Skip to content

Commit 2227091

Browse files
aditisrivastava07aditisrivastava07
authored
Merge pull request #2196 from MicrosoftDocs/main
Publish main to live, 12/16, 11:00 AM IST
2 parents 94e2853 + 2b78081 commit 2227091

File tree

1 file changed

+17
-0
lines changed

1 file changed

+17
-0
lines changed

ATPDocs/whats-new.md

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -22,6 +22,22 @@ For more information, see also:
2222

2323
For updates about versions and features released six months ago or earlier, see the [What's new archive for Microsoft Defender for Identity](whats-new-archive.md).
2424

25+
## December 2024
26+
27+
### New security posture assessment: Prevent Certificate Enrollment with arbitrary Application Policies (ESC15)
28+
29+
Defender for Identity has added the new **Prevent Certificate Enrollment with arbitrary Application Policies (ESC15)** recommendation in Microsoft Secure Score.
30+
31+
This recommendation directly addresses the recently published [CVE-2024-49019](https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-49019), which highlights security risks associated with vulnerable AD CS configurations. This security posture assessment lists all vulnerable certificate templates found in customer environments due to unpatched AD CS servers.
32+
33+
The new recommendation is added to other AD CS-related recommendations. Together, these assessments offer security posture reports that surface security issues and severe misconfigurations that post risks to the entire organization, together with related detections.
34+
35+
For more information, see:
36+
37+
- [Security assessment: Prevent Certificate Enrollment with arbitrary Application Policies (ESC15)](https://go.microsoft.com/fwlink/?linkid=2296922)
38+
39+
- [Microsoft Defender for Identity's security posture assessments](security-assessment.md)
40+
2541
## October 2024
2642

2743
### MDI is expanding coverage with new 10 Identity posture recommendations (preview)
@@ -532,6 +548,7 @@ This version includes improvements and bug fixes for cloud services and the Defe
532548

533549
- [What is Microsoft Defender for Identity?](what-is.md)
534550
- [Frequently asked questions](technical-faq.yml)
551+
535552
- [Defender for Identity prerequisites](prerequisites.md)
536553
- [Defender for Identity capacity planning](capacity-planning.md)
537554
- [Check out the Defender for Identity forum!](<https://aka.ms/MDIcommunity>)

0 commit comments

Comments
 (0)