Azure Active Directory is Microsoft’s Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following new and changed functionality for Azure Active Directory for November 2018:
What’s New
Azure AD Cloud Device Administrator role (Public preview)
Service category: Device Registration and Management
Product capability: Access control
Administrators can assign users to the new Cloud Device Administrator role to perform cloud device administrator tasks. Users assigned the Cloud Device Administrators role can enable, disable, and delete devices in Azure AD, along with being able to read Windows 10 BitLocker keys (if present) in the Azure portal.
Manage devices using the new activity timestamp in Azure AD (Public preview)
Service category: Device Registration and Management
Product capability: Device Lifecycle Management
The Azure AD team realizes that over time administrators must refresh and retire their organizations' devices in Azure AD to avoid having stale devices hanging around in the environment. To help with this process, Azure AD now updates your devices with a new activity timestamp, the approximateLastLogonTimestamp, helping you to manage your device lifecycle.
New Azure AD Privileged Identity Management (PIM) emails for Azure Active Directory roles
Service category: Privileged Identity Management
Product capability: Privileged Identity Management
Organizations using Azure AD Privileged Identity Management (PIM) can now receive a weekly digest email, including the following information for the last seven days:
- Overview of the top eligible and permanent role assignments
- Number of users activating roles
- Number of users assigned to roles in PIM
- Number of users assigned to roles outside of PIM
- Number of users made permanent in PIM
New Federated Apps available in Azure AD app gallery
Service category: Enterprise Apps
Product capability: 3rd Party Integration
In November 2018, the Azure AD team added these 26 new apps with Federation support to the app gallery:
- CoreStack
- HubSpot
- GetThere
- Gra-Pe
- eHour
- Consent2Go
- Appinux
- DriveDollar
- Useall
- Infinite Campus
- Alaya
- HeyBuddy
- Wrike SAML
- Drift
- Zenegy for Business Central 365
- Everbridge Member Portal
- IDEO
- Ivanti Service Manager (ISM)
- Peakon
- Allbound SSO
- Plex Apps – Classic Test
- Plex Apps – Classic
- Plex Apps – UX Test
- Plex Apps – UX
- Plex Apps – IAM
- CRAFTS – Childcare Records, Attendance, & Financial Tracking System
What’s Changed
Group-based licensing is now Generally Available (GA)
Service category: Other
Product capability: Directory
Group-based licensing left public preview and is now generally available (GA). As part of this general release, the team has made this feature more scalable and has added the ability to reprocess group-based licensing assignments for a single user and the ability to use group-based licensing with Office 365 E3/A3 licenses.
Login