Microsoft Ignite 2022 was held from October 12th to October 14th, 2022 in the Washington State Convention Center in Seattle.
At the event, the Microsoft Entra product teams have announced their completion of the following features:
Identity Governance Public Preview
Microsoft Entra Identity Governance helps organizations ensure that the right people have the right access to the right resources at the right time. This release delivers a comprehensive identity governance product for both on-premises and cloud-based user directories. Microsoft Entra Identity Governance helps organizations simplify operations, support regulatory compliance and consolidate multiple identity point solutions.
The newly released capabilities include lifecycle workflows to automate repetitive tasks, a connection to on-premises to enable consistent policies for all users and separation of duties (SoD) in entitlements management to help safeguard against compliance issues. These features complement existing Microsoft Entra Identity Governance features, including Access Reviews, access certification, entitlements management and Privileged Identity Management (PIM).
Workload Identity management Soon
Microsoft Entra Workload Identities is an identity and access management solution that manages and secures identities for digital workloads, such as apps and services and controls access to cloud resources. It will be generally available in November 2022.
Organizations can create risk-based policies with Conditional Access, detect and respond to compromised workload identities with Identity Protection and perform Access Reviews to enforce least-privileged access to workload identities more securely.
Certificate-based Authentication Public Preview
Certificate-based Authentication (CBA) is a key multi-factor authentication method that meets the U.S. Executive Order on Cybersecurity. It enables organizations to adopt easily deployable phishing-resistant authentication with an improved user experience for identifying certificate authentication factors.
Conditional Access Authentication Strengths Public Preview
Conditional Access Authentication Strengths allows admins to require specific authentication methods based on the user, application, service, location and device health. With Authentication Strengths, admins can use the right multi-factor authentication for the right purpose, like phishing-resistant MFA for the most critical resources.
Single Sign-on to Azure Arc-enabled SQL Server Generally Available
Azure Arc-enabled SQL Server now offers a single sign-on experience that integrates with Azure Active Directory (Azure AD) in general availability. This feature allows organizations to take advantage of a cloud-like experience. Organizations can sign in and manage all Azure resources and their SQL environments through the same portal in one integrated step.
Windows Update for Business reports as Azure AD Workbooks Soon
Update Compliance provides detailed deployment monitoring for Windows client features and quality updates. Update Compliance is migrating the reports to Azure Active Directory (Azure AD) Workbooks to make them more modular and customizable. The new solution, Windows Update for Business reports, aligns with the Windows Update for Business brand to make it clear the reports are for Windows updates and servicing.
This change, available in November, will provide a simpler and more consistent product, while also creating a framework that allows users to tailor experiences to their unique business needs. Using Azure AD, these new reports will provide more consistent data that seamlessly integrates with the Microsoft 365 ecosystem and other solutions like Microsoft Intune.
Delegated admins for universal print management Soon
Universal Print, Microsoft’s secure cloud printing solution, introduces delegation to help make print management easier. Delegated admins lets IT teams in branch offices manage the printers at just their locations. This will enable these teams to quickly register new printers with Azure Active Directory (Azure AD) and support employees without relying on the central IT team. Delegated admin support will be available in preview by the first week of November.