FB pixel

Microsoft introduces new authentication recommendation engine for Entra

Conditional Access to encourage MFA adoption
Categories Access Control  |  Biometrics News
Microsoft introduces new authentication recommendation engine for Entra
 

Microsoft is not entirely happy with how companies are using its identity and access management product line for enterprise clients Microsoft Entra. For many years, the tech giant has been trying to get its customers to introduce multi-factor authentication. But the adoption rates have been very low as workers are not particularly interested in adding more steps to their workflow.

The tech giant has now come up with a new solution. Customers of Microsoft Entra will be automatically enrolled into Microsoft Entra Conditional Access so-called “intelligent policy engine.” The engine gives recommendations on security settings.

The idea is to help customers figure out how to have more granular control over authentication and access, Alex Weinert, Microsoft’s Vice President for Identity Security writes in a blog post published this week.

“They’ve told us they want a clear policy recommendation that’s easy to deploy but still customizable to their specific needs. And that’s exactly what we’re providing with Microsoft-managed Conditional Access policies,” says Weinert.

Microsoft Entra, formerly known as Azure Active Directory, offers several authentication methods including passwordless solutions such as biometrics. It currently works with several biometric identity verification partners, including Jumio, Au10tix, Onfido, Idemia and more.

Microsoft Entra Conditional Access policy engine will use machine learning to automatically protect individual customers based on risk signals, licensing and usage. The system will analyze real-time signals such as user context, device, location and session risk to determine when to allow, block and limit access, or when to require additional verification steps.

The engine will start a gradual rollout next week and will give organizations 90 days to review, customize, or disable them before they turn policies on.

Microsoft says it is introducing the new product because it doesn’t want to see companies get hacked. The uptake of multifactor authentication among enterprise clients has been so sluggish that the firm decided to roll out on-by-default multi-factor authentication, called “security defaults,” which was applied to all new organizations. The company’s goal, however, is to reach 100 percent multifactor authentication, according to Weinert.

In October, Microsoft enabled customers with Entra ID-joined Windows 11 devices to switch over to passwordless authentications using a new policy option, according to Redmondmag, a blog focused on Microsoft products.

In April this year, LinkedIn and Microsoft Entra rolled out an integration that allows people with LinkedIn profiles to verify where they work online with Entra’s Verified ID. The product added Decentralized Identifiers (DIDs) and Verifiable Credentials (VCs) to the Microsoft ecosystem last year.

Article Topics

 |   |   |   |   |   | 

Latest Biometrics News

 

Know your APAC digital ID regulations to take advantage of evolving market

One of the major trends in the digital identity landscape in 2024 has been the enactment of a series of…

 

Yoti facial age estimation helps Yubo build trust with users

Yubo, which bills itself as a “live social discovery platform,” has released a new case study showing how they have…

 

Ondato releases Age Verification Report as countries trend toward stricter regulations

Australia caused shockwaves when it approved a social media ban for under-16s a couple of weeks ago. The world-first law…

 

Denmark’s digital ID receives proximity check update

Denmark’s MitID digital identity system has received updates designed to boost the security of its app and prevent scammers from…

 

Nigeria tenders $83M digital identity system upgrade and MOSIP integration

Nigeria is planning to implement the MOSIP platform with its digital identity management system and upgrade its biometric capabilities with…

 

CyberArk IAM authentication FIDO2 certified

Identity cybersecurity company CyberArk has received FIDO2 certification for its access management product, confirming that it complies with the FIDO…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events