Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for May 2022:
What’s Planned
Tenant-based service outage notifications General Availability
Service category: Other
Product capability: Platform
Azure Service Health will soon support service outage notifications to tenant admins for Azure AD issues in the near future. These outages will also appear on the Azure AD admin portal overview page with appropriate links to Azure Service Health.
Outage events will be able to be seen by built-in tenant administrator roles. Microsoft will continue to send outage notifications to subscriptions within a tenant for a period of transition. More information will be available when this capability is released. The expected release is for June 2022.
What’s New
My Apps users can make apps from URLs General Availability
Service category: My Apps
Product capability: End User Experiences
When editing a collection using the My Apps portal, users can now add their own sites, in addition to adding apps that have been assigned to them by an admin. To add a site, users must provide a name and URL.
Confirm safe and compromised in signIns API beta Public Preview
Service category: Identity Protection
Product capability: Identity Security & Protection
The signIns Microsoft Graph API now supports confirming safe and compromised on risky sign-ins. This public preview functionality is available at the beta endpoint.
Microsoft cloud settings for Azure AD B2B Public Preview
Service category: B2B
Product capability: B2B/B2C
Microsoft cloud settings let organizations collaborate with partner organizations from different Microsoft Azure clouds. With Microsoft cloud settings, you can establish mutual B2B collaboration between the following clouds:
- Microsoft Azure Global Cloud and Microsoft Azure Government
- Microsoft Azure Global Cloud and Microsoft Azure China 21Vianet
New provisioning connectors in the Azure AD Application Gallery
Service category: App Provisioning
Product capability: 3rd Party Integration
Organizations can now automate creating, updating, and deleting user accounts for these newly integrated apps:
New Federated Apps available in Azure AD Application gallery
Service category: Enterprise Apps
Product capability: 3rd Party Integration
In May 2022 Microsoft has added the following new applications in the Azure AD App gallery with federation support:
- UserZoom
- AMX Mobile
- i-Sight
- Method InSight
- Chronus SAML
- Attendant Console for Microsoft Teams
- Skopenow
- Fidelity PlanViewer
- Lyve Cloud
- Framer
- Authomize
- gamba!
- Datto File Protection Single Sign On
- LONEALERT
- Payfactors
- deBroome Brand Portal
- TeamSlide
- Sensera Systems
- YEAP
- Monaca Education
- Personify Inc
- Phenom TXM
- Forcepoint Cloud Security Gateway – User Authentication
- GoalQuest
- OpenForms
What’s Changed
SAML and WS-Fed federation in External Identities General Availability
Service category: B2B
Product capability: B2B/B2C
When setting up federation with a partner's Identity Provider (IdP), new guest users from that domain can use their own IdP-managed organizational account to sign in to your Azure AD tenant and start collaborating with you. There's no need for the guest user to create a separate Azure AD account.
Create Group in Administrative Unit Public Preview
Service category: Directory Management
Product capability: Access Control
People with the Groups administrator role assigned over the scope of an Administrative Unit (AU) can now create groups within the AU. This enables scoped group administrators to create groups that they can manage directly, without needing to elevate to the Global administrator or Privileged role administrator role.
Dynamic administrative unit support for onPremisesDistinguishedName property Public Preview
Service category: Directory Management
Product capability: AuthZ/Access Delegation
Clouds impacted: Public (M365,GCC)
The public preview of dynamic Administrative Units (AUs) now supports the onPremisesDistinguishedName attribute for user accounts. This makes it possible to create dynamic rules which incorporate the Organizational Unit (OU) of the user account from Active Directory.
This feature is not available in Azure Government and Azure China 21Vianet.
Improvements to Azure AD Smart Lockout General Availability
Service category: Other
Product capability: User Management
Smart Lockout now synchronizes the lockout state across Azure AD datacenters, so the total number of failed sign-in attempts allowed before an account is locked out will match the configured lockout threshold.
Login