Azure Active Directory is Microsoft’s Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following new functionality for Azure Active Directory for February 2018:
What’s New
Availability of sign-ins and audit reports in Azure in China
Service category: Sovereign Clouds
Product capability: Monitoring & Reporting
Azure AD Activity log reports are now available in the Azure in China sovereign instance (codename “Mooncake”). The following logs are included:
- Sign-ins activity logs – Includes all the sign-ins logs associated with your tenant.
- Self service Password Audit Logs – Includes all the SSPR audit logs.
- Directory Management Audit logs – Includes all the directory management related audit logs like User management, App Management, and others.
With these logs, you can gain insights into how your environment is doing. The provided data enables you to:
- Determine how your apps and services are utilized by your users.
- Troubleshoot issues preventing your users from getting their work done.
Use the "Report Reader" role to view Azure AD Activity Reports
Service category: Reporting
Product capability: Monitoring & Reporting
As part of customers feedback to enable non-admin roles to have access to Azure AD activity logs, we have enabled the ability for users who are in the "Report Reader" role to access Sign-ins and Audit activity within the Azure Portal as well as using our Graph APIs to this purpose.
EmployeeID claim available as user attribute and user identifier
Service category: Enterprise Apps
Product capability: SSO
You can configure EmployeeID as the User identifier and User attribute for member users and B2B guests in SAML-based sign-on applications from the Enterprise application UI.
Simplified Application Management using Wildcards in Azure AD Application Proxy
Service category: App Proxy
Product capability: User Authentication
To make application deployment easier and reduce your administrative overhead, we now support the ability to publish applications using wildcards. To publish a wildcard application, you can follow the standard application publishing flow, but use a wildcard in the internal and external URLs.
New Windows PowerShell Cmdlets to support configuration of Application Proxy
Service category: App Proxy
Product capability: Platform
The latest release of the AzureAD PowerShell Preview module contains new cmdlets that allows customers to configure Application Proxy Applications using PowerShell.
The new cmdlets are:
- Get-AzureADApplicationProxyApplication
- Get-AzureADApplicationProxyApplicationConnectorGroup
- Get-AzureADApplicationProxyConnector
- Get-AzureADApplicationProxyConnectorGroup
- Get-AzureADApplicationProxyConnectorGroupMembers
- Get-AzureADApplicationProxyConnectorMemberOf
- New-AzureADApplicationProxyApplication
- New-AzureADApplicationProxyConnectorGroup
- Remove-AzureADApplicationProxyApplication
- Remove-AzureADApplicationProxyApplicationConnectorGroup
- Remove-AzureADApplicationProxyConnectorGroup
- Set-AzureADApplicationProxyApplication
- Set-AzureADApplicationProxyApplicationConnectorGroup
- Set-AzureADApplicationProxyApplicationCustomDomainCertificate
- Set-AzureADApplicationProxyApplicationSingleSignOn
- Set-AzureADApplicationProxyConnector
- Set-AzureADApplicationProxyConnectorGroup
What’s Changed
Applications supporting Intune App
Protection policies added for use with Azure AD application-based conditional access
Service category: Conditional Access
Product capability: Identity Security & Protection
We have added more applications that support application-based conditional access. Now, you can get access to Office 365 and other Azure AD-connected cloud apps using these approved client apps.
The following applications will be added by the end of February
- Microsoft PowerBI
- Microsoft Launcher
- Microsoft Invoicing
Terms of Use update to mobile experience
Service category: Terms of Use
Product capability: Governance
When the terms of use are displayed, you can now click Having trouble viewing? Click here. Clicking this link opens the terms of use natively on your device. Regardless of the font size in the document or the screen size of device, you can zoom and read the document as needed.
What’s Planned
Improved navigation for managing users and groups
Service category: Directory Management
Product capability: Directory
The navigation experience for managing users and groups will be streamlined.
You can navigate from the directory overview directly to the list of all users, with easier access to the list of deleted users. You can also navigate from the directory overview directly to the list of all groups, with easier access to group management settings. And also from the directory overview page, you can search for a user, group, enterprise application, or app registration.
Login