|
| 1 | +# September 3, 2025 |
| 2 | + |
| 3 | +## Key Takeaways |
| 4 | + |
| 5 | +* **Hostname Pre-Validation** – Add and validate hostnames before switching DNS, enabling zero-downtime migrations and support for on-premise proxies. |
| 6 | +* **Managed Challenges** – Protect projects from malicious traffic surges with automated verification. |
| 7 | +* **Bring Your Own Login Provider (Public Beta)** – Use your existing identity provider for Cloud Portal access, permissions, and user management. |
| 8 | + |
| 9 | +## Hostname Pre-Validation |
| 10 | + |
| 11 | +### “Move your site to Umbraco Cloud with zero downtime. Hostname Pre-Validation makes hostname migrations smooth and risk-free.” |
| 12 | + |
| 13 | +Pre-validating hostnames allows you to prepare domains before pointing DNS to Umbraco Cloud. This ensures TLS certificates are issued and routing is active ahead of time, so projects can go live instantly once DNS is updated. |
| 14 | + |
| 15 | +<figure><img src="../../go-live/manage-hostnames/images/pre-validation-status-modal.png" alt="This is a screenshot of the Pre-Validation status modal"></figure> |
| 16 | + |
| 17 | +* **Zero-downtime hostname migration** – Move production domains to Umbraco Cloud without service interruptions. |
| 18 | +* **On-premise proxy support** – Keep using your existing proxy or WAF setup while preparing hostnames in Umbraco Cloud. |
| 19 | + |
| 20 | +This means safer go-lives and improved domain management. Read the |
| 21 | + |
| 22 | +## Managed Challenges |
| 23 | + |
| 24 | +### “Managed Challenges keep bots out and let your real users in.” |
| 25 | + |
| 26 | +When websites face unusual load, whether from bots, scraping, or coordinated attacks, Managed Challenges step in. Visitors an requests that do not meet the threshold are automatically served a lightweight CAPTCHA that helps filter out bad traffic. |
| 27 | + |
| 28 | +* Can be applied globally, per hostname, or even per continent. |
| 29 | +* Works seamlessly alongside the built-in Web Application Firewall. |
| 30 | + |
| 31 | +WAF sensitivity and Manage Challenge features can be applied in Security Settings: |
| 32 | +<figure><img src="../images/security-settings.png" alt="This is a screenshot of the Security Settings with the new feratures for Managed Challenges"></figure> |
| 33 | + |
| 34 | +You get added resilience without manual intervention and tools to ensure resources are spent serving customers, not malicious requests. Read more about the new features in the updated [Managing Transport Security documentation](https://docs.umbraco.com/umbraco-cloud/build-and-customize-your-solution/set-up-your-project/security/managing-transport-security) |
| 35 | + |
| 36 | +## Bring Your Own Login Provider (Public Beta) |
| 37 | + |
| 38 | +### “Use your own identity provider to manage Cloud Portal access.” |
| 39 | + |
| 40 | +You can now connect your organization’s existing identity provider, like Microsoft Entra ID, Octa, or Google, directly to the Umbraco Cloud Portal. This lets teams sign in with familiar credentials and manage project permissions through their existing setup. |
| 41 | + |
| 42 | +* Centralized authentication with OpenID Connect. |
| 43 | +* Map roles and project access directly from your provider. |
| 44 | +* Keep audit logs of external login usage. |
| 45 | + |
| 46 | +Enterprises and organization can rely on centralized account management with industry standard security. The means less time spent managing accounts and permissions, whether you're onboarding or offboarding. |
| 47 | + |
| 48 | +External Login Providers is currently is released in Public Beta, and we aim for full release early October. If you have any feedback or encounter issues with the feature please raise an issue on the Umbraco Cloud tracker on Github. For a full overview of the features and how to use it, see [the External login Providers documentation](). |
0 commit comments