Microsoft organized Microsoft Build 2020 as a free digital event between Tuesday May 19th 8AM Pacific Time and Thursday May 21st 8 AM Pacific Time.
Microsoft Build is Microsoft’s annual conference event, aimed at software engineers and web developers using Windows, Microsoft Azure and other Microsoft technologies. First held in 2011, it serves as a successor for Microsoft's previous developer events, the Professional Developers Conference (PDC) and MIX.
During Build 2020, Microsoft made the following Identity-related announcements:
Azure Active Directory External Identities
Azure Active Directory External Identities help organizations scale, manage directories and maintain continuity. They offer organizations the ability to scale IT resources and costs with just one solution that secures and manages all their identities.
Azure AD External Identities Public Preview empowers developers to build flexible, user-centric experiences for external users, including business partners and customers, and continuously customize without duplicating coding effort. External Identities also streamlines how IT admins manage their directories and identities — employee and external — through the Azure AD tool.
IT leaders can optimize for business continuity by securely connecting with any user using the identity provider of their choice. This makes it easier for employees to remotely collaborate with their supply-chain partners in Microsoft Teams, SharePoint and custom line-of-business (LOB) apps, and for consumers to stay engaged through seamless digital experiences.
In Eha Goel’s demo, she showed the functionality with a user flow containing the B2X monitoring. Perhaps, this is the direction Microsoft is heading, leaving Azure AD B2B and Azure AD B2C behind.
Application Consent Controls
IT administrators can create policies that decide the types of applications end users can consent to using Application Consent Controls Public Preview.
Previously, IT administrators could either allow all end users or no end users to consent to applications. Using Application Consent Controls, admins can create policies in the Azure portal that determine which users can consent to which applications. For example, admins can allow end users to consent to applications that have been publisher verified, see below.
Azure AD Consent Publisher Verification
Publisher Verification Public Preview allows developers with a verified Microsoft Partner Network (MPN) account to mark their applications as “Publisher Verified.”
Developers can distinguish their apps to end users by receiving a blue checkmark that indicates they are a verified publisher. Developers can differentiate their apps with a “verified” badge that will appear on:
- The Azure Active Directory consent prompt
- The Enterprise Apps page, and
- Additional User Experience (UX) surfaces used by end users and admins.
IT administrators also will have increased transparency on whether verified or unverified apps are in use within their organization and can configure consent policies based on publisher verification.
Microsoft Authentication Library Support
Microsoft Authentication Library (MSAL) now supports additional platforms, including Angular Generally Available and Microsoft.Identity.Web for ASP.NET Core Public Preview.
Microsoft Authentication Library streamlines how developers implement the right authentication patterns, security features, and integration points that support any Microsoft identity:
- MSA accounts
- Azure Active Directory (AD) accounts and
- Social accounts powered by Azure AD B2C.
Microsoft Authentication Library (MSAL) offers developers identity innovations such as passwordless authentication, multi-factor authentication and Conditional Access options that don’t require developers to implement that functionality themselves. Additionally, Microsoft Authentication Library (MSAL) for Android and iOS allow developers to build first-line worker apps that support shared device sign-in and sign-out.
Azure AD Authentication to Azure Database for PostgreSQL and Azure Database for MySQL
Microsoft’s Azure cloud service includes a portfolio of secure, enterprise-grade, fully managed database services that support open-source database engines. Microsoft is announcing new product capabilities for these two database offerings:
- Azure Database for PostgreSQL, and
- Azure Database for MySQL
One of the new capabilities launched on both Azure Database for PostgreSQL and Azure Database for MySQL is Azure Active Directory Authentication Generally Available.
These new product capabilities will help developers across various types and sizes of workloads to productively leverage enterprise-grade security for their mission-critical work and effectively manage the costs of running their databases on PostgreSQL and MySQL.