Microsoft Entra Permissions Management Gets New Capabilities and APIs

Published: Dec 15, 2023

Network Security

SHARE ARTICLE

Key Takeaways:

  • Microsoft Entra Permissions Management is getting a new ServiceNow integration and support for Okta and AWS IAM Identity Center.
  • The permissions analytic report offers a detailed examination of findings across identities and resources in supported cloud environments.
  • Microsoft has introduced new MS-Graph APIs in public preview for Permissions Management.

Microsoft has announced several new features for its Entra Permissions Management service. The cloud infrastructure entitlement management (CIEM) tool enables organizations to effectively monitor and control permissions for various identities and resources across different cloud services.

Microsoft Entra Permissions Management is getting a new ServiceNow integration that will let organizations manage their multi-cloud permissions. It allows users to request, approve, revoke, and audit their permissions with automated ServiceNow workflows. The ServiceNow app helps to track permissions in a dashboard as well as generate reports and audit logs to monitor and verify permissions.

Additionally, Microsoft has added new Permission Management capabilities to its Defender for Cloud solution. The new integration enables organizations to prevent security breaches that happen due to misconfigurations and excessive permissions in cloud environments. It provides actionable insights to address permissions risks across Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP).

Microsoft has introduced Okta and AWS IAM Identity Center support for Microsoft Entra Permissions Management. It allows IT administrators to get a centralized view of identities and their corresponding permissions.

image 17
Okta and AWS IAM Identity Center support

Microsoft has released a new permissions analytic report that details findings across identities and resources. The report is available for all supported cloud environments (AWS, GCP, and Microsoft Azure). Administrators will need to navigate to the Permissions Management page to access and download the report in Excel or PDF formats.

Microsoft Entra Permissions Management gets new Microsoft Graph APIs

Microsoft has introduced various MS-Graph APIs in public preview for its Permissions Management solution. This release lets administrators retrieve the inventory of onboarded AWS accounts, GCP projects, and Azure subscriptions.

Lastly, IT admins can use MS Graph APIs to enable access reviews in existing ticketing systems and add permissions analytics insights into dashboards in Security information and event management (SIEM) tools. The Permission on Demand API also helps to elevate the permissions of users and workload identities.

SHARE ARTICLE