You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: ATPDocs/whats-new.md
+11-5Lines changed: 11 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -26,15 +26,21 @@ For updates about versions and features released six months ago or earlier, see
26
26
## August 2025
27
27
28
28
29
-
## New Graph-based API for Response Actions (Preview)
29
+
###New Graphbased API for response actions (preview)
30
30
31
31
We’re excited to announce a new Graph-based API for initiating and managing remediation actions in Microsoft Defender for Identity.
32
32
33
33
This capability is currently in preview and available in API Beta version.
34
34
35
-
For more information, see Managing response actions through Graph API.
35
+
For more information, see [Managing response actions through Graph API](/graph/api/resources/security-identityaccounts?view=graph-rest-beta).
36
36
37
-
## New security posture assessment: Remove discoverable passwords in Active Directory account attributes (Preview)
37
+
### Identity scoping is now generally available (GA)
38
+
39
+
Identity scoping is now generally available across all environments. Organizations can now define and refine the scope of MDI monitoring and gain granular control over which entities and resources are included in security analysis.
40
+
41
+
For more information, see [Configure scoped access for Microsoft Defender for Identity](configure-scoped-access.md).
42
+
43
+
### New security posture assessment: Remove discoverable passwords in Active Directory account attributes (Preview)
38
44
39
45
The new security posture assessment highlights unsecured Active Directory attributes that contain passwords or credential clues and recommends steps to remove them, helping reduce the risk of identity compromise.
40
46
@@ -55,11 +61,11 @@ Improved detection logic to include scenarios where accounts were locked during
55
61
56
62
## July 2025
57
63
58
-
**Expanded coverage in ITDR deployment health widget**
64
+
### Expanded coverage in ITDR deployment health widget
59
65
60
66
The Identity Threat Detection and Response (ITDR) deployment health widget now provides visibility into the deployment status of additional server types. Previously, it only reflected the status for Active Directory domain controllers. With this update, the widget also includes deployment status for ADFS, ADCS, and Microsoft Entra Connect servers - making it easier to track and ensure full sensor coverage across all supported identity infrastructure.
61
67
62
-
**Time limit added to Recommended test mode**
68
+
### Time limit added to Recommended test mode
63
69
64
70
Recommended test mode configuration on the [Adjust alert thresholds page](/defender-for-identity/advanced-settings), now requires you to set an expiration time (up to 60 days) when enabling it. The end time is shown next to the toggle while test mode is active. For customers who already have Recommended test mode enabled, a 60-day expiration is automatically applied.
0 commit comments