Microsoft launched a new security portfolio, Microsoft Entra, which covers all of Microsoft’s identity and access capabilities. Microsoft Entra includes Azure Active Directory (Azure AD) as well as two new product categories: a Cloud Infrastructure Entitlement Management (CIEM) solution called Microsoft Entra Permissions Management, and a decentralized identity product offering, Microsoft Entra Verified ID.
“We are seeing an increasing need for trust in a hyperconnected world,” said Joy Chik, corporate vice president, Microsoft Identity. Through Microsoft Entra, we’re expanding our identity and access solutions so that they can serve as a trust fabric for the entire digital ecosystem.”
“Organizations need access decisions to be as granular as possible, and to automatically adapt based on real-time assessment of risk,” the company said.
Microsoft Entra will verify all types of identities and secure, manage, and govern their access to any resource, by:
- Protecting access to any app or resource for any user;
- Securing and verifying every identity across hybrid and multi-cloud environments;
- Discovering and governing permissions in multi-cloud environments; and
- Simplifying the user experience with real-time intelligent access decisions.
Reducing access risk across clouds
The adoption of multi-cloud has led to an increase in identities, permissions, and resources across public cloud platforms. Without visibility across cloud providers, or tools that provide a consistent experience, it has become challenging for identity and security teams to manage permissions and enforce the principle of least privilege across their entire digital estate.
Following the acquisition of CloudKnox Security last year, Microsoft is now the first major cloud provider to offer a CIEM solution — Microsoft Entra Permissions Management. It provides comprehensive visibility into permission for all identities (both user and workload), actions, and resources across multi-cloud infrastructures. Permissions Management helps detect, right-size, and monitor unused and excessive permissions, and mitigates the risk of data breaches by enforcing the principle of least privilege in Microsoft Azure, Amazon Web Services, and Google Cloud Platform.
Microsoft Entra Permissions Management will be a standalone offering generally available worldwide in July 2022 and will be integrated within the Defender for Cloud dashboard, extending Microsoft Defender for Cloud’s protection into CIEM.
The preview of workload identity management in Microsoft Entra will allow Microsoft customers to assign and secure identities for any app or service hosted in Azure, by extending the reach of access control and risk detection capabilities.
Secure digital interactions
Microsoft Entra Verified ID is a new product offering based on decentralized identity standards that implements the industry standards, making portable, self-owned identity possible.
Verified ID represents Microsoft’s commitment to an open, trustworthy, interoperable, and standards-based decentralized identity future for individuals and organizations. Instead of granting broad consent to countless apps and services and spreading identity data across numerous providers, Verified ID allows individuals and organizations to decide what information they share, when they share it, with whom they share it, and — when necessary — take it back.
Microsoft Entra Verified ID will be available in early August 2022.