endpoint, impacting 𝐎𝐒𝐈𝐍𝐓 tools > A blow to security peeps, but a win for defenders. Previously, you could make an 𝐮𝐧𝐚𝐮𝐭𝐡𝐞𝐧𝐭𝐢𝐜𝐚𝐭𝐞𝐝 request to Autodiscover and return a

Microsoft will soon streamline the same-device sign-in experience for the Microsoft Authenticator app! > 📱. Currently, when users sign in to applications on the same device as their Microsoft Authenticator app, the notification often hides the number they.

Did you know, you can gain incredible insights into Inactive Guests right from the Entra admin center > 🔎. Learn how from my blog post above, as well as some PowerShell snippets to obtain this information programmatically with Microsoft Graph PowerShell!

Is it just me, or has the license utilization page gone missing from the usage and insights blade of Microsoft Entra?

Backup and restore for Microsoft Authenticator will no longer require a personal Microsoft account! > 🎉. In September 2025, Microsoft will automatically backup users' Microsoft Authenticator credentials to 𝐢𝐂𝐥𝐨𝐮𝐝 & 𝐢𝐂𝐥𝐨𝐮𝐝 𝐊𝐞𝐲𝐜𝐡𝐚𝐢𝐧 and

Poorly configured RedirectURIs in Entra Apps can lead to a compromise. Here I explain how to monitor for risky apps 🔍 Wildcards, URL Shorteners or Localhost addresses used as RedirectURIs in your Entra applications are a sign of poor configuration.