check before: 2025-06-01
Product:
Defender, Defender for Endpoint, Defender for Identity, Defender XDR
Platform:
Online, World tenant
Status:
Change type:
New feature, User impact, Admin impact
Links:
Details:
Summary:
Microsoft Defender for Identity will soon offer Active Directory domain-based scoping in public preview starting June 2025 and general availability by August 2025. This feature allows organizations to control access based on AD domains, enhancing security and operational separation. No admin action is required for the rollout.
Details:
Coming soon in Microsoft Defender for Identity (MDI): The public preview of Active Directory domain-based scoping. This capability is a foundational step in extending role-based access control (RBAC) as part of the broader XDR unified role-based access control (URBAC) initiative.
This new capability enables organizations to define and refine the scope of Microsoft Defender for Identity monitoring, providing more granular control over which entities and resources are included in security analysis.
Many organizations using Defender for Identity operate across multiple Active Directory domains and need a way to delegate access based on responsibility or ownership. As organizations grow and manage complex identity environments, the ability to control who can access what (and where) is critical. Customers have this capability for Microsoft Defender for Endpoint with device groups and are expecting a similar capability for Defender for Identity.
[When this will happen:]
Public Preview: We will begin rolling out early June 2025 and expect to complete by late June 2025.
General Availability (Worldwide): We will begin rolling out late July 2025 and expect to complete by late August 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-06-11
updated:
2025-06-11
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is introducing a new feature in Microsoft Defender for Identity that allows organizations to control access based on Active Directory domains, enhancing security by enabling precise access management across multiple domains without requiring immediate action from administrators.
Direct effects for Operations**
Access Control Issues
Without proper preparation, the automatic rollout of domain-based scoping may lead to unauthorized access or restricted access to critical security alerts and identity data, impacting incident response times and security monitoring.
- roles: Security Administrators, IT Support Staff
- references: https://learn.microsoft.com/defender-for-identity/whats-new
User Experience Disruption
Users may experience disruptions in their ability to access necessary resources or alerts due to misconfigured domain-based access controls, leading to frustration and decreased productivity.
- roles: End Users, System Administrators
- references: https://learn.microsoft.com/defender-for-identity/whats-new
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 4 weeks ago
