check before: 2025-10-01
Product:
Entra, Microsoft 365 admin center, Microsoft 365 Apps, Microsoft Graph, SharePoint
Platform:
Developer, Online, World tenant
Status:
Change type:
New feature, User impact, Admin impact
Links:
Details:
Summary:
Microsoft Entra introduces soft deletion and restoration for cloud security groups, allowing recovery within 30 days while preserving settings, ownership, and membership. Rollout begins in late October 2025 (preview) and February 2026 (general availability). Deleted groups remove access until restored; audit logs track actions.
Details:
To help organizations recover from accidental or malicious deletions, Microsoft Entra is introducing soft deletion and restoration for cloud security groups. This feature allows deleted groups to be restored within 30 days, preserving their settings, ownership, and membership-reducing the need to rebuild access models from scratch.
[When this will happen:]
Public preview: Rollout began in late in October 2025 and is expected to complete by early November 2025.
General availability (Worldwide): Rollout begins in late February 2026 and is expected to complete by early March 2026.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-11-06
updated:
2025-11-06
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Access Loss During Soft Deletion
When a cloud security group is soft deleted, all access granted via that group is immediately removed for users, potentially disrupting their workflow and access to critical resources.
- roles: Admins, End Users
- references: https://learn.microsoft.com/entra/architecture/recover-from-deletions, https://learn.microsoft.com/entra/identity/users/groups-restore-deleted
Restoration Process Complexity
The need to restore a deleted group within 30 days adds complexity to the admin's workflow, requiring them to manage restoration processes and potentially impacting their ability to respond to other IT incidents.
- roles: Admins, Helpdesk Staff
- references: https://learn.microsoft.com/entra/architecture/recoverability-overview, https://learn.microsoft.com/graph/api/directory-deleteditems-restore?view=graph-rest-1.0&tabs=http
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 4 weeks ago ago
