check before: 2026-03-01
Product:
Copilot, Entra, Purview, Purview Communication Compliance
Platform:
Online, Web, World tenant
Status:
In development
Change type:
New feature, User impact, Admin impact
Links:
Details:
Summary:
Microsoft Purview's Data Security Posture Agent will add a credential scanning feature by mid-2026, using LLM-powered detection to find exposed credentials like Entra ID credentials, private keys, and API tokens. It provides risk scores, AI insights, and a task board for managing findings.
Details:
[Introduction]
We are expanding the Data Security Posture Agent in Microsoft Purview with a new credential scanning capability. This update helps your organization discover exposed credentials and related data security risks across scoped locations. The agent analyzes selected data locations to detect sensitive credential types-including Microsoft Entra user credentials, private keys, and API tokens-and provides risk scores, AI-generated insights, confidence ratings, and credential categories so you can review, confirm, and take action from a single task board view.
This message is associated with Microsoft 365 Roadmap ID 558436.
[When this will happen]
Public Preview: Rollout will begin in late March 2026 and complete by early April 2026.
General Availability (Worldwide): Rollout will begin in late June 2026 and complete by early July 2026.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
General Availability, Preview
Created:
2026-03-24
updated:
2026-03-24
Public Preview Start Date
XXXXXXX ... free basic plan only
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Credential Exposure Risk
Without proper preparation, the introduction of the credential scanning feature may lead to a surge in identified exposed credentials, overwhelming security teams and potentially causing delays in remediation efforts.
- roles: Security Admin, Compliance Officer
- references: https://learn.microsoft.com/purview/data-security-investigations-posture-agent" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/data-security-investigations-posture-agent, https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=558436
User Experience Disruption
The new scanning feature may generate numerous alerts and notifications, leading to alert fatigue among users and admins, which can diminish the effectiveness of security measures.
- roles: IT Support, Security Admin
- references: https://learn.microsoft.com/purview/copilot-in-purview-agents-overview, https://learn.microsoft.com/purview/data-security-investigations-posture-agent" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/purview/data-security-investigations-posture-agent
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 3 weeks ago ago
