What’s New in Azure Active Directory for February 2018

Azure Active Directory

Azure Active Directory is Microsoft’s Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following new functionality for Azure Active Directory for February 2018:

What’s New

Availability of sign-ins and audit reports in Azure in China

Service category: Sovereign Clouds
Product capability: Monitoring & Reporting

Azure AD Activity log reports are now available in the Azure in China sovereign instance (codename “Mooncake”). The following logs are included:

  • Sign-ins activity logs – Includes all the sign-ins logs associated with your tenant.
  • Self service Password Audit Logs – Includes all the SSPR audit logs.
  • Directory Management Audit logs – Includes all the directory management related audit logs like User management, App Management, and others.

With these logs, you can gain insights into how your environment is doing. The provided data enables you to:

  • Determine how your apps and services are utilized by your users.
  • Troubleshoot issues preventing your users from getting their work done.

Use the “Report Reader” role to view Azure AD Activity Reports

Service category: Reporting
Product capability: Monitoring & Reporting

As part of customers feedback to enable non-admin roles to have access to Azure AD activity logs, we have enabled the ability for users who are in the “Report Reader” role to access Sign-ins and Audit activity within the Azure Portal as well as using our Graph APIs to this purpose.

EmployeeID claim available as user attribute and user identifier

Service category: Enterprise Apps
Product capability: SSO

You can configure EmployeeID as the User identifier and User attribute for member users and B2B guests in SAML-based sign-on applications from the Enterprise application UI.


Simplified Application Management using Wildcards in Azure AD Application Proxy

Service category: App Proxy
Product capability: User Authentication

To make application deployment easier and reduce your administrative overhead, we now support the ability to publish applications using wildcards. To publish a wildcard application, you can follow the standard application publishing flow, but use a wildcard in the internal and external URLs.


New Windows PowerShell Cmdlets to support configuration of Application Proxy

Service category: App Proxy
Product capability: Platform

The latest release of the AzureAD PowerShell Preview module contains new cmdlets that allows customers to configure Application Proxy Applications using PowerShell.

The new cmdlets are:

  • Get-AzureADApplicationProxyApplication

  • Get-AzureADApplicationProxyApplicationConnectorGroup

  • Get-AzureADApplicationProxyConnector

  • Get-AzureADApplicationProxyConnectorGroup

  • Get-AzureADApplicationProxyConnectorGroupMembers

  • Get-AzureADApplicationProxyConnectorMemberOf

  • New-AzureADApplicationProxyApplication

  • New-AzureADApplicationProxyConnectorGroup

  • Remove-AzureADApplicationProxyApplication

  • Remove-AzureADApplicationProxyApplicationConnectorGroup

  • Remove-AzureADApplicationProxyConnectorGroup

  • Set-AzureADApplicationProxyApplication

  • Set-AzureADApplicationProxyApplicationConnectorGroup

  • Set-AzureADApplicationProxyApplicationCustomDomainCertificate

  • Set-AzureADApplicationProxyApplicationSingleSignOn

  • Set-AzureADApplicationProxyConnector

  • Set-AzureADApplicationProxyConnectorGroup


What’s Changed

Applications supporting Intune App

Protection policies added for use with Azure AD application-based conditional access

Service category: Conditional Access
Product capability: Identity Security & Protection

We have added more applications that support application-based conditional access. Now, you can get access to Office 365 and other Azure AD-connected cloud apps using these approved client apps.

The following applications will be added by the end of February

  • Microsoft PowerBI
  • Microsoft Launcher
  • Microsoft Invoicing

Terms of Use update to mobile experience

Service category: Terms of Use
Product capability: Governance

When the terms of use are displayed, you can now click Having trouble viewing? Click here. Clicking this link opens the terms of use natively on your device. Regardless of the font size in the document or the screen size of device, you can zoom and read the document as needed.

What’s Planned

Improved navigation for managing users and groups

Service category: Directory Management
Product capability: Directory

The navigation experience for managing users and groups will be streamlined.
You can navigate from the directory overview directly to the list of all users, with easier access to the list of deleted users. You can also navigate from the directory overview directly to the list of all groups, with easier access to group management settings. And also from the directory overview page, you can search for a user, group, enterprise application, or app registration.

leave your comment