MC816173 – (Updated) Microsoft Defender for Identity: New recommendations for Microsoft Secure Score

cloudscout.one Icon

check before: 2024-08-01

Product:

Defender, Defender for Identity, Defender XDR, Entra

Platform:

US Instances, World tenant

Status:

Change type:

Admin impact, New feature, Updated message

Links:

Details:

Summary:
Microsoft Defender for Identity will introduce new recommendations to Microsoft Secure Score, enhancing security posture accuracy. These recommendations include Azure SSO account configurations and actions for Microsoft Entra Connect accounts. Rollout starts mid-August 2024, completing by mid-September 2024, with no admin action required before the rollout.

Details:
Updated July 23, 2024: We have updated the content below for clarity. Thank you for your patience.
Coming soon for Microsoft Defender XDR | Microsoft Defender for Identity: We're adding to Microsoft Secure Score improvement actions to ensure a more accurate representation of security posture. We will update your score automatically.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out mid-August 2024 and expected to complete by mid-September 2024.

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:

Created:
2024-07-17

updated:
2024-08-10

Task Type

XXXXXXX ...

Docu to Check

XXXXXXX ...

MS How does it affect me

XXXXXXX ...

MS Preperations

XXXXXXX ...

MS Urgency

XXXXXXX ...

MS workload name

XXXXXXX ...

Direct effects for Operations**

- Direct Impact on IT Operations
- Changes in Security Posture Reporting
- New recommendations for Azure SSO account configurations and Microsoft Entra Connect accounts may lead to a shift in how security posture is assessed.
- Role Impacted: IT Security Analysts
- Dependency: Existing security monitoring tools may need to be updated to align with new recommendations.
- Reference: [Microsoft Secure Score](https://docs.microsoft.com/en-us/microsoft-365/security/defender/microsoft-secure-score?view=o365-worldwide)

- Automatic Updates to Microsoft Secure Score
- The automatic update of the Secure Score could lead to unexpected changes in the security metrics reported to stakeholders.
- Role Impacted: IT Administrators, Compliance Officers
- Interdependency: Reporting tools and dashboards that rely on Secure Score metrics may need adjustments to interpret the new recommendations correctly.
- Reference: [Microsoft Defender for Identity](https://docs.microsoft.com/en-us/microsoft-365/security/defender/defender-for-identity?view=o365-worldwide)

** AI generated content. This information is not reliable.

the free basic plan is required to see all details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.



change history

DatePropertyoldnew
2024-07-24MC MessagesComing soon for Microsoft Defender XDR | Microsoft Defender for Identity: We’re adding to Microsoft Secure Score improvement actions to ensure a more accurate representation of security posture. We will update your score automatically.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out mid-August 2024 and expected to complete by mid-September 2024.
Updated July 23, 2024: We have updated the content below for clarity. Thank you for your patience.
Coming soon for Microsoft Defender XDR | Microsoft Defender for Identity: We’re adding to Microsoft Secure Score improvement actions to ensure a more accurate representation of security posture. We will update your score automatically.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out mid-August 2024 and expected to complete by mid-September 2024.
2024-07-24MC TitleMicrosoft Defender for Identity: New recommendations for Microsoft Secure Score(Updated) Microsoft Defender for Identity: New recommendations for Microsoft Secure Score
2024-07-24MC How AffectIn the Defender for Identity portal, we will add these new Microsoft Defender for Identity recommendations as Microsoft Secure Score improvement actions:
Azure SSO account configuration: Password last set more than 90 days ago
Azure SSO account configuration: Resource Based Constrained Delegation configured
Remove unnecessary replication permissions for Microsoft Entra Connect accounts
Rotate password for Entra Connect connector users
These new identity recommendations are new security posture reports related to group policy objects and hybrid identities.
These new identity recommendations are new security posture reports related to hybrid identities and will be available by default only to customers who have installed an MDI sensor on Entra Connect server.
Defender XDR portal: we will add these new Microsoft Defender for Identity recommendations as Microsoft Secure Score improvement actions:
Azure SSO account configuration: Password last set more than 90 days ago
Azure SSO account configuration: Resource Based Constrained Delegation configured
Remove unnecessary replication permissions for Microsoft Entra Connect accounts
Rotate password for Entra Connect connector users
These new identity recommendations are new security posture reports related to hybrid identities and will be available by default only to customers who have installed an MDI sensor on Entra Connect server.
2024-07-24MC Last Updated07/17/2024 05:58:562024-07-23T22:50:34Z
2024-07-24MC MessageTagNamesNew feature, Admin impactUpdated message, New feature, Admin impact

Last updated 1 month ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!