What’s New in Azure Active Directory for November 2018

Azure Active Directory

Azure Active Directory is Microsoft’s Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following new and changed functionality for Azure Active Directory for November 2018:


What’s New

Azure AD Cloud Device Administrator role (Public preview)

Service category: Device Registration and Management
Product capability: Access control

Administrators can assign users to the new Cloud Device Administrator role to perform cloud device administrator tasks. Users assigned the Cloud Device Administrators role can enable, disable, and delete devices in Azure AD, along with being able to read Windows 10 BitLocker keys (if present) in the Azure portal.


Manage devices using the new activity timestamp in Azure AD (Public preview)

Service category: Device Registration and Management
Product capability: Device Lifecycle Management

The Azure AD team realizes that over time administrators must refresh and retire their organizations' devices in Azure AD to avoid having stale devices hanging around in the environment. To help with this process, Azure AD now updates your devices with a new activity timestamp, the approximateLastLogonTimestamp, helping you to manage your device lifecycle.


New Azure AD Privileged Identity Management (PIM) emails for Azure Active Directory roles

Service category: Privileged Identity Management
Product capability: Privileged Identity Management

Organizations using Azure AD Privileged Identity Management (PIM) can now receive a weekly digest email, including the following information for the last seven days:

  • Overview of the top eligible and permanent role assignments
  • Number of users activating roles
  • Number of users assigned to roles in PIM
  • Number of users assigned to roles outside of PIM
  • Number of users made permanent in PIM


New Federated Apps available in Azure AD app gallery

Service category: Enterprise Apps
Product capability: 3rd Party Integration

In November 2018, the Azure AD team added these 26 new apps with Federation support to the app gallery:

  1. CoreStack
  2. HubSpot
  3. GetThere
  4. Gra-Pe
  5. eHour
  6. Consent2Go
  7. Appinux
  8. DriveDollar
  9. Useall
  10. Infinite Campus
  11. Alaya
  12. HeyBuddy
  13. Wrike SAML
  14. Drift
  15. Zenegy for Business Central 365
  16. Everbridge Member Portal
  17. IDEO
  18. Ivanti Service Manager (ISM)
  19. Peakon
  20. Allbound SSO
  21. Plex Apps – Classic Test
  22. Plex Apps – Classic
  23. Plex Apps – UX Test
  24. Plex Apps – UX
  25. Plex Apps – IAM
  26. CRAFTS – Childcare Records, Attendance, & Financial Tracking System


What’s Changed

Group-based licensing is now Generally Available (GA)

Service category: Other
Product capability: Directory

Group-based licensing left public preview and is now generally available (GA). As part of this general release, the team has made this feature more scalable and has added the ability to reprocess group-based licensing assignments for a single user and the ability to use group-based licensing with Office 365 E3/A3 licenses.

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.